1

Grc Jobs (NOW HIRING)

About the Role Hotman Group is a boutique cybersecurity and GRC consulting firm doing meaningful work for clients who need GRC done right ranging from Fortune 1000 companies to high-growth startups.

Be Seen First

Cyber GRC Analyst

Phoenix, AZ · Remote

$65K - $90K/yr

As a GRC Analyst, you will serve as the primary compliance and governance resource for a major healthcare client in San Diego, leading a multi-year rebuild of their security GRC program from the ...

Governance, Risk, and Compliance (GRC) Analyst - SOX & Data Security Focus Location: Clemmons, NC Job Type: Full-time Department: Information Security / Risk & Compliance Reports To: Director, Global ...

BCM One is looking for a GRC Specialist to join our growing global compliance team. In this role, you will bridge Information Security Governance, Risk & Compliance (GRC)and IT Service Management ...

Senior GRC Engineer

Dallas, TX · On-site +1

$103K - $142K/yr

Lantern is seeking a Senior GRC Engineer to join our team as a key individual contributor. This role is built specifically for someone who builds compliance infrastructure, not just manages it. You ...

About the Role Hotman Group is a boutique cybersecurity and GRC consulting firm doing meaningful work for clients who need GRC done right ranging from Fortune 1000 companies to high-growth startups.

GRC Analyst

Irvine, CA · On-site

$110K - $135K/yr

Ease is hiring a GRC Analyst to support our governance, risk, and compliance program as we mature our security posture and expand into new compliance frameworks. This is a hands-on role at the ...

Ease is hiring a GRC Analyst to support our governance, risk, and compliance program as we mature our security posture and expand into new compliance frameworks. This is a hands-on role at the ...

Senior ServiceNow GRC Consultant Location: Remote Duration: 6 Months with possibility of extension Working Hours: 37.5 hours per week, with 7.5 hours per day Onsite presence during 1st week is ...

... SAP GRC configuration and administration SAP Enterprise Portal UME administration Qualifications Prior usage of HP Quality Center Proficient with Microsoft Office (Outlook, Word, Excel, PowerPoint ...

About the Role The GRC Engineer is responsible for transforming Charlie Health's compliance, risk and control programs into automated, measurable and continuously monitored systems. This is a hands ...

We are looking for a GRC Analyst to drive our company forward, and help us lead the clean energy revolution! How you will make an impact: * Manage 3rd party/vendor risk management assessments ...

next page

Showing results 1-20

Grc information

See salary details

$48

$69

$81

How much do grc jobs pay per hour?

As of Jul 17, 2026, the average hourly pay for grc in the United States is $69.97, according to ZipRecruiter salary data. Most workers in this role earn between $67.31 and $76.92 per hour, depending on experience, location, and employer.

Is GRC a good career?

GRC (Governance, Risk, and Compliance) is a growing field within cybersecurity and risk management, offering opportunities in various industries. It typically requires knowledge of regulations, policies, and tools like audit software, with certifications such as CISA or CISSP enhancing job prospects. The career can be stable and rewarding for those interested in organizational security and compliance.

What is a GRC job?

A GRC (Governance, Risk, and Compliance) job involves managing an organization's policies, regulations, and risk management frameworks to ensure compliance with legal and industry standards. Professionals in this role assess risks, implement controls, and develop strategies to mitigate potential threats while aligning business operations with regulatory requirements. They often work with stakeholders across IT, security, and legal departments to maintain compliance and improve risk management processes.

What are the key skills and qualifications needed to thrive in the Grc position, and why are they important?

To thrive in a GRC (Governance, Risk, and Compliance) role, you need a solid understanding of regulatory frameworks, risk assessment methodologies, and compliance standards, often supported by a degree in business, information technology, or a related field. Familiarity with GRC software platforms (such as RSA Archer, LogicGate, or MetricStream), and professional certifications like CRISC, CISA, or CISSP, are highly valued. Strong analytical thinking, attention to detail, and clear communication skills are important for interpreting regulations and working with cross-functional teams. These skills ensure that organizations manage risks effectively, meet regulatory requirements, and maintain enterprise-wide compliance.

What jobs in the US pay 300,000 a year?

In the field of Governance, Risk, and Compliance (GRC), senior roles such as Chief Risk Officer, Chief Compliance Officer, and Director of GRC can earn $300,000 or more annually, especially with extensive experience, certifications like CPA or CISA, and leadership responsibilities. These positions typically require strong expertise in regulatory frameworks, risk management, and strategic planning within large organizations or financial institutions.

What are some typical daily responsibilities for someone working in a GRC role?

In a GRC position, your day-to-day tasks often include conducting risk assessments, monitoring compliance with internal policies and external regulations, and collaborating with various departments to implement controls or corrective actions. You may also manage and update policies, prepare reports for management, and respond to regulatory audits or inquiries. Additionally, GRC professionals facilitate training sessions to improve organizational awareness of risks and ensure ongoing adherence to compliance standards. The role is dynamic and involves proactive problem-solving to help keep the organization secure and compliant.

