ZipRecruiter

Log In

1

It Governance Risk Compliance Jobs (NOW HIRING)

Trustmark Bank

... technology teams aligned under the Chief Information Officer. This role executes governance, risk, and compliance activities aligned with regulatory frameworks and internal policies. Core ...

Korbel

$41.75 - $55.75/hr

The IT Governance/Risk/Compliance Analyst position offers a dynamic opportunity for an experienced analyst to help shape the future of our governance, risk, and compliance initiatives. In this role ...

next page

Showing results 1-20

All JobsIt Governance Risk Compliance Jobs

It Governance Risk Compliance information

See salary details

$35K

$112K

$178K

How much do it governance risk compliance jobs pay per year?

As of Jun 17, 2026, the average yearly pay for it governance risk compliance in the United States is $111,975.00, according to ZipRecruiter salary data. Most workers in this role earn between $86,500.00 and $132,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an IT Governance, Risk, and Compliance (GRC) professional, and why are they important?

To thrive as an IT Governance, Risk, and Compliance (GRC) professional, you need a strong understanding of risk management, regulatory frameworks (such as SOX, GDPR, or HIPAA), and IT security principles, often supported by a relevant degree or certifications like CISA, CRISC, or CISSP. Proficiency with GRC platforms (such as RSA Archer, ServiceNow GRC), audit tools, and compliance management systems is essential. Outstanding analytical thinking, attention to detail, and effective communication skills help you assess risks and collaborate across departments. These skills and qualities are crucial for maintaining regulatory compliance, mitigating organizational risks, and ensuring robust IT governance.

What are the most common challenges faced by IT Governance, Risk, and Compliance professionals, and how can they be addressed?

Professionals in IT Governance, Risk, and Compliance (GRC) often encounter challenges such as keeping up with rapidly evolving regulations, ensuring company-wide policy adherence, and effectively communicating risks to non-technical stakeholders. Staying current with regulatory changes requires ongoing education and strong networks within the industry. Building relationships across departments and using clear, accessible language helps ensure GRC initiatives are understood and supported. Additionally, leveraging automation tools can streamline compliance tracking and reporting, making it easier to manage complex requirements.

What are governance risk and compliance jobs?

Governance, Risk, and Compliance (GRC) jobs involve managing an organization’s policies, procedures, and controls to ensure legal and regulatory adherence, mitigate risks, and support strategic objectives. Roles often include risk analysts, compliance officers, and GRC managers who use tools like audit frameworks and security standards to protect organizational assets and ensure regulatory compliance.

What is the salary of governance risk compliance?

The salary for governance, risk, and compliance (GRC) professionals varies based on experience, location, and industry, but typically ranges from $70,000 to $130,000 annually. Senior roles or those with certifications like CISSP or CISA can earn higher salaries, often exceeding $150,000.

What is IT Governance, Risk, and Compliance (GRC)?

IT Governance, Risk, and Compliance (GRC) refers to a framework that helps organizations align their IT strategies with business goals, manage risks, and ensure compliance with relevant laws and regulations. IT GRC professionals establish policies, processes, and controls to protect information assets, assess and mitigate risks, and maintain regulatory compliance. Effective IT GRC ensures that technology supports organizational objectives while minimizing legal, financial, and security risks.

What is the difference between It Governance Risk Compliance vs IT Auditor?

AspectIT Governance Risk ComplianceIT Auditor
Primary FocusEstablishing and maintaining IT policies, risk management, compliance frameworksEvaluating and testing IT controls, ensuring compliance through audits
CertificationsCISA, CRISC, CISSPCISA, CISSP, CISM
Work EnvironmentPolicy development, risk assessments, compliance monitoringAudit planning, testing, reporting
Industry UsageUsed across organizations to ensure regulatory compliance and risk mitigationUsed to verify controls and compliance during audits

While both roles involve IT compliance, IT Governance Risk Compliance focuses on creating policies and managing risks proactively, whereas IT Auditors evaluate controls through audits to ensure compliance and effectiveness.

Is governance risk and compliance a good career?

