1

It Grc Jobs (NOW HIRING)

Cybersecurity, IT GRC Practice Lead

Coral Gables, FL ยท On-site

$105K - $142K/yr

Are you a passionate about growing an IT Cybersecurity and IT GRC Compliance advisory practice? Elevate is looking for a dynamic, hard charging IT Service Delivery Practice Lead who thrives on ...

GRC Platforms * Policy Management * Compliance Automation Tools * IT Risk Assessment * Control Design * Security Testing This describes the general nature and level of work performed in this role. It ...

GRC Platforms * Policy Management * Compliance Automation Tools * IT Risk Assessment * Control Design * Security Testing This describes the general nature and level of work performed in this role. It ...

Overview The IT GRC Analyst operates within the enterprise Cybersecurity Operations function and supports the Information Technology, Information Systems, and other technology teams aligned under the ...

IT GRC Auditor Consultant ONSITE - CORAL GABLES, MIAMI, FLORIDA www.elevateconsult.com Are you passionate about working in a complex IT environment where security and data privacy are a primary focus ...

next page

Showing results 1-20

It Grc information

See salary details

$27

$57

$84

How much do it grc jobs pay per hour?

As of Jul 6, 2026, the average hourly pay for it grc in the United States is $57.43, according to ZipRecruiter salary data. Most workers in this role earn between $48.80 and $65.87 per hour, depending on experience, location, and employer.

What are some common challenges faced by IT GRC professionals, and how can they be addressed?

IT GRC (Governance, Risk, and Compliance) professionals often encounter challenges such as keeping up with rapidly evolving regulations, balancing security with business objectives, and ensuring cross-departmental collaboration. Staying updated requires continuous learning and leveraging industry resources. Building strong relationships with stakeholders across IT, legal, and business teams helps streamline compliance processes, while utilizing automated GRC tools can improve efficiency and accuracy. Proactive communication and ongoing training are key strategies for overcoming these challenges.

Can I make $200,000 a year in cyber security?

IT GRC (Governance, Risk, and Compliance) professionals can potentially earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISA, and roles in senior management or specialized consulting. Salary levels vary based on industry, location, and the complexity of the organization's security environment.

Is GRC in high demand?

GRC (Governance, Risk, and Compliance) roles are in high demand across various industries due to increasing regulatory requirements and cybersecurity concerns. Professionals with skills in risk management, compliance frameworks, and relevant certifications like CISA or CISSP are sought after, especially in organizations prioritizing data security and regulatory adherence.

Is GRC an entry level job?

GRC (Governance, Risk, and Compliance) roles can be entry-level, especially for positions focused on compliance or risk analysis, but many roles require some experience or certifications such as CISSP or CISA. Entry-level positions often involve supporting tasks, documentation, and learning about security frameworks and regulations.

What are the key skills and qualifications needed to thrive as an IT GRC (Governance, Risk, and Compliance) professional, and why are they important?

To thrive as an IT GRC professional, you need a solid understanding of information security, risk management frameworks, regulatory compliance, and often a bachelor's degree in information technology or a related field. Familiarity with tools like GRC platforms (e.g., RSA Archer, ServiceNow GRC), audit management systems, and certifications such as CISA, CISSP, or CRISC are typically required. Strong analytical thinking, attention to detail, and effective communication skills help you assess risks and collaborate with stakeholders. These skills are crucial for ensuring organizations meet regulatory requirements, manage IT risks, and maintain robust security postures.

What is the role of GRC in it?

In IT, GRC (Governance, Risk Management, and Compliance) professionals develop and implement policies to ensure that IT systems meet regulatory requirements, manage security risks, and align with organizational goals. They often work with frameworks like ISO 27001 and use tools such as risk assessment software to monitor and improve security posture.

What is IT GRC?

IT GRC stands for Information Technology Governance, Risk, and Compliance. It refers to the framework and processes that organizations use to ensure their IT operations align with business goals, effectively manage risks, and comply with relevant laws and regulations. IT GRC professionals help organizations create policies, implement controls, monitor compliance, and respond to audits. Their work is essential for protecting data, reducing security risks, and maintaining the trust of customers and stakeholders.

What is the difference between It Grc vs Cybersecurity Analyst?

AspectIt GrcCybersecurity Analyst
Required CertificationsISO 27001 Lead Implementer, CISSP, CISACISSP, CompTIA Security+, CEH
Work EnvironmentPolicy development, risk management, complianceThreat detection, incident response, security monitoring
Employer & Industry UsageCorporate compliance, risk management teamsSecurity operations centers, IT departments

It Grc professionals focus on establishing policies, managing risks, and ensuring compliance with regulations. Cybersecurity Analysts primarily monitor security threats, respond to incidents, and protect systems. While both roles require security knowledge, It Grc emphasizes governance and risk management, whereas Cybersecurity Analysts are more involved in technical threat mitigation.

More about It Grc jobs
What cities are hiring for It Grc jobs? Cities with the most It Grc job openings:
What are the most commonly searched types of It Grc jobs? The most popular types of It Grc jobs are:
What states have the most It Grc jobs? States with the most job openings for It Grc jobs include:
Infographic showing various It Grc job openings in the United States as of July 2026, with employment types broken down into 27% Locum Tenens, 25% Full Time, 1% Contract, 43% Nights, and 4% Summer. Highlights an 79% Physical, 6% Hybrid, and 15% Remote job distribution, with an average salary of $119,446 per year, or $57.4 per hour.
Cybersecurity, IT GRC Practice Lead

Cybersecurity, IT GRC Practice Lead

Elevate

Coral Gables, FL โ€ข On-site

$105K - $142K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 6 days ago


Job description

Are you a passionate about growing an IT Cybersecurity and IT GRC Compliance advisory practice?ย 
Elevate is looking for a dynamic, hard charging IT Service Delivery Practice Lead who thrives on excellent client service, and takes pride in providing your clients with quality, pragmatic and on-time / on-budget advisory services. Are a leader who is also an expert in Cybersecurity and IT GRC Compliance and wants to learn more about AI Governance and AI Risk Management and moreโ€”and you love leading teams and effortlessly guiding your clients through their compliance journey.
You must be able to work hard and smart โ€“ we need a leader who is willing to frontload the hard work, roll up the sleeves, sit with the team, understand their challenges, limitations and think of pragmatic, value-added solutions that meets the objective, without blowing the budget while keeping the client happy. If you practice servanthood leadership, have an entrepreneurial bug, and are driven by a mission to manage and grow teams, keep reading.
About Elevate
We are a boutique cybersecurity and compliance advisory firm with a reputation for excellence, pragmatism, and agility. We deliver exceptional client service, pragmatic solutions, and a collaborative, roll-up-your-sleeves culture. We value integrity, creativity, and a relentless drive to help our clients succeed.
Read more about our culture and values here: elevateconsult.com/about-us
Our Mission
To be proud of what we do. To serve and enjoy our clients and the people we work with. To grow our company and grow as individuals.
About the Position
We are looking for a motivated and passionate Cybersecurity IT GRC Practice Lead that is excited to work in a fast-paced, high-energy and creative environment and is anxious to leave his/her fingerprint in our growing practice.
The Cybersecurity IT GRC Practice Lead role is an integral part to our service delivery and leadership team. The ideal candidate must be self-motivated, love providing exceptional client service, solving and coaching our teams and clients through their compliance journey in an effortless and joyful manner.ย  We have been in business for over 15 years with hundreds of happy clients in a multitude of industries, environments, and challenges where we bring value with our solutions and placements.
This special breed of auditor/consultant is client-centric, people-centric, solution-focused, resourceful, adaptable, organized, reliable, authentic, able to work independently and in a team setting; and able to transition seamlessly between trivial day-to-day delivery and more strategic initiatives. This position requires a highly analytical, detail-oriented professional with experience identifying risks, evaluating controls, and providing strategic audit recommendations to client senior executives while providing thought leadership and ways to improve and scale the practice.
What Youโ€™ll Do:
  • Lead Practice Delivery (60%)
  • Oversee and drive the successful delivery of IT Cybersecurity & IT GRC advisory services, ensuring all client projects are completed on time, on budget, and to the highest standards of quality.
  • Provide hands-on leadership, including reviewing and, when necessary, producing client deliverables such as work papers, reports, and recommendations1.
  • Mentor, coach, and develop a high-performing team, fostering a collaborative, client-centric, and solution-focused culture.
  • Serve as the escalation point for client and team issues, proactively identifying and mitigating project risks, and ensuring continuous improvement in service delivery.
  • Maintain a pulse on all active projects, ensuring your utilization targets (minimum 60%) are met by balancing client work, team oversight, thought leadership and minimal administrative duties.
  • Collaborate with the CEO and leadership team on strategic initiatives, practice growth, and client engagement.
  • Drive Thought Leadership (40%)
  • Partner with the CEO and marketing team to develop and publish thought leadership content, including client case studies, practitioner checklists, how-to guides, and market/industry trend analyses.
  • Engage with clients to capture success stories and best practices, translating them into actionable insights for both clients and the broader market.
  • Continuously monitor and interpret regulatory, market, and industry trends to ensure Elevateโ€™s services and content remain at the forefront of the cybersecurity and GRC landscape.

