Senior IT Risk & Compliance Analyst - IT Risk Assessment - US Remote available

About The Position

Requirements

• 3–5 years of experience in IT Risk Management, IT Compliance, IT Audit, or related roles, with demonstrated experience conducting or supporting IT risk assessments.
• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field, or equivalent practical experience.
• Strong working knowledge of IT risk and compliance concepts, methodologies, and control evaluation.
• Prior experience performing Business Application and IT Process risk assessment.
• Familiarity with IT policies, regulations, standards, and frameworks such as NIST, ISO 27001/27002, PCI DSS, COSO, and/or ISO 31000.
• Ability to analyze complex information, apply critical thinking, and make well‑reasoned risk decisions with appropriate guidance.
• Strong written and verbal communication skills, with the ability to explain risk findings to a variety of audiences.
• Proven ability to work cross‑functionally and manage multiple priorities in a fast‑paced environment.

Nice To Haves

• Exposure to GRC technology platforms (e.g., ServiceNow, Archer, or similar tools).
• Experience working within distributed or global teams.
• Awareness of IT industry trends and emerging technologies and their associated risks.
• Certifications CISA or CRISC strongly preferred. Candidates actively pursuing one of these certifications are encouraged to apply. Equivalent experience in IT risk assessment and control evaluation will be considered.

Responsibilities

• Lead and support IT risk and compliance assessments, evaluating inherent, residual, and emerging risks across technology domains.
• Identify, assess, document, and communicate IT risks in a clear and actionable manner to both technical and non‑technical stakeholders.
• Evaluate existing controls and safeguards, considering effectiveness, likelihood, and impact to inform risk decisions.
• Partner with technology, security, and business teams to support risk remediation planning and risk acceptance decisions.
• Contribute to the development, refinement, and documentation of risk assessment workflows, processes, and methodologies.
• Support alignment of IT risk practices with internal policies, standards, and external regulatory or industry frameworks.
• Assist with ongoing improvements to IT risk governance processes, tools, and reporting.
• Collaborate effectively within a distributed team across multiple time zones, fostering strong working relationships.

Benefits

• Associate discount
• 401(k) match
• medical/dental/vision
• HSA
• health care FSA
• life insurance
• short/long-term disability
• paid holidays/vacation /sick/bereavement/parental leave
• EAP
• incentive programs for management
• auto/home insurance discounts
• tuition reimbursement
• scholarship program
• adoption/surrogacy assistance
• smoking cessation
• child care/cell phone discounts
• pet/legal insurance
• credit union
• referral bonuses