Is GRC an entry level role?

GRC (Governance, Risk, and Compliance) roles can be entry-level, especially for positions focused on compliance or risk analysis, but more advanced roles often require prior experience or certifications such as CISA or CISSP. Entry-level GRC positions typically involve supporting compliance activities, policy documentation, and using tools like GRC software platforms.

What are GRC jobs?

GRC jobs refer to roles focused on Governance, Risk Management, and Compliance within organizations. These positions involve developing policies, assessing risks, ensuring regulatory adherence, and often require knowledge of frameworks like ISO, COBIT, or NIST, as well as certifications such as CISA or CISSP.
What cities are hiring for Grc jobs? Cities with the most Grc job openings:
What are the most commonly searched types of Grc jobs? The most popular types of Grc jobs are:
What states have the most Grc jobs? States with the most job openings for Grc jobs include:
What job categories do people searching Grc jobs look for? The top searched job categories for Grc jobs are:
Entry Level GRC Analyst

Entry Level GRC Analyst

Hotman Group LLC

Fort Worth, TX • On-site, Remote

Contractor

Posted 9 days ago


Job description

About the Role
Hotman Group is a boutique cybersecurity and GRC consulting firm doing meaningful work for clients who need GRC done right ranging from Fortune 1000 companies to high-growth startups. We are looking for a driven, detail-obsessed early-career professional who is ready to apply your professional foundation to real GRC consulting work and contribute to real client work from day one.
This is a full-time, remote, contract-to-hire position. Top performers move into permanent roles within 6 months.
What You Will Do
As an Entry Level GRC Analyst at Hotman Group you will work side by side with senior team members and partners to help our clients strengthen their cybersecurity and compliance programs. You will:
  • Assess and improve client security and IT controls
  • Develop policies, processes, and risk assessments aligned to top frameworks including NIST, ISO 27001, and SOC 2
  • Crosswalk and harmonize controls across multiple compliance frameworks
  • Document security requirements, support control implementation, and help track remediation progress
  • Build risk registers, support assessments, and monitor remediation progress
  • Work hands-on with GRC tools and contribute to solutions for complex client challenges
  • Translate technical and regulatory requirements into clear, actionable steps for our clients
  • Participate in peer review of deliverables before they go to clients - your work will be reviewed and you will review others

You will touch every aspect of cybersecurity and GRC work across multiple industries. Every engagement brings new challenges and new opportunities to grow.
What You Bring
  • A Bachelor's or Graduate degree in Cybersecurity, Information Systems, or a related field
  • 1 to 2 years of professional work experience -- this does not need to be in GRC or cybersecurity specifically, but it does need to be in a professional office or corporate environment. We are looking for candidates who have demonstrated reliability, communication, and accountability in a workplace setting
  • Solid understanding of fundamental security and IT concepts including access controls, data retention, and change management
  • Familiarity with major security and privacy frameworks including ISO, NIST, SOC 2, and HIPAA
  • Strong critical thinking, organization, and communication skills
  • Ability to balance multiple projects and deadlines with exceptional follow-through
  • Technical aptitude -- you are curious, you learn fast, and you do not shy away from new tools
  • A genuine interest in cybersecurity and a commitment to helping organizations build stronger, safer programs
  • A solutions-first attitude -- you show up with curiosity and energy and you are not afraid to dive into the work
  • The ability to think critically and execute with precision in a fast-paced, high-trust, low-ego environment
  • A high level of ownership and accountability -- you communicate proactively and follow through without being managed closely
  • A default toward communication - you keep the team informed, you acknowledge quickly, and you do not go dark on a deliverable or a client

Active pursuit of a relevant certification (Security+, CC, SSCP) is strongly preferred. If you are not currently studying for one, be prepared to explain why.
Requirements
  • Located in the USA with permanent work authorization (no sponsorship of any kind now or in the future)
  • Able to pass a background check
  • A private, dedicated workspace with a door - client calls and confidential work require it

Our Hiring Process
Our process is designed to be straightforward but thorough. In addition to a written questionnaire and video responses, finalists will complete a practical skills assessment before advancing to a panel interview with our delivery team. The assessment is designed to reflect real GRC work. If you are serious about building a career in this field, it is your opportunity to show us what you can do.
Why Hotman Group
At Hotman Group we are not just another consulting firm. You will work alongside people who care about the craft and push each other to do better. No politics, no silos, no hierarchy between you and the people making decisions.
You will touch more GRC frameworks, more industries, and more client situations in one year here than most practitioners see in five. You will grow because the work demands it.
The clients you serve will actually notice your work. You are not a number on a headcount. Your name is on the deliverable.
If you want to do real GRC work, get better at it every day, and work with a team that holds itself to a high standard - this is the place.
No phone calls or emails please.