They are seeking a Senior Security Risk & Compliance Analyst to support and enhance their security governance, risk, and compliance initiatives by assessing security controls, identifying risks, and ...
They are seeking a Senior Security Risk & Compliance Analyst to support and enhance their security governance, risk, and compliance initiatives by assessing security controls, identifying risks, and ...
We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive ...
We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive ...
We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive ...
Quick apply
We are looking for a Senior Security Risk & Compliance Analyst to support and strengthen APCO's security governance, risk, and compliance (GRC) initiatives. In this role, you will help drive ...
Cloud Security Alliance Certs: CCAK * Cloud Provider-Specific Certifications Preferred ... Risk Management: Implements or manages risk management for own business unit and documents key ...
Cloud Security Alliance Certs: CCAK * Cloud Provider-Specific Certifications Preferred ... Risk Management: Implements or manages risk management for own business unit and documents key ...
Implement the overall risk management framework and processes, tools, and reporting methodologies ... Perform third party supplier risk assessments by reviewing contracts for compliance with security ...
Implement the overall risk management framework and processes, tools, and reporting methodologies ... Perform third party supplier risk assessments by reviewing contracts for compliance with security ...
Implement the overall risk management framework and processes, tools, and reporting methodologies ... Perform third party supplier risk assessments by reviewing contracts for compliance with security ...
Implement the overall risk management framework and processes, tools, and reporting methodologies ... Perform third party supplier risk assessments by reviewing contracts for compliance with security ...
Information Security Analyst
Columbus, OH · On-site
Information Security Analyst supports enterprise risk management and third-party risk management (TPRM) initiatives by identifying, assessing, and mitigating information security risks across ...
Information Security Analyst
Columbus, OH · On-site
Information Security Analyst supports enterprise risk management and third-party risk management (TPRM) initiatives by identifying, assessing, and mitigating information security risks across ...
001903 - Information Security Analyst
Columbus, OH · On-site
$75K - $100K/yr
Information Security Analyst supports enterprise risk management and third-party risk management (TPRM) initiatives by identifying, assessing, and mitigating information security risks across ...
001903 - Information Security Analyst
Columbus, OH · On-site
$75K - $100K/yr
Information Security Analyst supports enterprise risk management and third-party risk management (TPRM) initiatives by identifying, assessing, and mitigating information security risks across ...
Review risk assessment questionnaires, perform information security control reviews and complete documentation for submission to risk management governance committees for approval or denial.
Review risk assessment questionnaires, perform information security control reviews and complete documentation for submission to risk management governance committees for approval or denial.
Define the enterprise AI security risk framework and supporting control architecture to address AIspecific threats such as prompt injection, data leakage, model misuse, poisoning, inversion, and ...
Define the enterprise AI security risk framework and supporting control architecture to address AIspecific threats such as prompt injection, data leakage, model misuse, poisoning, inversion, and ...
Prior work experience of risk management disciplines, security policies and standards, technology risk assessment, and third party supplier risk process and requirements. * Current or previous ...
Prior work experience of risk management disciplines, security policies and standards, technology risk assessment, and third party supplier risk process and requirements. * Current or previous ...
Implement the overall risk management framework and processes, tools, and reporting methodologies ... Perform third party supplier risk assessments by reviewing contracts for compliance with security ...
Implement the overall risk management framework and processes, tools, and reporting methodologies ... Perform third party supplier risk assessments by reviewing contracts for compliance with security ...
Prior work experience of risk management disciplines, security policies and standards, technology risk assessment, and third party supplier risk process and requirements. * Current or previous ...
Prior work experience of risk management disciplines, security policies and standards, technology risk assessment, and third party supplier risk process and requirements. * Current or previous ...
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Technology Risk and Controls Lead - Database
Columbus, OH · On-site
$142K - $200K/yr
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Technology Risk and Controls Lead - Database
Columbus, OH · On-site
$142K - $200K/yr
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies.
