... • Monitor and assess the effectiveness of security controls and compliance initiatives • ... audits, risk assessments, remediation efforts, and compliance activities • Prepare reports and ...
... • Monitor and assess the effectiveness of security controls and compliance initiatives • ... audits, risk assessments, remediation efforts, and compliance activities • Prepare reports and ...
Monitor and assess the effectiveness of security controls and compliance initiatives Risk Assessment & Mitigation * Identify, assess, and prioritize security risks across systems, processes, and ...
Monitor and assess the effectiveness of security controls and compliance initiatives Risk Assessment & Mitigation * Identify, assess, and prioritize security risks across systems, processes, and ...
Monitor and assess the effectiveness of security controls and compliance initiatives Risk Assessment & Mitigation * Identify, assess, and prioritize security risks across systems, processes, and ...
Quick apply
Apply Early
Monitor and assess the effectiveness of security controls and compliance initiatives Risk Assessment & Mitigation * Identify, assess, and prioritize security risks across systems, processes, and ...
Apply Early
Review risk assessment questionnaires, perform information security control reviews and complete documentation for submission to risk management governance committees for approval or denial.
Review risk assessment questionnaires, perform information security control reviews and complete documentation for submission to risk management governance committees for approval or denial.
Perform third party supplier risk assessments by reviewing contracts for compliance with security policies, standards and practices; document security gaps and recommend appropriate remediation ...
Perform third party supplier risk assessments by reviewing contracts for compliance with security policies, standards and practices; document security gaps and recommend appropriate remediation ...
Perform third party supplier risk assessments by reviewing contracts for compliance with security policies, standards and practices; document security gaps and recommend appropriate remediation ...
Perform third party supplier risk assessments by reviewing contracts for compliance with security policies, standards and practices; document security gaps and recommend appropriate remediation ...
Advanced knowledge and experience leading data security, risk assessment & reporting, and control evaluation, design, and governance, with a track record of implementing effective risk mitigation ...
Advanced knowledge and experience leading data security, risk assessment & reporting, and control evaluation, design, and governance, with a track record of implementing effective risk mitigation ...
Advanced knowledge and experience leading data security, risk assessment & reporting, and control evaluation, design, and governance, with a track record of implementing effective risk mitigation ...
Advanced knowledge and experience leading data security, risk assessment & reporting, and control evaluation, design, and governance, with a track record of implementing effective risk mitigation ...
Advanced knowledge and experience leading data security, risk assessment & reporting, and control evaluation, design, and governance, with a track record of implementing effective risk mitigation ...
Advanced knowledge and experience leading data security, risk assessment & reporting, and control evaluation, design, and governance, with a track record of implementing effective risk mitigation ...
... security risk oversight for areas of the enterprise that manage technology. As part of this ... Evaluate risk and control identification within key processes and perform gap assessments on ...
... security risk oversight for areas of the enterprise that manage technology. As part of this ... Evaluate risk and control identification within key processes and perform gap assessments on ...
Security Analyst
Marysville, OH · On-site
Current or previous experience with risk assessment methodologies and conducting risk analysis in a regulated environment or related IT audit background. * Knowledge of security and control ...
Security Analyst
Marysville, OH · On-site
Current or previous experience with risk assessment methodologies and conducting risk analysis in a regulated environment or related IT audit background. * Knowledge of security and control ...
001903 - Information Security Analyst
Columbus, OH · On-site
$75K - $100K/yr
Conduct comprehensive security risk assessments for internal systems, projects, policy exceptions, AI/ML initiatives, and third-party vendors. * Evaluate risk levels, document risk findings, and ...
001903 - Information Security Analyst
Columbus, OH · On-site
$75K - $100K/yr
Conduct comprehensive security risk assessments for internal systems, projects, policy exceptions, AI/ML initiatives, and third-party vendors. * Evaluate risk levels, document risk findings, and ...
Perform third party supplier risk assessments by reviewing contracts for compliance with security policies, standards and practices; document security gaps and recommend appropriate remediation ...
Perform third party supplier risk assessments by reviewing contracts for compliance with security policies, standards and practices; document security gaps and recommend appropriate remediation ...
Security Analyst
Marysville, OH · On-site
Current or previous experience with risk assessment methodologies and conducting risk analysis in a regulated environment or related IT audit background. * Knowledge of security and control ...
Security Analyst
Marysville, OH · On-site
Current or previous experience with risk assessment methodologies and conducting risk analysis in a regulated environment or related IT audit background. * Knowledge of security and control ...
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Technology Risk and Controls Lead - Database
Columbus, OH · On-site
$142K - $200K/yr
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Technology Risk and Controls Lead - Database
Columbus, OH · On-site
$142K - $200K/yr
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Proficient knowledge and expertise in resiliency, data security, risk assessment & reporting, controls evaluation, design, execution and governance, with a proven record of implementing effective ...
