1

Grc Risk Jobs in Orem, UT (NOW HIRING)

Support third-party/vendor risk assessments and due diligence reviews * Identify control gaps ... Develop and maintain GRC metrics, dashboards, and reporting artifacts * Track key risk indicators ...

Support third-party/vendor risk assessments and due diligence reviews * Identify control gaps ... Develop and maintain GRC metrics, dashboards, and reporting artifacts * Track key risk indicators ...

Support third-party/vendor risk assessments and due diligence reviews * Identify control gaps ... Develop and maintain GRC metrics, dashboards, and reporting artifacts * Track key risk indicators ...

The Opportunity Adobe's Technology Governance, Risk & Compliance Organization plays a meaningful ... We seek a GRC Strategy & Security Insights Lead to drive a data driven shift in our GRC program.

A Cybersecurity / GRC Engineer supports the execution and continuous improvement of an organization's governance, risk, and compliance (GRC) program. This role operates under the direction of GRC ...

This role partners closely with Security Architecture, GRC, IT Infrastructure, and business teams to ensure operational security controls are aligned with enterprise risk priorities. This position ...

IT Security Operations Manager

Draper, UT · On-site

$120K - $150K/yr

The role partners closely with Security Architecture, Governance/Risk/Compliance (GRC), IT Infrastructure, and business stakeholders to ensure security controls align with enterprise risk priorities.

next page

Showing results 1-20

Grc Risk information

See Orem, UT salary details

$19.6K

$102.8K

$182.6K

How much do grc risk jobs pay per year?

As of Jul 11, 2026, the average yearly pay for grc risk in Orem, UT is $102,810.00, according to ZipRecruiter salary data. Most workers in this role earn between $73,500.00 and $126,100.00 per year, depending on experience, location, and employer.

What is the difference between Grc Risk vs Grc Analyst?

AspectGrc RiskGrc Analyst
CertificationsISO 31000, CRISC, COSOCISA, CRISC, CISSP
Work EnvironmentRisk management teams, compliance departmentsIT, audit, compliance teams
Industry UsageFinancial, healthcare, corporate sectorsIT, finance, consulting firms
Primary FocusIdentifying and managing enterprise risksAnalyzing controls, assessing risks in systems

Grc Risk professionals focus on enterprise-wide risk management strategies, while Grc Analysts typically analyze specific controls and systems to identify vulnerabilities. Both roles require similar certifications and often work within the same industries, but Grc Risk has a broader scope in risk oversight, whereas Grc Analysts concentrate on detailed control assessments.

What are popular job titles related to Grc Risk jobs in Orem, UT? For Grc Risk jobs in Orem, UT, the most frequently searched job titles are:
What job categories do people searching Grc Risk jobs in Orem, UT look for? The top searched job categories for Grc Risk jobs in Orem, UT are:
Infographic showing various Grc Risk job openings in Orem, UT as of July 2026, with employment types broken down into 8% Locum Tenens, 72% Full Time, 1% Part Time, 3% Contract, 13% Nights, and 3% Summer. Highlights an 79% Physical, 6% Hybrid, and 15% Remote job distribution, with an average salary of $102,810 per year, or $49.4 per hour.

Cybersecurity GRC Engineer

swirecc

Draper, UT • On-site

Other

Posted 29 days ago


Job description

What does a Cybersecurity GRC Engineer do at Swire Coca - Cola?
Swire Coca-Cola is seeking a Cybersecurity GRC Engineer to support the execution and continuous improvement of our governance, risk, and compliance (GRC) program. This role works under the direction of the GRC Manager and is responsible for performing day-to-day risk, compliance, and audit activities that ensure our cybersecurity program remains aligned with regulatory, contractual, and business requirements. The GRC Engineer plays a critical role in operationalizing cybersecurity governance by conducting risk assessments, supporting audits, maintaining control frameworks, and partnering across IT and business teams to track and remediate findings. This role requires a detail-oriented and analytical individual who can translate technical controls and risks into clear documentation and actionable insights.
Responsibilities

  • Perform cybersecurity risk assessments for systems, applications, and business processes
  • Support third-party/vendor risk assessments and due diligence reviews
  • Identify control gaps, document risks, and assist in developing remediation plans
  • Maintain and update the enterprise risk register, including risk scoring and tracking
  • Partner with control owners to validate mitigation efforts and risk status
  • Support internal and external audits by coordinating evidence collection and responses
  • Track audit findings, remediation activities, and validate closure
  • Assist with security questionnaires, RFP responses, and due diligence requests
  • Help ensure compliance with regulatory and contractual requirements
  • Maintain and update cybersecurity policies, standards, and procedures
  • Support mapping of controls to frameworks such as NIST CSF, ISO 27001, and CIS
  • Assist in the development and maintenance of a unified control framework
  • Support control testing activities and documentation of effectiveness
  • Develop and maintain GRC metrics, dashboards, and reporting artifacts
  • Track key risk indicators (KRIs), audit trends, and remediation progress
  • Prepare reports and summaries for leadership and stakeholders
  • Maintain organized documentation and evidence repositories
  • Partner with cross-functional teams to drive risk awareness and remediation efforts
  • Support process improvements to enhance GRC efficiency and scalability
  • Assist in implementing and optimizing GRC tools and automation
  • Stay current on cybersecurity risks and compliance requirements
  • Performs other duties as assigned.


Requirements

  • Bachelor’s Degree in Cybersecurity, Information Technology, Risk Management, or related field required
  • Relevant certifications such as Security+, CISA, CRISC, or similar preferred
  • 3+ years of experience in cybersecurity, risk, compliance, or audit roles required
  • Experience supporting audits, risk assessments, and compliance activities required
  • Experience collaborating across IT and business teams required
  • Working knowledge of NIST CSF, ISO 27001, and CIS frameworks
  • Strong analytical, documentation, and organizational skills
  • Ability to communicate technical concepts to non-technical stakeholders
  • Familiarity with GRC tools such as ServiceNow GRC, Archer, Drata, Vanta, or similar preferred