The Office of Security is dedicated to protecting our people, clients, and organization. We are ... This role is critical to helping the Firm manage personnel risk, meet legal and contractual ...
The Office of Security is dedicated to protecting our people, clients, and organization. We are ... This role is critical to helping the Firm manage personnel risk, meet legal and contractual ...
VP, Cybersecurity & Technology Risk Officer
Columbus, OH · On-site
$151K - $189K/yr
Influence prioritization of security investments and drive remediation strategies that align with enterprise risk tolerance. * Cybersecurity Consulting & Enablement Serve as the primary cybersecurity ...
VP, Cybersecurity & Technology Risk Officer
Columbus, OH · On-site
$151K - $189K/yr
Influence prioritization of security investments and drive remediation strategies that align with enterprise risk tolerance. * Cybersecurity Consulting & Enablement Serve as the primary cybersecurity ...
The Director is a key stakeholder in Third-Party Risk Management and owns Phoenix's PCI-DSS program ... Lead and mature a security program built against the NIST Cybersecurity Framework, including ...
The Director is a key stakeholder in Third-Party Risk Management and owns Phoenix's PCI-DSS program ... Lead and mature a security program built against the NIST Cybersecurity Framework, including ...
The Director is a key stakeholder in Third-Party Risk Management and owns Phoenix's PCI-DSS program ... Lead and mature a security program built against the NIST Cybersecurity Framework, including ...
The Director is a key stakeholder in Third-Party Risk Management and owns Phoenix's PCI-DSS program ... Lead and mature a security program built against the NIST Cybersecurity Framework, including ...
Security Risk information
See salary details
$10.34 - $15.76
2% of jobs
$15.76 - $21.18
0% of jobs
$21.18 - $26.60
1% of jobs
$26.60 - $32.01
1% of jobs
$32.01 - $37.43
1% of jobs
$41.50 is the 25th percentile. Wages below this are outliers.
$37.43 - $42.85
26% of jobs
$42.85 - $48.27
11% of jobs
The median wage is $50.21 / hr.
$48.27 - $53.69
22% of jobs
$53.69 - $59.11
9% of jobs
$59.54 is the 75th percentile. Wages above this are outliers.
$59.11 - $64.53
17% of jobs
$64.53 - $69.95
9% of jobs
$10
$50
$69
How much do security risk jobs pay per hour?
As of Jun 29, 2026, the average hourly pay for security risk in the United States is $50.41, according to ZipRecruiter salary data. Most workers in this role earn between $40.87 and $60.10 per hour, depending on experience, location, and employer.
What are popular job titles related to Security Risk jobs? For Security Risk jobs, the most frequently searched job titles are:
What job categories do people searching Security Risk jobs look for? The top searched job categories for Security Risk jobs are:
What cities are hiring for Security Risk jobs? Cities with the most Security Risk job openings:
What states have the most Security Risk jobs? States with the most job openings for Security Risk jobs include:
Full-time
Posted 7 days ago
Key responsibilities
Collaborate across departments to ensure alignment with security compliance frameworks and regulatory requirements.
Identify, assess, and prioritize security risks across systems, processes, and operations.
Conduct regular security audits and compliance assessments.
APCO Holdings rating
7.3
Based on 7 frontline employees who took The Breakroom Quiz
210th of 263 rated insurance
Job description
Job Summary:
APCO Holdings is a company that partners with dealerships across North America to provide innovative vehicle protection products and services. They are seeking a Senior Security Risk & Compliance Analyst to support and enhance their security governance, risk, and compliance initiatives by assessing security controls, identifying risks, and driving compliance efforts.
Responsibilities:
• Collaborate across departments to ensure alignment with security compliance frameworks and regulatory requirements (SOC 2, NYCRR, FTC Safeguards Rule, etc.)