What you Need to Get Hired:
  • Experience & Expertise
  • 10-20 years in IT GRC audit advisory, with a proven record of leading client-facing teams and delivering complex IT Cybersecurity & GRC projects for large advisory firms.
  • Deep domain knowledge of regulatory frameworks (SOX, SOC, ISO 27001, PCI, GDPR, NIST 800-53, and/or FedRAMP, HITRUST, CMMC, etc.) and industry best practices.
  • Demonstrated experience producing thought leadership materials and driving practice innovation.
  • Leadership & Work Ethic
  • Strong work ethic and commitment to a leadership role requiring on average more than 40hr work week.
  • Willingness to โ€œroll up your sleevesโ€ and engage in all aspects of delivery, from high-level strategy to detailed documentation and review.
  • Ability to meet 60% utilization, balancing client/project work with thought leadership and administrative responsibilities.
  • Client & Team Focus
  • Responsive and accountable to clients, team, and leadership, with a proven ability to manage multiple priorities and deliver quality outcomes under tight deadlines.
  • Solution-oriented, resourceful, adaptable, and able to resolve issues creatively and pragmatically.
  • Cultural Fit
  • Self-motivated, entrepreneurial, and passionate about leading teams and serving clients.
  • Smart, creative, authentic, and collaborative; able to thrive in a small, fast-paced, and values-driven firm.
  • Strong communicator, easy to work with, and committed to continuous learning and improvement.
  • Education & Credentials
  • Bachelorโ€™s degree in a relevant field (MIS, IT, Computer Science, Business, etc.).
  • Professional certifications such as CISA, CISSP, CISM preferred or a commitment to obtain them.
  • Deep knowledge of SOX, SOC, ISO 27001, PCI, GDPR, and familiarity with NIST 800-53 frameworks.
Travel Requirements
  • This is a remote position; no travel is requiredย ย 
Why Youโ€™ll Want to Join Us
ย 
  • Weโ€™re a tight-knit, values-driven team where smart, capable people thrive without bureaucracy
  • We support autonomy, ownership, flexibility, and real impact
  • Competitive salary ($160,000โ€“$210,000), performance bonuses, full healthcare, 401(k) with employer match, paid vacation, and performance incentives
  • Minimal travel; fully remote; flexible work arrangements
Competitive compensation based on experience; provides full healthcare insurance (Medical, Vision, Dental, Basic Life and other wellness benefits), 401k including employer contribution (once vested), paid vacation packages and performance-based bonuses.
If youโ€™re ready to take on high-value cybersecurity challenges, build meaningful client relationships, and help elevate the security posture of leading organizationsโ€”letโ€™s talk.