Governance, Risk, and Compliance (GRC) is a growing field within IT, focusing on managing organizational risks, ensuring regulatory adherence, and establishing policies. Careers in GRC often require knowledge of frameworks like ISO, COBIT, or NIST, and certifications such as CISA or CISSP can enhance job prospects. It offers opportunities in various industries with a focus on security, audit, and policy development.

Is GRC certification worth IT?

For IT Governance, Risk, and Compliance (GRC) professionals, obtaining GRC certification can enhance credibility, demonstrate expertise, and improve job prospects in risk management, compliance, and security roles. It often complements technical skills and knowledge of frameworks like ISO, COBIT, or NIST, making candidates more competitive in the field.
More about It Governance Risk Compliance jobs
What cities are hiring for It Governance Risk Compliance jobs? Cities with the most It Governance Risk Compliance job openings:
What are the most commonly searched types of It Governance Risk Compliance jobs? The most popular types of It Governance Risk Compliance jobs are:
What states have the most It Governance Risk Compliance jobs? States with the most job openings for It Governance Risk Compliance jobs include:
What job categories do people searching It Governance Risk Compliance jobs look for? The top searched job categories for It Governance Risk Compliance jobs are:
It Governance Risk Compliance jobs near you
Infographic showing various It Governance Risk Compliance job openings in the United States as of June 2026, with employment types broken down into 1% As Needed, 91% Full Time, 2% Part Time, and 6% Contract. Highlights an 81% Physical, 8% Hybrid, and 11% Remote job distribution, with an average salary of $111,975 per year, or $53.8 per hour.
IT Governance Risk & Compliance

IT Governance Risk & Compliance

Medical Mutual of Ohio

Dublin, OH • On-site

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 15 days ago

Medical Mutual of Ohio rating

9.4

Company rating: 9.4 out of 10

Based on 15 frontline employees who took The Breakroom Quiz

13th of 261 rated insurance

Job description

Medical Mutual employees must submit their applications through MySource.
Note: This is a hybrid role based in Dublin, OH, requiring three days per week on-site.
Founded in 1934, Medical Mutual is the oldest and one of the largest health insurance companies based in Ohio. We provide peace of mind to more than 1.2 million members through our high-quality health, life, disability, dental, vision and indemnity plans. We offer fully insured and self-funded group coverage, including stop loss, as well as Medicare Advantage, Medicare Supplement, and individual plans.
IT Governance Risk & Compliance II
Job Summary:
Performs the day-to-day operation of the security functions as they relate to policy administration/enforcement, project management, physical security, mainframe provisioning, and audit liaison. Works with some supervision and escalates issues to management for resolution
Responsibilities:
  • Interacts with users' requests through the corporate provision system to ensure appropriate accesses are granted to system and audit controls are in place.
  • Works with all areas of the company to review projects relating to Development, Servers, and Network resources to determine and document risk associated to policy enforcement and administration
  • Participates in projects specific to security, including aligning internal and external resources to complete projects critical to Security Administration; performs routine physical security planning/review including card key access; interacts with audits and auditors to support and maintain corporate certification initiatives
  • Performs other duties as assigned.

IT Governance Risk & Compliance III
Job Summary:
Performs the more complex day to day operation of the security functions as they relate to policy administration/enforcement, project management, physical security, mainframe provisioning, and audit liaison. Works under minimal supervision and escalates issues to management for resolution.
Responsibilities:
  • Interacts with users' requests through the corporate provision system to ensure appropriate accesses are granted to system and audit controls are in place.
  • Works with all areas of the company to review projects and documentation relating to Development, Servers and Network resources to determine and document risk associated to policy enforcement and administration
  • Assists project manager in projects specific to security, including aligning internal and external resources to complete projects critical to Security Administration; performs routine physical security planning/review including card key access; interacts with audits and auditors to support and maintain corporate certification initiatives.
  • Performs other duties as assigned.

IT Governance Risk & Compliance IV
Job Summary:
Performs the most complex operations of the security functions as they relate to policy administration/enforcement, project management, physical security, mainframe provisioning, and audit liaison. Escalates issues to management for resolution.
Responsibilities:
  • Works with all areas of the company to review projects relating to Development, Servers and Network resources to determine and document risk associated to policy enforcement and administration.
  • Manages projects specific to security, including aligning internal and external resources to complete projects critical to Security Administration.
  • Interacts with users' requests through the corporate provisioning system to ensure appropriate accesses are granted to system and audit controls are in place; performs routine physical security planning/review including card key access; interacts with audits and auditors to support and maintains corporate certification initiatives.
  • Performs other duties as assigned.