• Conduct security control mapping and compliance reconciliation activities
• Support the development, implementation, and maintenance of security policies, standards, and procedures
• Monitor and assess the effectiveness of security controls and compliance initiatives
• Identify, assess, and prioritize security risks across systems, processes, and operations
• Partner with stakeholders to develop remediation plans and mitigation strategies
• Provide recommendations on security best practices and control implementations
• Conduct regular security audits and compliance assessments
• Maintain documentation related to audits, risk assessments, remediation efforts, and compliance activities
• Prepare reports and dashboards on compliance status, risks, KPIs, and trends for leadership
• Track remediation efforts and support continuous improvement initiatives
• Support development and delivery of security awareness and training programs
• Promote a culture of security awareness and accountability across the organization
• Stay current on emerging threats, technologies, and evolving regulatory requirements
Qualifications:
Required:
• Bachelor’s degree in Information Security, Information Technology, or a related field
• 8+ years of experience in IT security or related fields
• 5+ years of experience in risk management and regulatory compliance
• 5+ years of experience supporting or leading SOC 2 compliance efforts
• Strong understanding of security frameworks, controls, and regulatory requirements
Preferred:
• Professional certifications such as CISSP, CISM, or CISA
• Experience with compliance frameworks and regulations such as SOC 2, NYCRR, and FTC Safeguards Rule
• Experience conducting audits, risk assessments, and remediation tracking
• Experience working in regulated industries such as insurance or financial services
Company:
APCO Holdings is a leading provider of F&I solutions, automotive protection products, and dealer services, supporting automotive, RV, marine, and powersports dealers, as well as financial institutions nationwide. Founded in 1984, the company is headquartered in Norcross, USA, with a team of 501-1000 employees. The company is currently Late Stage.
APCO Holdings is a company that partners with dealerships across North America to provide innovative vehicle protection products and services. They are seeking a Senior Security Risk & Compliance Analyst to support and enhance their security governance, risk, and compliance initiatives by assessing security controls, identifying risks, and driving compliance efforts.
Responsibilities:
• Collaborate across departments to ensure alignment with security compliance frameworks and regulatory requirements (SOC 2, NYCRR, FTC Safeguards Rule, etc.)
• Conduct security control mapping and compliance reconciliation activities
• Support the development, implementation, and maintenance of security policies, standards, and procedures
• Monitor and assess the effectiveness of security controls and compliance initiatives
• Identify, assess, and prioritize security risks across systems, processes, and operations
• Partner with stakeholders to develop remediation plans and mitigation strategies
• Provide recommendations on security best practices and control implementations
• Conduct regular security audits and compliance assessments
• Maintain documentation related to audits, risk assessments, remediation efforts, and compliance activities
• Prepare reports and dashboards on compliance status, risks, KPIs, and trends for leadership
• Track remediation efforts and support continuous improvement initiatives
• Support development and delivery of security awareness and training programs
• Promote a culture of security awareness and accountability across the organization
• Stay current on emerging threats, technologies, and evolving regulatory requirements
Qualifications:
Required:
• Bachelor’s degree in Information Security, Information Technology, or a related field
• 8+ years of experience in IT security or related fields
• 5+ years of experience in risk management and regulatory compliance
• 5+ years of experience supporting or leading SOC 2 compliance efforts
• Strong understanding of security frameworks, controls, and regulatory requirements
Preferred:
• Professional certifications such as CISSP, CISM, or CISA
• Experience with compliance frameworks and regulations such as SOC 2, NYCRR, and FTC Safeguards Rule
• Experience conducting audits, risk assessments, and remediation tracking
• Experience working in regulated industries such as insurance or financial services
Company:
APCO Holdings is a leading provider of F&I solutions, automotive protection products, and dealer services, supporting automotive, RV, marine, and powersports dealers, as well as financial institutions nationwide. Founded in 1984, the company is headquartered in Norcross, USA, with a team of 501-1000 employees. The company is currently Late Stage.
About APCO Holdings
Sourced by ZipRecruiter
Industry
Motor vehicle manufacturing
Company size
501 - 1,000 Employees
Headquarters location
Norcross, GA, US
Year founded
1984