Proficient knowledge and expertise in resiliency, data security, risk assessment & reporting, controls evaluation, design, execution and governance, with a proven record of implementing effective ...
Proficient knowledge and expertise in resiliency, data security, risk assessment & reporting, controls evaluation, design, execution and governance, with a proven record of implementing effective ...
Proficient knowledge and expertise in resiliency, data security, risk assessment & reporting, controls evaluation, design, execution and governance, with a proven record of implementing effective ...
Proficient knowledge and expertise in resiliency, data security, risk assessment & reporting, controls evaluation, design, execution and governance, with a proven record of implementing effective ...
Proficient knowledge and expertise in resiliency, data security, risk assessment & reporting, controls evaluation, design, execution and governance, with a proven record of implementing effective ...
Security Risk Assessment information
See salary details
$10.34 - $15.76
2% of jobs
$15.76 - $21.18
0% of jobs
$21.18 - $26.60
1% of jobs
$26.60 - $32.01
1% of jobs
$32.01 - $37.43
1% of jobs
$41.50 is the 25th percentile. Wages below this are outliers.
$37.43 - $42.85
26% of jobs
$42.85 - $48.27
11% of jobs
The median wage is $50.21 / hr.
$48.27 - $53.69
22% of jobs
$53.69 - $59.11
9% of jobs
$59.54 is the 75th percentile. Wages above this are outliers.
$59.11 - $64.53
17% of jobs
$64.53 - $69.95
9% of jobs
$10
$50
$69
How much do security risk assessment jobs pay per hour?
- Information Security Compliance Analyst
- Security And Compliance Analyst
- Information Technology Security Analyst
- Security Risk Compliance
- Senior Information Security Compliance Analyst
- Urgently Hiring Information Security Compliance Analyst
- Pci Dss Security Analyst
- Global Security Analyst
- Grc Analyst
- Urgently Hiring Cyber Security Skillbridge

Full-time
This job post has expired 1 day ago. Applications are no longer accepted.
APCO Holdings rating
7.3
Based on 7 frontline employees who took The Breakroom Quiz
216th of 277 rated insurance
Job description
APCO Holdings is a company that partners with dealerships across North America to provide innovative vehicle protection products and services. They are seeking a Senior Security Risk & Compliance Analyst to support and enhance their security governance, risk, and compliance initiatives by assessing security controls, identifying risks, and driving compliance efforts.
Responsibilities:
• Collaborate across departments to ensure alignment with security compliance frameworks and regulatory requirements (SOC 2, NYCRR, FTC Safeguards Rule, etc.)
• Conduct security control mapping and compliance reconciliation activities
• Support the development, implementation, and maintenance of security policies, standards, and procedures
• Monitor and assess the effectiveness of security controls and compliance initiatives
• Identify, assess, and prioritize security risks across systems, processes, and operations
• Partner with stakeholders to develop remediation plans and mitigation strategies
• Provide recommendations on security best practices and control implementations
• Conduct regular security audits and compliance assessments
• Maintain documentation related to audits, risk assessments, remediation efforts, and compliance activities
• Prepare reports and dashboards on compliance status, risks, KPIs, and trends for leadership
• Track remediation efforts and support continuous improvement initiatives
• Support development and delivery of security awareness and training programs
• Promote a culture of security awareness and accountability across the organization
• Stay current on emerging threats, technologies, and evolving regulatory requirements
Qualifications:
Required:
• Bachelor’s degree in Information Security, Information Technology, or a related field
• 8+ years of experience in IT security or related fields
• 5+ years of experience in risk management and regulatory compliance
• 5+ years of experience supporting or leading SOC 2 compliance efforts
• Strong understanding of security frameworks, controls, and regulatory requirements
Preferred:
• Professional certifications such as CISSP, CISM, or CISA
• Experience with compliance frameworks and regulations such as SOC 2, NYCRR, and FTC Safeguards Rule
• Experience conducting audits, risk assessments, and remediation tracking
• Experience working in regulated industries such as insurance or financial services
Company:
APCO Holdings is a leading provider of F&I solutions, automotive protection products, and dealer services, supporting automotive, RV, marine, and powersports dealers, as well as financial institutions nationwide. Founded in 1984, the company is headquartered in Norcross, USA, with a team of 501-1000 employees. The company is currently Late Stage.
What APCO Holdings employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About APCO Holdings
Sourced by ZipRecruiter
Industry
Motor vehicle manufacturing
Company size
501 - 1,000 Employees
Headquarters location
Norcross, GA, US
Year founded
1984