Governance Risk and Compliance (GRC) Analyst (Remote) ($55,000 - $250,000)

Job Title: Governance, Risk, and Compliance (GRC) Analyst

Location: 100% Remote (USA)

Job Type: Full-Time

Department: Information Security / Risk Management

Reports To: GRC Manager or Director of Risk & Compliance

About the Role:

A top leading U.S Tech company is seeking a highly motivated and detail-oriented Governance, Risk, and Compliance (GRC) Analyst to join our growing Information Security and Compliance team. As a GRC Analyst, you will play a vital role in supporting and improving the organization’s risk management, compliance, and governance activities. This is a fully remote position open to candidates residing in the United States.

Employment Type

Full-Time

Location

100% Remote (US)

Job Responsibilities

Governance & Policy Management

- Assist in developing, maintaining, and updating security and compliance policies, standards, and procedures.

- Ensure documentation aligns with regulatory requirements and industry best practices.

- Participate in the implementation of GRC frameworks (e.g., NIST, ISO 27001, SOC 2, HIPAA, etc.).

Risk Management

- Support ongoing enterprise risk management efforts, including identification, assessment, tracking, and mitigation of risks.

- Conduct regular risk assessments and assist in developing treatment plans.

- Collaborate with internal stakeholders to monitor and mitigate key risks.

Compliance & Audit Support

- Coordinate internal and external audit activities, ensuring timely collection and review of evidence.

- Track compliance with regulatory requirements, internal policies, and industry certifications (e.g., SOC 2, ISO, PCI DSS).

- Prepare reports, dashboards, and metrics to communicate compliance status to leadership.

Minimum Qualification

- Bachelor’s degree in Information Security, Computer Science, Business, or a related field; or equivalent experience.

- 2+ years of experience in a GRC, cybersecurity, compliance, or risk management role.

- Familiarity with compliance frameworks and regulations such as NIST, ISO 27001, SOC 2, HIPAA, PCI DSS, GDPR, or CCPA.

- Understanding of risk assessment methodologies and information security principles.

- Strong analytical, organizational, and problem-solving skills.

- Excellent communication skills with the ability to work cross-functionally in a remote environment.

- Self-starter capable of working independently with minimal supervision.

Benefits

- 100% remote work flexibility

- Competitive salary and performance-based bonuses

- Comprehensive medical, dental, and vision insurance

- Generous paid time off and company holidays

- Professional development and certification reimbursement

- A collaborative, inclusive, and values-driven culture

Equal Opportunity:

We celebrate diversity and are committed to creating an inclusive environment for all employees.

See our Blogs

Career & Job Search
Shtudy

Career & Job Search | 21st April, 2025

The Career Funnel: The Simple Framework That Gets You Hired Faster (Even If You Feel Invisible Right Now)

Let’s be honest…The traditional job hunt feels broken. You spend hours tailoring your resume, tweaking your LinkedIn, applying to dozens (sometime ...

Resume Tips
Shtudy

Resume Tips | 19th April, 2025

How To Write An IT Resume That Gets You Hired In Tech (Even If You're Not A “Perfect Fit”)

If you’re applying for tech jobs—whether it’s as a cybersecurity specialist, software engineer, systems analyst, DevOps engineer, IT support spe ...

Career & Job Search
Shtudy

Career & Job Search | 1st April, 2025

The Fastest Way To Land Your Dream Job (Without Wasting Hours Applying)

Job searching can feel like a full-time job—except you’re not getting paid for it. You spend hours tailoring resumes, writing cover letters, and f ...

View More

See What Our Engineers have to say