1

Overnight Governance Risk Compliance Jobs (NOW HIRING)

next page

Showing results 1-20

Overnight Governance Risk Compliance information

See salary details

$31.5K

$68.7K

$112K

How much do overnight governance risk compliance jobs pay per year?

As of Jul 3, 2026, the average yearly pay for overnight governance risk compliance in the United States is $68,732.00, according to ZipRecruiter salary data. Most workers in this role earn between $49,000.00 and $86,500.00 per year, depending on experience, location, and employer.

What is the salary of governance risk compliance?

The salary for governance, risk, and compliance (GRC) professionals varies based on experience, location, and industry, but typically ranges from $70,000 to $130,000 annually. Entry-level roles may start around $60,000, while senior positions with certifications like CISA or CRISC can earn over $150,000. Factors such as certifications, skills in risk management tools, and organizational size influence compensation.

Is compliance a dead-end job?

Overnight Governance Risk Compliance roles are essential for organizations to ensure adherence to regulations and manage risks. These positions often offer opportunities for career advancement, specialized certifications, and skill development, making them a viable long-term career path rather than a dead-end job.

What is the difference between Overnight Governance Risk Compliance vs Overnight Compliance Analyst?

AspectOvernight Governance Risk ComplianceOvernight Compliance Analyst
CertificationsGRC certifications, such as CRISC or CISACompliance certifications, such as CAMS or CCEP
Work EnvironmentFinancial institutions, 24/7 operations, risk-focusedFinancial firms, monitoring compliance, reporting
Employer & Industry UsageBanking, investment firms, regulatory bodiesBanking, asset management, financial services

Overnight Governance Risk Compliance professionals focus on managing and monitoring risk, governance, and compliance frameworks during overnight shifts, often dealing with high-level policies and regulatory adherence. Overnight Compliance Analysts primarily review daily compliance activities, ensure adherence to regulations, and handle reporting tasks. While both roles require compliance knowledge, GRC roles emphasize risk management strategies, whereas Compliance Analysts focus on operational compliance tasks during overnight hours.

What are the key skills and qualifications needed to thrive as an Overnight Governance Risk Compliance professional, and why are they important?

To excel as an Overnight Governance Risk Compliance professional, you need a solid understanding of risk management, compliance frameworks (such as SOX, GDPR, or ISO 27001), and strong analytical abilities, often supported by a relevant degree or certifications like CISA or CRISC. Proficiency with GRC software platforms, audit management tools, and reporting systems is typically required. Attention to detail, integrity, effective communication, and the ability to work independently during off-peak hours are standout soft skills. These skills are crucial to ensure ongoing regulatory compliance, effective risk mitigation, and the safeguarding of organizational assets during non-standard business hours.

Is governance risk and compliance a good career?

Governance, Risk, and Compliance (GRC) is a growing field that offers opportunities in industries such as finance, healthcare, and technology. It requires strong analytical skills, knowledge of regulations, and often certifications like CRCM or CCEP, making it a stable career choice for those interested in organizational oversight and risk management.

What are Overnight Governance Risk Compliance roles?

Overnight Governance Risk Compliance roles are positions responsible for monitoring and ensuring that an organization adheres to regulatory, legal, and internal policy requirements during overnight hours. Professionals in these roles often review transactions, assess risks, respond to compliance alerts, and implement controls to prevent violations outside of standard business hours. Their work helps organizations maintain operational integrity, identify potential risks early, and ensure continuous compliance with industry standards and regulations.

Is GRC an entry level job?

Overnight Governance, Risk, and Compliance (GRC) roles are typically not entry-level positions; they often require some experience or knowledge of compliance frameworks, risk management, and related tools. Entry-level positions in GRC may focus on supporting roles or administrative tasks, while more advanced roles involve managing policies, audits, and risk assessments.

What are some common challenges faced by professionals working overnight in Governance, Risk, and Compliance (GRC) roles?

Overnight GRC professionals often encounter challenges such as maintaining consistent communication with daytime teams, managing fatigue due to unconventional hours, and ensuring timely responses to incidents that may arise outside of regular business hours. Additionally, they must remain vigilant to rapidly changing regulatory requirements and risks that can emerge overnight. Successful candidates typically develop strong time management skills and leverage technology to collaborate effectively with global teams and stakeholders.
More about Overnight Governance Risk Compliance jobs
What cities are hiring for Overnight Governance Risk Compliance jobs? Cities with the most Overnight Governance Risk Compliance job openings:
What are the most commonly searched types of Governance Risk Compliance jobs? The most popular types of Governance Risk Compliance jobs are:
What states have the most Overnight Governance Risk Compliance jobs? States with the most job openings for Overnight Governance Risk Compliance jobs include:
Infographic showing various Overnight Governance Risk Compliance job openings in the United States as of June 2026, with employment types broken down into 2% As Needed, 70% Full Time, 25% Part Time, 1% Temporary, and 2% Contract. Highlights an 94% Physical, 2% Hybrid, and 4% Remote job distribution, with an average salary of $68,732 per year, or $33 per hour.
Sr. Cyber Governance, Risk & Compliance Analyst

