We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive ...
We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive ...
They are seeking a Senior Security Risk & Compliance Analyst to support and enhance their security governance, risk, and compliance initiatives by assessing security controls, identifying risks, and ...
They are seeking a Senior Security Risk & Compliance Analyst to support and enhance their security governance, risk, and compliance initiatives by assessing security controls, identifying risks, and ...
We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive ...
Quick apply
We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive ...
Implement the overall risk management framework and processes, tools, and reporting methodologies ... analysis in a regulated environment or related IT audit background * Knowledge of security and ...
Implement the overall risk management framework and processes, tools, and reporting methodologies ... analysis in a regulated environment or related IT audit background * Knowledge of security and ...
... Control Analysts. This position is responsible for Operational Risk oversight of the Key Technology and Operations Services line of business, as well as technology and information security risk ...
... Control Analysts. This position is responsible for Operational Risk oversight of the Key Technology and Operations Services line of business, as well as technology and information security risk ...
Prior work experience of risk management disciplines, security policies and standards, technology ... Current or previous experience with risk assessment methodologies and conducting risk analysis in a ...
Prior work experience of risk management disciplines, security policies and standards, technology ... Current or previous experience with risk assessment methodologies and conducting risk analysis in a ...
Prior work experience of risk management disciplines, security policies and standards, technology ... Current or previous experience with risk assessment methodologies and conducting risk analysis in a ...
Prior work experience of risk management disciplines, security policies and standards, technology ... Current or previous experience with risk assessment methodologies and conducting risk analysis in a ...
001903 - Information Security Analyst
Columbus, OH · On-site
$75K - $100K/yr
Information Security Analyst supports enterprise risk management and third-party risk management (TPRM) initiatives by identifying, assessing, and mitigating information security risks across ...
001903 - Information Security Analyst
Columbus, OH · On-site
$75K - $100K/yr
Information Security Analyst supports enterprise risk management and third-party risk management (TPRM) initiatives by identifying, assessing, and mitigating information security risks across ...
... monitoring and analyzing data, identifying security, risk or compliance issues and/or events ... Review risk assessment questionnaires, perform information security control reviews and complete ...
... monitoring and analyzing data, identifying security, risk or compliance issues and/or events ... Review risk assessment questionnaires, perform information security control reviews and complete ...
THE OPPORTUNITY As the Senior Analyst, Governance, Risk & Compliance, you will collaborate with all ... Participate in the development and implementation of security awareness trainings and phishing ...
THE OPPORTUNITY As the Senior Analyst, Governance, Risk & Compliance, you will collaborate with all ... Participate in the development and implementation of security awareness trainings and phishing ...
Current or previous experience with risk assessment methodologies and conducting risk analysis in a ... Knowledge of security and control frameworks, such as ISO 27002, NIST, CobiT, COSO and ITIL
Current or previous experience with risk assessment methodologies and conducting risk analysis in a ... Knowledge of security and control frameworks, such as ISO 27002, NIST, CobiT, COSO and ITIL
Security Administrator II
Marysville, OH · On-site
... risk identification, analysis, tracking, monitoring, documenting exceptions, and communicating ... Security Policy Development and Management * Assist with documenting security policies, standards ...
Security Administrator II
Marysville, OH · On-site
... risk identification, analysis, tracking, monitoring, documenting exceptions, and communicating ... Security Policy Development and Management * Assist with documenting security policies, standards ...
... analytics preferred. * Relevant certifications (e.g., CISA, CRISC, CISSP, CISM) are a plus. * Advanced knowledge and experience leading data security, risk assessment & reporting, and control ...
New
... analytics preferred. * Relevant certifications (e.g., CISA, CRISC, CISSP, CISM) are a plus. * Advanced knowledge and experience leading data security, risk assessment & reporting, and control ...
New
... analytics preferred. * Relevant certifications (e.g., CISA, CRISC, CISSP, CISM) are a plus. * Advanced knowledge and experience leading data security, risk assessment & reporting, and control ...
New
... analytics preferred. * Relevant certifications (e.g., CISA, CRISC, CISSP, CISM) are a plus. * Advanced knowledge and experience leading data security, risk assessment & reporting, and control ...
New
Market Risk Analytics Manager
Columbus, OH · On-site +1
Production and analysis of daily market and counterparty risk reports, including risk factor and ... Direct market or counterparty risk modeling experience preferred Experience with securitized ...
Market Risk Analytics Manager
Columbus, OH · On-site +1
Production and analysis of daily market and counterparty risk reports, including risk factor and ... Direct market or counterparty risk modeling experience preferred Experience with securitized ...
Production and analysis of daily market and counterparty risk reports, including risk factor and ... Experience with securitized products or corporate loans preferred * CFA or FRM designation
Production and analysis of daily market and counterparty risk reports, including risk factor and ... Experience with securitized products or corporate loans preferred * CFA or FRM designation
Market Risk Analytics Manager
Columbus, OH · On-site +1
Production and analysis of daily market and counterparty risk reports, including risk factor and ... Experience with securitized products or corporate loans preferred * CFA or FRM designation
Market Risk Analytics Manager
Columbus, OH · On-site +1
Production and analysis of daily market and counterparty risk reports, including risk factor and ... Experience with securitized products or corporate loans preferred * CFA or FRM designation
The VP leads a senior security architecture organization and partners closely with Technology, Data & Analytics, AI Platform, Risk, Legal, Privacy, Compliance, and Business leaders to ensure security ...
The VP leads a senior security architecture organization and partners closely with Technology, Data & Analytics, AI Platform, Risk, Legal, Privacy, Compliance, and Business leaders to ensure security ...
A solid understanding of Penetration Testing, Vulnerability Management, Threat Vector Analysis, Intrusion Detection and Prevention, Incident Management and Response, Web Application Security, Risk ...
A solid understanding of Penetration Testing, Vulnerability Management, Threat Vector Analysis, Intrusion Detection and Prevention, Incident Management and Response, Web Application Security, Risk ...
Proficient knowledge and expertise in data security, risk assessment & reporting, control ... Data Analytics Skills using Excel and other data analysis tools. * Creates and promotes a culture ...
Proficient knowledge and expertise in data security, risk assessment & reporting, control ... Data Analytics Skills using Excel and other data analysis tools. * Creates and promotes a culture ...
Security Risk Analyst information
See salary details
$10.34 - $15.76
2% of jobs
$15.76 - $21.18
0% of jobs
$21.18 - $26.60
1% of jobs
$26.60 - $32.01
1% of jobs
$32.01 - $37.43
1% of jobs
$41.50 is the 25th percentile. Wages below this are outliers.
$37.43 - $42.85
26% of jobs
$42.85 - $48.27
11% of jobs
The median wage is $50.21 / hr.
$48.27 - $53.69
22% of jobs
$53.69 - $59.11
9% of jobs
$59.54 is the 75th percentile. Wages above this are outliers.
$59.11 - $64.53
17% of jobs
$64.53 - $69.95
9% of jobs
$10
$50
$69
How much do security risk analyst jobs pay per hour?

Full-time
Medical, Dental, Vision, Retirement, PTO
Posted 9 days ago
APCO Holdings rating
7.3
Based on 7 frontline employees who took The Breakroom Quiz
216th of 277 rated insurance
Job description
APCO Holdings partners with dealerships across North America to deliver innovative vehicle protection products and services that enhance the ownership experience for customers and drive growth for our partners. Through our family of brands, we bring together industry expertise, technology, and data-driven insights to help dealers strengthen their finance and insurance performance and build lasting relationships with their customers.
Our teams work collaboratively across operations, technology, risk, finance, marketing, and sales to deliver solutions that create measurable value and support the continued growth of APCO and the partners we serve.
We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive compliance efforts, assess security controls, identify risks, and support the organization's ongoing commitment to maintaining a strong security posture and regulatory compliance.
Security Compliance & Governance
- Collaborate across departments to ensure alignment with security compliance frameworks and regulatory requirements (SOC 2, NYCRR, FTC Safeguards Rule, etc.)
- Conduct security control mapping and compliance reconciliation activities
- Support the development, implementation, and maintenance of security policies, standards, and procedures
- Monitor and assess the effectiveness of security controls and compliance initiatives
Risk Assessment & Mitigation
- Identify, assess, and prioritize security risks across systems, processes, and operations
- Partner with stakeholders to develop remediation plans and mitigation strategies
- Provide recommendations on security best practices and control implementations
- Conduct regular security audits and compliance assessments
Reporting & Documentation
- Maintain documentation related to audits, risk assessments, remediation efforts, and compliance activities
- Prepare reports and dashboards on compliance status, risks, KPIs, and trends for leadership
- Track remediation efforts and support continuous improvement initiatives
Security Awareness & Collaboration
- Support development and delivery of security awareness and training programs
- Promote a culture of security awareness and accountability across the organization
- Stay current on emerging threats, technologies, and evolving regulatory requirements
You'll be successful in this role if you're highly analytical, detail-oriented, and passionate about security governance and compliance. You're comfortable evaluating risks, identifying gaps, and collaborating across teams to strengthen security controls and processes.
You're also a strong communicator who can translate complex compliance and security concepts into actionable guidance for both technical and non-technical stakeholders. You thrive in fast-paced environments and enjoy balancing strategic thinking with hands-on execution.
- Bachelor's degree in Information Security, Information Technology, or a related field
- 8+ years of experience in IT security or related fields
- 5+ years of experience in risk management and regulatory compliance
- 5+ years of experience supporting or leading SOC 2 compliance efforts
- Strong understanding of security frameworks, controls, and regulatory requirements
- Professional certifications such as CISSP, CISM, or CISA
- Experience with compliance frameworks and regulations such as SOC 2, NYCRR, and FTC Safeguards Rule
- Experience conducting audits, risk assessments, and remediation tracking
- Experience working in regulated industries such as insurance or financial services
- Enjoy identifying risks and improving security processes
- Thrive in cross-functional, collaborative environments
- Like balancing technical security concepts with governance and compliance
- Are motivated by protecting systems, data, and organizational integrity
- Competitive compensation
- Comprehensive medical, dental, and vision benefits
- 401(k) with company match
- Paid time off and company holidays
- Opportunities for professional growth and certification support
- A collaborative and security-focused work environment
About APCO Holdings
Sourced by ZipRecruiter
Industry
Motor vehicle manufacturing
Company size
501 - 1,000 Employees
Headquarters location
Norcross, GA, US
Year founded
1984