ZipRecruiter

Log In

1

It Risk And Compliance Jobs (NOW HIRING)

Superbeo

IT Risk & Compliance Analyst

San Francisco, CA · On-site

$110.70K - $111.30K/yr

Job Title: IT Risk & Compliance Analyst Job Location: San Francisco, CA 94104 * Please local candidates that are able to work hybrid work schedule, Tuesday and Wednesday, at the SF Offices. Job ...

Sonsoft Inc

IT Risk & Compliance

Cranston, RI

$91.90K - $92.40K/yr

Company Description SonSoft is an IT Staffing and consulting firm and duly organized under the laws of the Commonwealth of Georgia. We are growing at a steady pace specializing in the fields of ...

Sonsoft Inc

IT Risk & Compliance

Cranston, RI

$91.90K - $92.40K/yr

Sonsoft Inc. is growing at a steady pace specializing in the fields of Software Development, Software Consultancy and Information Technology Enabled Services. * At least 5 years of experience in ...

Hertz

Sr Dir IT Risk & Compliance

Atlanta, GA · On-site

$200K/yr

Ensure IT Security practices are in compliance with global laws and regulations. * Support and oversee Vendor and Customer Risk Assessments. * Provide support and guidance for legal and regulatory ...

Hertz

Sr Dir IT Risk & Compliance

Atlanta, GA · On-site

$200K/yr

Ensure IT Security practices are in compliance with global laws and regulations. * Support and oversee Vendor and Customer Risk Assessments. * Provide support and guidance for legal and regulatory ...

Wsgr

Manager, IT Risk Operations

Palo Alto, CA

$147.05K - $198.95K/yr

This high-impact position in the Governance, Risk & Compliance function sits at the center of the ... Strengthen IT Governance & Controls * Lead the development of executive-level reporting on IT risk, ...

next page

Showing results 1-20

People also search for

All JobsIt Risk And Compliance Jobs

It Risk And Compliance information

What are the key skills and qualifications needed to thrive as an IT Risk and Compliance professional, and why are they important?

To thrive as an IT Risk and Compliance professional, you need a solid understanding of IT governance, risk management frameworks, regulatory requirements, and a relevant degree such as in information technology, cybersecurity, or a related field. Familiarity with tools like GRC (Governance, Risk, and Compliance) platforms, as well as certifications such as CISA, CRISC, or CISSP, is typically required. Strong analytical thinking, attention to detail, and effective communication help professionals excel in navigating complex regulations and collaborating with cross-functional teams. These skills and qualifications are crucial for ensuring organizational compliance, mitigating security risks, and maintaining trust with stakeholders.

How does an IT Risk and Compliance professional typically collaborate with other departments to ensure regulatory adherence?

IT Risk and Compliance professionals regularly work with teams across the organization—such as IT, legal, audit, and business operations—to identify risks, interpret regulations, and implement compliance controls. They facilitate training, conduct assessments, and coordinate responses to audits or incidents, ensuring that everyone understands their responsibilities. Effective communication and strong relationship-building skills are essential, as much of the role involves translating technical requirements into actionable steps for non-technical staff. This cross-functional collaboration helps maintain a culture of compliance and minimizes organizational risk.

What is IT Risk and Compliance?

IT Risk and Compliance refers to the process of identifying, assessing, and managing risks associated with an organization's information technology systems, while ensuring that these systems adhere to relevant laws, regulations, and internal policies. Professionals in this field work to protect sensitive data, prevent security breaches, and ensure that the organization's IT practices are compliant with industry standards such as GDPR, HIPAA, or SOX. They often conduct risk assessments, implement controls, monitor compliance, and respond to audits. The goal is to minimize potential threats to IT infrastructure and maintain the trust of customers and stakeholders.

What is the difference between It Risk And Compliance vs Cybersecurity Analyst?

AspectIt Risk And ComplianceCybersecurity Analyst
CertificationsISO 27001, CISSP, CISACISSP, CompTIA Security+
Work EnvironmentPolicy development, risk assessments, compliance auditsMonitoring security threats, incident response, vulnerability testing
Employer & Industry UsageFinancial, healthcare, government sectorsTech companies, financial institutions, government agencies

While both roles focus on protecting information, It Risk And Compliance emphasizes establishing policies, ensuring regulatory adherence, and managing overall risk frameworks. Cybersecurity Analysts primarily focus on identifying and mitigating security threats through technical measures. Understanding these differences helps organizations assign the right responsibilities and professionals for their security needs.

More about It Risk And Compliance jobs
What cities are hiring for It Risk And Compliance jobs? Cities with the most It Risk And Compliance job openings:
What states have the most It Risk And Compliance jobs? States with the most job openings for It Risk And Compliance jobs include:
What job categories do people searching It Risk And Compliance jobs look for? The top searched job categories for It Risk And Compliance jobs are:
It Risk And Compliance jobs near you

IT Risk Compliance Specialist

Montauk Energy

Pittsburgh, PA

Other

Medical, Dental, Vision, Life, Retirement, PTO

Posted 5 days ago

Job description

Job Openings >> IT Risk Compliance Specialist
IT Risk Compliance Specialist
Summary
Title: IT Risk Compliance Specialist ID: 2261 Location: Pittsburgh, PA Department: Information Technology
More about this job >
Description

Job Title: IT Risk Compliance Specialist

Department: Information Technology

Location: Pittsburgh, PA

Reports To: CIO

Company Statement:

Montauk Renewables, Inc. (NASDAQ: MNTK) is a renewable energy company specializing in the management, recovery, and conversion of biogas into RNG. The Company captures methane, preventing it from being released into the atmosphere, and converts it into either RNG or electrical power for the electrical grid ("Renewable Electricity"). The Company, headquartered in Pittsburgh, Pennsylvania, has more than 30 years of experience in the development, operation, and management of landfill methane-fueled renewable energy projects. The Company has current operations at 15 operating projects located in California, Idaho, Ohio, Oklahoma, Pennsylvania, North Carolina, and Texas. The Company sells RNG and Renewable Electricity, taking advantage of Environmental Attribute premiums available under federal and state policies that incentivize their use.

Job Summary:

The IT Risk Compliance Specialist reports to the CIO and is responsible for ensuring that the organization's information technology systems and processes comply with regulatory requirements, internal policies, and industry best practices. This role focuses on identifying, assessing, and mitigating IT-related risks while supporting audits, compliance initiatives, and security frameworks.

Key Responsibilities:

  • Develop, implement, and maintain IT risk management and compliance programs aligned with regulatory standards (e.g., SOX, GDPR, HIPAA, PCI-DSS).
  • Work closely with IT, Audit, and Operations business units to address compliance gaps.
  • Conduct risk assessments and recommend mitigation strategies for IT systems and processes.
  • Track and report compliance metrics, risk findings, and remediation progress to stakeholders.
  • Monitor compliance with internal policies, procedures, and external regulations.
  • Prepare documentation and evidence for internal and external audits.
  • Maintain accurate records of compliance activities and risk assessments.
  • Assist in creating and updating IT security and compliance policies.
  • Ensure adherence to frameworks such as NIST, CIS, and ISO.
  • Provide guidance and training on compliance requirements and best practices.
  • Other duties as required.

Qualifications:

  • Bachelor's Degree in Information Technology, Cybersecurity, Risk Management, or related field.
  • Minimum of 3 years in IT risk management, compliance, and/or audit roles.
  • Familiarity with regulatory standards and security frameworks.
  • Proficiency in risk assessment tools and compliance software.
  • Strong analytical and problem-solving abilities.
  • Excellent communication and documentation skills.

Preferred Certifications

  • Certified Information Systems Auditor (CISA)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified in Governance, Risk, and Compliance (CGRC)

BENEFITS:

Full-Time employees are eligible for a strong benefits package including:

Medical, Dental and Vision

Flexible spending account

Paid time off

Long term disability, and life insurance

Retirement 401K

Pay is commensurate with qualifications.

Montauk Renewables is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to status as a protected veteran or a qualified individual with a disability, or other protected status, such as race, religion, color, national origin, sex, age. We are a drug free work environment based on Federal guidelines and use E-Verify to confirm employment eligibility.

Apply Now
 
Refer to a Friend
Copyright 2026 Montauk Energy. All rights reserved.
Powered by ApplicantStack Applicant Tracking System
Privacy Policy | Terms of Use

Apply