Sr. Cyber Governance, Risk & Compliance Analyst

Vuori, Inc

Carlsbad, CA • On-site

Full-time

Medical, Retirement, PTO

Posted 17 days ago


Vuori rating

7.6

Company rating: 7.6 out of 10

Based on 15 frontline employees who took The Breakroom Quiz


Job description

Company Description
Vuori is re-defining what athletic apparel looks like: built to move and sweat in but designed with a casual aesthetic to transition into everyday life. We draw inspiration from an active coastal California lifestyle; an integration of fitness, creative expression and life. Our high energy fast paced retail environment is reflected in the clothes we make. We aim to inspire others to take on all aspects of their lives with clarity, enthusiasm and purpose...while having a lot of fun along the way. We are proud to be an outlet for opportunity and for personal growth and success.
Job Description
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional whose primary responsibility is to design, operate, and continuously mature the organization's Third-Party / Vendor Risk Management (TPRM) program. In this role, the analyst serves as an embedded risk partner to the business, driving consistent, high-quality vendor risk outcomes across the full third-party lifecycle.
While TPRM is the core focus of this role, the analyst is also expected to contribute meaningfully across other Information Security and Privacy domains as needed, including privacy operations, cyber governance, risk and compliance (GRC), and security operations. This role is ideal for a practitioner who enjoys vendor risk but is comfortable flexing across adjacent security functions in a fast-moving environment.
What you'll get to do:
Third-Party / Vendor Risk Management (Primary Focus)
  • Design, implement, operate, and continuously mature the Third-Party Risk Management program, evolving it from a reactive, compliance driven function into a proactive, risk-based capability.
  • Execute and oversee the full third-party risk lifecycle, including onboarding, inherent and residual risk assessments, due diligence, periodic reviews, contract risk review, issue management, remediation tracking, and ongoing monitoring.
  • Perform deep technical security and risk assessments of third parties, including cloud services, SaaS platforms, infrastructure providers, and technology vendors.
  • Review and interpret security assurance artifacts such as SOC 2 Type II reports, penetration test reports, CAIQ, SIG, ISO certifications, and other compliance attestations.
  • Evaluate complex vendor solutions, including API integrations with critical internal systems, cloud native architectures (AWS, Azure, GCP), and AI/ML platforms.
  • Assess and manages emerging third-party risks, including artificial intelligence risks such as data provenance, model integrity, data leakage, and secure handling of proprietary or regulated data.
  • Lead end-to-end issue and remediation management, ensuring accountability, effectiveness, and timely closure of identified control gaps.
  • Develop and maintain TPRM standards, playbooks, governance models, escalation paths, and operating procedures aligned with regulatory expectations and business needs.
  • Build and deliver meaningful reporting, dashboards, and metrics that provide leadership with clear visibility into third-party risk posture, trends, and decision points.

Privacy & Data Protection (Primary Focus)
  • Support privacy operations, including Data Subject Requests (DSRs), Data Protection Impact Assessments (DPIAs), and data mapping initiatives.
  • Partner with Privacy and Legal stakeholders to assess vendor and internal data processing risks and ensure appropriate safeguards are in place.
  • Contribute to privacy related risk assessments, controls validation, and remediation tracking as needed.

Cyber Governance, Risk & Compliance (Supporting Responsibility)
  • Support cyber GRC activities, including tracking information security risks, risk exceptions, and remediation plans.
  • Assist with the implementation and ongoing operation of security and risk management frameworks (e.g., NIST, ISO, SOC 2).
  • Contribute to audit and assurance activities by providing risk assessments, evidence, and clear articulation of control posture.

Security Operations & Enablement (Supporting Responsibility)
  • Provide support to information security operations as needed, including incident response activities, impact analysis, and post incident follow-up.
  • Contribute to security awareness and training initiatives, helping translate risk themes into actionable guidance for the business.
  • Assist with cross functional security initiatives during periods of increased demand or emerging risk.

Business Partnership & Advisory
  • Serve as a trusted risk advisor to vendor relationship owners and senior stakeholders, reducing their operational burden while preserving clear risk ownership and accountability.
  • Partner closely with Legal, Compliance, Procurement, Technology, and Security teams to synthesize requirements and deliver practical, risk-appropriate solutions.
  • Review vendor contracts and summarize risk-relevant provisions, control obligations, and gaps, partnering with Legal to support risk-informed contract decisions.
  • Escalate material risks, delays, or control gaps thoughtfully and early, framing issues in clear business terms and presenting well-defined options for decision-making.

Qualifications
Who you are:
  • 7+ years of progressive experience in Information Security, Third-Party Risk Management, Vendor Risk Management, GRC, or Operational Risk.
  • Demonstrated experience owning, building, or leading a Third-Party / Vendor Risk Management program.
  • Bachelor's degree in information security, Computer Science, Business Administration, or a related field or equivalent practical experience.
  • Strong experience conducting security risk assessments, assurance reviews, audits, and remediation management.
  • Deep technical understanding of cloud, SaaS, infrastructure, and AI vendor risk.
  • Hands on experience reviewing SOC 2, ISO 27001, penetration test reports, CAIQ, SIG, and similar security documentation.
  • Strong written and verbal communication skills, with the ability to translate technical risk into a clear business context for diverse audiences, including senior leadership.
  • Proven ability to work autonomously, manage competing priorities, and drive outcomes in a fast paced environment.

Additional Information
Our investment in you:
At Vuori, we're proud to offer the following to our employees:
  • Health Insurance
  • Savings and Retirement Plan
  • Employee Assistance Program
  • Generous Vuori Discount & Industry Perks
  • Paid Time Off
  • Wellness & Fitness benefits

The salary range for this role is $117,000 per year - $151,000 per year. This role is bonus eligible.
Vuori is proud to be an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.
All your information will be kept confidential according to EEO guidelines.

What Vuori employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom