IT Security and Governance Analyst

Brown‑Forman CorporationLouisville, KY
Onsite
Match Resume

About The Position

The IT GRC Analyst plays a critical role in ensuring that the organization’s IT governance is aligned with business objectives while also adhering to governance standards, risk management practices, and regulatory compliance obligations. In this role, you'll collaborate with cross-functional teams to align risk management strategies, ensure compliance, and foster a unified approach to IT governance.

Requirements

  • 3+ years of experience focused on governance, compliance, risk, audit or similar functions.
  • Knowledge of IT governance and risk management frameworks including compliance practices (e.g., PCI, NIST, GDPR, COBIT, NIS2, Operation Technology, etc.).
  • Strong analytical skills, attention to detail, and a problem-solving mindset.
  • Excellent collaboration, communication and influencing skills with the ability to develop effective working relationships with all levels of the company.
  • Exposure to risk assessments, policy development, and internal control audits.

Nice To Haves

  • Bachelor’s degree within a related area of study.
  • Information security related training or certifications such as CISA, CRISC, PCI QSA.
  • Experience working with GRC platforms and tools.
  • Familiarity with third-party risk management and vendor compliance.

Responsibilities

  • Develop and maintain IT governance frameworks and policies that align with industry standards and regulatory requirements, which are then implemented by IT owners.
  • Support our IT risk management program to ensure both internal and third-party IT risks are identified, assessed, prioritized and remediated.
  • Raise awareness within the organization of IT governance, risk and compliance programs that are risk based and align with compliance requirements.
  • Track and ensure compliance with internal policies and external regulations through periodic audits and assessments.
  • Ensure data security and privacy compliance by providing guidance on appropriate access controls, data classification protocols, and data protection measures.
  • Collaborate with key stakeholders throughout the IT organization as well as with Internal Audit, Compliance, and Legal.
  • Monitor evolving regulations, compliance standards, and best practices to strengthen our IT GRC capabilities and frameworks.

Benefits

  • equitable pay structures for individual and company performance
  • premium employee experience
  • range of premium benefits that reflect our company values and meet the needs of our diverse workforce

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Principal

Job Search Resources

Similar IT Security and Governance Analyst job opportunities

Regional IT Governance Analyst
Konica Minolta Business Solutions, U.S.A., Inc.
Konica Minolta Business Solutions, U.S.A., Inc. • Ramsey, NJ12d • Onsite
🔥 New JobIT Governance & Compliance Analyst
Modivcare
Modivcare • Denver, CO1d • Onsite
Manager, IT Governance & Security Controls
The Coca-Cola Company
The Coca-Cola Company • Atlanta, GA2d • Onsite
IT Security Analyst
Helical Pile Solutions
Helical Pile Solutions • Halifax, NS7d • Hybrid
IT Security Analyst
Telos
Telos • Little Rock, AR11d
🔥 New JobIT Security Analyst
United Church Homes
United Church Homes • Marion, OH1d

Tools

Templates & Examples

Resources

Comparisons

Company

Over 4 Million Users
Free AI tools and resources to help you land your next job, faster
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service