Qualifications:
IT Governance Risk & Compliance II
  • Bachelor's degree in Information Technology or related field or the equivalent combination of education and experience.
  • 3 years relevant IT experience.
  • Certified in Risk and Information Systems Control (CRISC) preferred.
  • Certified Information Systems Security Professional (CISSP) preferred.
  • Intermediate understanding of current technical architecture including but not limited to server, network, application firewall.

IT Governance Risk & Compliance III
  • Bachelor's degree in Information Technology or related field or the equivalent combination of education and experience.
  • 5 years relevant IT experience.
  • Certified in Risk and Information Systems Control (CRISC) Preferred.
  • Certified Information Systems Security Professional (CISSP) Preferred.
  • Intermediate Understanding of current technical architecture including but not limited to server, network, application firewall.

IT Governance Risk & Compliance IV
  • Bachelor's degree in Information Technology or related field or the equivalent combination of education and experience.
  • 7 Years Relevant IT Experience
  • Certified in Risk and Information Systems Control (CRISC) Preferred.
  • Certified Information Systems Security Professional (CISSP) Preferred.
  • Advanced Understanding of current technical architecture including but not limited to server, network, application firewall

Medical Mutual is looking to grow our team! We truly value and respect the talents and abilities of all of our employees. That's why we offer an exceptional package that includes:
A Great Place to Work:
  • We will provide the equipment you need for this role, including a laptop, monitors, keyboard, mouse and headset.
  • Whether you are working remote or in the office, employees have access to on-site fitness centers at many locations, or a gym membership reimbursement when there is no Medical Mutual facility available. Enjoy the use of weights, cardio machines, locker rooms, classes and more.
  • On-site cafeteria, serving hot breakfast and lunch, at the Brooklyn, OH headquarters.
  • Discounts at many places in and around town, just for being a Medical Mutual team member.
  • The opportunity to earn cash rewards for shopping with our customers.
  • Business casual attire, including jeans.

Excellent Benefits and Compensation:
  • Employee bonus program.
  • 401(k) with company match up to 4% and an additional company contribution.
  • Health Savings Account with a company matching contribution.
  • Excellent medical, dental, vision, life and disability insurance - insurance is what we do best, and we make affordable coverage for our team a priority.
  • Access to an Employee Assistance Program, which includes professional counseling, personal and professional coaching, self-help resources and assistance with work/life benefits.
  • Company holidays and up to 16 PTO days during the first year of employment with options to carry over unused PTO time.
  • After 120 days of service, parental leave for eligible employees who become parents through maternity, paternity or adoption.

An Investment in You:
  • Career development programs and classes.
  • Mentoring and coaching to help you advance in your career.
  • Tuition reimbursement up to $5,250 per year, the IRS maximum.
  • Diverse, inclusive and welcoming culture with Business Resource Groups.

About Medical Mutual:
Medical Mutual's status as a mutual company means we are owned by our policyholders, not stockholders, so we don't answer to Wall Street analysts or pay dividends to investors. Instead, we focus on developing products and services that allow us to better serve our customers and the communities around us.
There's a good chance you already know many of our Medical Mutual customers. As the official insurer of everything you love, we are trusted by businesses and nonprofit organizations throughout Ohio to provide high-quality health, life, disability, dental, vision and indemnity plans. We offer fully insured and self-funded group coverage, including stop loss, as well as Medicare Advantage, Medicare Supplement and individual plans. Our plans provide peace of mind to more than 1.2 million Ohioans.
We're not just one of the largest health insurance companies based in Ohio, we're also the longest running. Founded in 1934, we're proud of our rich history with the communities where we live and work.
We maintain a drug-free workplace and perform pre-employment substance abuse and nicotine testing.
#LI-SC1 #LI-HYBRID
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.

What Medical Mutual of Ohio employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply