The Security Risk & Compliance Analyst supports the organizations global information security ... Working knowledge of technologies such as cloud computing, DevOps, and application security is ...
The Security Risk & Compliance Analyst supports the organizations global information security ... Working knowledge of technologies such as cloud computing, DevOps, and application security is ...
The Security Risk & Compliance Analyst supports the organizations global information security ... Technology auditing. Responsibilities Risk Assessment & Management • Assist in conducting ...
The Security Risk & Compliance Analyst supports the organizations global information security ... Technology auditing. Responsibilities Risk Assessment & Management • Assist in conducting ...
Risk & Compliance Analyst
Boulder, CO · On-site +1
Zayo serves wireless and wireline carriers, media, tech, content, finance, healthcare and other ... Bachelor's degree in Cybersecurity, Information Systems, Business, or a related field, or ...
Quick apply
Risk & Compliance Analyst
Boulder, CO · On-site +1
Zayo serves wireless and wireline carriers, media, tech, content, finance, healthcare and other ... Bachelor's degree in Cybersecurity, Information Systems, Business, or a related field, or ...
Director, IT Risk & Compliance
Dallas, TX · On-site
$170K - $213K/yr
Segregation of Duties (SoD) analysis and remediation; ERP security architecture and role-based ... Understanding of IT risk and compliance frameworks and methodologies. * Experience supporting SOX ...
Director, IT Risk & Compliance
Dallas, TX · On-site
$170K - $213K/yr
Segregation of Duties (SoD) analysis and remediation; ERP security architecture and role-based ... Understanding of IT risk and compliance frameworks and methodologies. * Experience supporting SOX ...
Senior SOX Compliance Analyst - IT
$93K - $93K/yr
The Senior SOX Compliance Analyst - IT supports the Manager, IT Compliance, in executing the ... Participates in IT risk assessments by gathering data, identifying potential gaps, and assisting in ...
Senior SOX Compliance Analyst - IT
$93K - $93K/yr
The Senior SOX Compliance Analyst - IT supports the Manager, IT Compliance, in executing the ... Participates in IT risk assessments by gathering data, identifying potential gaps, and assisting in ...
Senior SOX Compliance Analyst - IT
Phoenix, AZ · On-site
$93K - $93K/yr
The Senior SOX Compliance Analyst - IT supports the Manager, IT Compliance, in executing the ... Participates in IT risk assessments by gathering data, identifying potential gaps, and assisting in ...
Senior SOX Compliance Analyst - IT
Phoenix, AZ · On-site
$93K - $93K/yr
The Senior SOX Compliance Analyst - IT supports the Manager, IT Compliance, in executing the ... Participates in IT risk assessments by gathering data, identifying potential gaps, and assisting in ...
Role: Solution Architect - IT RISK & COMPLIANCE Duration: FUll Time Location: Cranston, RI Scope ... Analytical and objective - able to elaborate on, characterize, assess and evaluate technology and ...
Role: Solution Architect - IT RISK & COMPLIANCE Duration: FUll Time Location: Cranston, RI Scope ... Analytical and objective - able to elaborate on, characterize, assess and evaluate technology and ...
Senior IT Security, Risk & Compliance Analyst
Waltham, MA · Hybrid
$145K - $177K/yr
The Senior IT Security, Risk & Compliance Analyst is responsible for supporting IT compliance, risk management, and computer systems validation activities within a regulated life sciences environment.
Senior IT Security, Risk & Compliance Analyst
Waltham, MA · Hybrid
$145K - $177K/yr
The Senior IT Security, Risk & Compliance Analyst is responsible for supporting IT compliance, risk management, and computer systems validation activities within a regulated life sciences environment.
IT Security and Governance Analyst
Louisville, KY · On-site
$43.25 - $57.50/hr
Brown-Forman is a premium spirits company that offers a dynamic opportunity for an experienced IT Governance/Risk/Compliance Analyst. In this role, you will identify and mitigate IT risks, ensure ...
IT Security and Governance Analyst
Louisville, KY · On-site
$43.25 - $57.50/hr
Brown-Forman is a premium spirits company that offers a dynamic opportunity for an experienced IT Governance/Risk/Compliance Analyst. In this role, you will identify and mitigate IT risks, ensure ...
Governance Risk & Compliance Analyst Location: Lakewood, CO Work Model: Hybrid - onsite and remote ... Knowledge of internal control frameworks (e.g., JSOX) and IT governance practices is highly ...
Governance Risk & Compliance Analyst Location: Lakewood, CO Work Model: Hybrid - onsite and remote ... Knowledge of internal control frameworks (e.g., JSOX) and IT governance practices is highly ...
Governance Risk & Compliance Analyst Location: Lakewood, CO Work Model: Hybrid - onsite and remote ... Knowledge of internal control frameworks (e.g., JSOX) and IT governance practices is highly ...
Governance Risk & Compliance Analyst Location: Lakewood, CO Work Model: Hybrid - onsite and remote ... Knowledge of internal control frameworks (e.g., JSOX) and IT governance practices is highly ...
Governance Risk & Compliance Analyst Location: Lakewood, CO Work Model: Hybrid - onsite and remote ... Knowledge of internal control frameworks (e.g., JSOX) and IT governance practices is highly ...
Governance Risk & Compliance Analyst Location: Lakewood, CO Work Model: Hybrid - onsite and remote ... Knowledge of internal control frameworks (e.g., JSOX) and IT governance practices is highly ...
Further, the IT Risk Analyst will participate in the design and evaluation of proposed remediation plans for noted issues to support compliance with prescribed requirements. The IT Risk Analyst will ...
Further, the IT Risk Analyst will participate in the design and evaluation of proposed remediation plans for noted issues to support compliance with prescribed requirements. The IT Risk Analyst will ...
VSU - IT Governance and Compliance Analyst - South Chesterfield, VA 23834 - Hybrid
Chesterfield, VA · On-site
$89K - $89K/yr
VSU - IT Governance and Compliance Analyst (w/AI) Location: 2430 Pine Forest Drive, South ... Experience: * 5-10 years in IT governance, risk, or compliance roles required. * Experience with AI ...
VSU - IT Governance and Compliance Analyst - South Chesterfield, VA 23834 - Hybrid
Chesterfield, VA · On-site
$89K - $89K/yr
VSU - IT Governance and Compliance Analyst (w/AI) Location: 2430 Pine Forest Drive, South ... Experience: * 5-10 years in IT governance, risk, or compliance roles required. * Experience with AI ...
IT Risk Analyst
Plymouth, MA · On-site
Further, the IT Risk Analyst will participate in the design and evaluation of proposed remediation plans for noted issues to support compliance with prescribed requirements. The IT Risk Analyst will ...
IT Risk Analyst
Plymouth, MA · On-site
Further, the IT Risk Analyst will participate in the design and evaluation of proposed remediation plans for noted issues to support compliance with prescribed requirements. The IT Risk Analyst will ...
IT Audit & Compliance Analyst
White River Junction, VT · On-site
$89K - $90K/yr
Mascoma Bank is looking for an IT Audit & Compliance Analyst to join our Information Technology ... What You'll Do • Perform scheduled and risk-based user access reviews across core banking ...
IT Audit & Compliance Analyst
White River Junction, VT · On-site
$89K - $90K/yr
Mascoma Bank is looking for an IT Audit & Compliance Analyst to join our Information Technology ... What You'll Do • Perform scheduled and risk-based user access reviews across core banking ...
Risk & Compliance Analyst
Pittsburgh, PA · On-site
An award-winning technology platform, built in-house, that aligns with the future state of Global ... information, or any other protected characteristic. Aires will not discriminate against persons ...
Risk & Compliance Analyst
Pittsburgh, PA · On-site
An award-winning technology platform, built in-house, that aligns with the future state of Global ... information, or any other protected characteristic. Aires will not discriminate against persons ...
IT Audit & Compliance Analyst
$89K - $90K/yr
Description Mascoma Bank is looking for an IT Audit & Compliance Analyst to join our Information ... In this role, you will support the Bank's technology risk, audit, and access governance programs by ...
IT Audit & Compliance Analyst
$89K - $90K/yr
Description Mascoma Bank is looking for an IT Audit & Compliance Analyst to join our Information ... In this role, you will support the Bank's technology risk, audit, and access governance programs by ...
IT Compliance Analyst
$111K - $130K/yr
Job Title: IT Compliance Analyst Location: Tempe, AZ Division: Operations Department: IT Operations ... Duties and Responsibilities ● IT Security Risk and Privacy Assessments - Assess, document, and ...
Quick apply
IT Compliance Analyst
$111K - $130K/yr
Job Title: IT Compliance Analyst Location: Tempe, AZ Division: Operations Department: IT Operations ... Duties and Responsibilities ● IT Security Risk and Privacy Assessments - Assess, document, and ...
IT Risk Analyst
Buffalo, NY · On-site
Kaleida Health is dedicated to advancing community health and is seeking an IT Risk Analyst. In ... compliance initiatives. Responsibilities : • Design and implement GRC's IT governance and risk ...
New
IT Risk Analyst
Buffalo, NY · On-site
Kaleida Health is dedicated to advancing community health and is seeking an IT Risk Analyst. In ... compliance initiatives. Responsibilities : • Design and implement GRC's IT governance and risk ...
New
It Risk And Compliance Analyst information
See salary details
$15.38 - $19.97
3% of jobs
$19.97 - $24.56
7% of jobs
$24.56 - $29.15
12% of jobs
$30.05 is the 25th percentile. Wages below this are outliers.
$29.15 - $33.74
15% of jobs
$33.74 - $38.33
13% of jobs
The median wage is $38.48 / hr.
$38.33 - $42.92
16% of jobs
$42.92 - $47.51
8% of jobs
$48.08 is the 75th percentile. Wages above this are outliers.
$47.51 - $52.10
11% of jobs
$52.10 - $56.69
6% of jobs
$56.69 - $61.28
6% of jobs
$61.28 - $65.87
3% of jobs
$15
$40
$65
How much do it risk and compliance analyst jobs pay per hour?
What is the difference between It Risk And Compliance Analyst vs It Security Analyst?
| Aspect | It Risk And Compliance Analyst | It Security Analyst |
|---|---|---|
| Certifications | ISO 27001, CISSP, CISA | CISSP, CompTIA Security+ |
| Work Environment | Risk assessments, policy development, compliance audits | Network monitoring, incident response, security infrastructure |
| Industry Usage | Financial, healthcare, government sectors | Tech, finance, healthcare sectors |
The It Risk And Compliance Analyst focuses on ensuring organizational adherence to regulations and managing risk frameworks, while the It Security Analyst primarily handles security measures, threat detection, and incident response. Both roles require similar certifications and often work within the same industries, but their core responsibilities differ: one emphasizes compliance and risk management, the other emphasizes security operations.
What does an IT compliance analyst do?
What are IT Risk and Compliance Analysts?
What are some common challenges an IT Risk and Compliance Analyst faces when balancing regulatory requirements with business objectives?
What are the key skills and qualifications needed to thrive as an IT Risk and Compliance Analyst, and why are they important?
What does a risk compliance analyst do?
Is a GRC analyst a good entry-level job?
Full-time
Posted 21 days ago
Victaulic rating
7.1
Based on 34 frontline employees who took The Breakroom Quiz
363rd of 527 rated manufacturers
Job description
Job Description
The Security Risk & Compliance Analyst supports the organizations global information security program by assisting in the identification, assessment, and management of information security risks and compliance demands across Victaulic's entire organization. This position plays an integral role in ensuring the company meets its obligations under domestic and international regulatory frameworks, including but not limited to, NIST CSF, ISO27001, CMMC and the EU's NIS2 Directive. The analyst will work closely with internal stakeholders, external auditors, and third-party vendors to support a culture of security awareness and continuous compliance improvement.
The ideal candidate for this role will have knowledge of, if not actual experience, in the processes of obtaining and maintaining compliance with security frameworks as well as an understanding of industry standard Information Technology auditing.
Responsibilities
Risk Assessment & Management
Assist in conducting information security risk assessments across business units, systems, and processes in accordance with established methodologies.
Document risk findings, assign risk ratings, and track remediation activities through the risk register.
Support the development and maintenance of risk treatment plans in coordination with system owners and IT teams.
Participate in annual and ad hoc enterprise risk reviews, contributing analysis and supporting materials.
Compliance & Framework Management
Support compliance activities related to NIST Cybersecurity Framework (CSF), ISO/IEC 27001, CMMC (Cybersecurity Maturity Model Certification), and the EU NIS2 Directive.
Conduct gap analyses against applicable frameworks and assist in developing remediation roadmaps.
Maintain compliance documentation, including policies, procedures, control evidence, and assessment reports.
Monitor regulatory changes and emerging framework updates; summarize implications for the security program.
Third-Party & Audit Management
Coordinate and support third-party security audits and assessments, including scheduling, evidence collection, and stakeholder communication.
Assist in managing vendor risk assessments for new and existing third-party vendors and suppliers.
Track audit findings and corrective action plans, ensuring timely remediation and closure.
Serve as a liaison between internal teams and external auditors during certification audits.
Policy, Documentation & Awareness
Assist in drafting, reviewing, and updating information security policies, standards, and procedures.
Support the delivery of security awareness training and phishing simulation programs.
Maintain organized records of all compliance and risk management activities in the Governance, Risk & Compliance platform.
Collaboration & Reporting
Collaborate with IT, Legal, Operations, and other business functions to integrate security requirements into business processes.
Prepare regular status reports and metrics dashboards for management review.
Contribute to the continuous improvement of the information security program by identifying process gaps and recommending enhancements.
Qualifications
Technical Experience
Foundational understanding of information security principles, including confidentiality, integrity, and availability (CIA).
Basic understanding of risk assessment methodologies and risk management concepts.
Familiarity with third-party risk management and audit processes.
Strong analytical and problem-solving skills with attention to detail.
Capacity to understand legacy and progressive technology and security controls along with respective risk.
Working knowledge of technologies such as cloud computing, DevOps, and application security is required.
General Requirements
Analytical Thinking - applies structured reasoning to evaluate risk and compliance data objectively
Integrity & Accountability - Handles sensitive security information with discretion and professionalism.
Communication - Clearly translates security requirements and findings for varied audiences across the organization
Continuous Learning - Proactively keeps pace with evolving security frameworks, threats, and regulatory requirements
Collaboration - Builds effective working relationships across IT, operations, and business functions globablly
Detail Orientation - Produces thorough, accurate documentation and maintains meticulous records of compliance activities
Education & Certifications
0 - 2 years' experience in information security, IT audit, risk management, or a related field.
Bachelor's degree, cybersecurity certification, or equivalent experience in an information security or related field.
A minimum of an entry-level certification such as the CompTIA Security+ certification
Additional Risk & Compliance certification(s), such as CISA, a plus
Work Environment & Physical Requirements
This position is primarily office-based with hybrid flexibility. The role may require occasional visits to manufacturing facilities domestically and internationally. Ability to work across global time zones may be required for coordination with European and Asian teams.
Victaulic is an Equal Employment Opportunity (EOE/M/F/Vets/Disabled) employer and welcomes all qualified applicants. Applicants will receive fair and impartial consideration without regard to race, gender, color, religion, national origin, age, disability, veteran status, sexual orientation, genetic data, or other legally protected status. (Background checks may be required as part of our pre-employment process).
What Victaulic employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Victaulic
Sourced by ZipRecruiter
Industry
Industrial machinery manufacturing
Company size
1,001 - 5,000 Employees
Headquarters location
Easton, PA, US
Year founded
1919