AI Risk & Compliance Analyst

AI Risk & Compliance Analyst $70 - $80 per hour | New York, NY | On-Site | Consulting A bit about us: We are a large, diversified organization with a complex technology environment and a strong focus on responsible innovation. As AI adoption continues to expand across the business, our Governance, Risk & Compliance team plays a critical role in helping teams evaluate, document, and manage AI use cases in a practical, thoughtful, and compliant way. This is a highly visible opportunity to support enterprise-wide AI governance efforts in a federated environment. The team partners closely with Legal, Privacy, Security, Procurement, Technology, and business stakeholders to ensure AI is adopted responsibly while still enabling innovation and operational progress. Why join us? This role offers the opportunity to make an immediate impact on a growing AI governance program. You will help shape and improve the way AI use cases are reviewed, documented, approved, and monitored across a large enterprise environment. The right person will have the chance to work on meaningful AI risk and compliance initiatives, partner with senior stakeholders across multiple functions, and contribute to responsible AI practices at scale. This is an ideal opportunity for someone who enjoys building practical governance processes, improving workflows, and translating complex AI risk concepts into clear business guidance. Job Details The Governance, Risk & Compliance organization is seeking an experienced AI Risk & Compliance Analyst to support the intake, assessment, documentation, and ongoing governance of AI use cases across the enterprise. This role is intended for a hands‑on practitioner with direct experience in AI governance, AI risk assessment, responsible AI controls, regulatory alignment, and cross‑functional review processes. The contractor will be expected to make an immediate impact by improving AI use case intake, strengthening risk review workflows, maintaining clear documentation, and helping align AI activities with evolving legal, regulatory, privacy, security, and compliance expectations. Because the organization operates in a federated environment, this role requires strong stakeholder management, practical judgment, and the ability to help teams adopt AI responsibly without creating unnecessary friction. What You’ll Do Operate and improve the AI use case intake process, including triage, risk categorization, stakeholder routing, approval tracking, and follow‑up. Conduct AI risk and compliance reviews for proposed and existing AI use cases, including evaluation of data use, privacy, security, third‑party risk, regulatory exposure, business impact, and control requirements. Review AI‑enabled tools, platforms, vendors, and processes for risks related to confidential data, sensitive data, automated decision‑making, transparency, human oversight, intellectual property, bias, accuracy, and regulatory obligations. Maintain and improve the AI use case inventory, including owners, vendors, data types, risk ratings, approval status, required controls, exceptions, and review cadence. Translate AI regulatory, privacy, security, and compliance expectations into practical intake questions, risk assessment criteria, control requirements, and decision records. Support alignment with AI governance standards, regulatory expectations, and sector‑specific guidance. Partner with Legal, Privacy, Security, Procurement, Technology, and business teams to document approvals, mitigations, exceptions, remediation actions, and ongoing monitoring requirements. Support third‑party AI risk reviews, including evaluation of vendor AI capabilities, data processing practices, contractual considerations, and governance commitments. Develop and improve AI governance artifacts, including intake forms, review checklists, risk rating criteria, process documentation, decision templates, and reporting metrics. Support reporting on AI governance activity, including intake volume, review cycle time, risk themes, open issues, remediation status, exceptions, and regulatory alignment. Required Experience 5+ years of experience in governance, risk, compliance, privacy, information security, technology risk, third‑party risk, model risk, audit, or a related field. 2+ years of direct, hands‑on experience with AI governance, responsible AI, AI risk assessment, AI compliance, model risk management, machine learning governance, or emerging technology risk. Experience reviewing AI use cases involving generative AI tools, SaaS platforms, machine learning models, automated workflows, analytics, or vendor‑provided AI capabilities. Experience evaluating AI risks such as data leakage, confidential data exposure, privacy impact, intellectual property concerns, hallucination or accuracy risk, bias, automated decision‑making, transparency, vendor dependency, and human oversight. Working knowledge of AI governance frameworks, standards, or regulatory guidance such as NIST AI RMF, ISO/IEC 42001, EU AI Act concepts, OECD AI principles, privacy regulations, or sector‑specific AI guidance. Strong understanding of GRC fundamentals, including risk assessment, control evaluation, issue tracking, remediation management, policy exceptions, audit‑ready documentation, and stakeholder approvals. Familiarity with security and compliance frameworks such as NIST CSF, NIST 800‑53, ISO 27001, COBIT, SOC 2, PCI, HIPAA, or SOX. Experience creating or improving intake forms, risk assessment templates, control mappings, decision records, process documentation, or governance workflows. Ability to work independently, manage multiple concurrent reviews, and produce high‑quality documentation with limited supervision. Strong written and verbal communication skills, including the ability to explain AI risk and compliance concepts to non‑specialist stakeholders. Preferred Experience Experience standing up or improving an AI governance intake and review process. Experience maintaining an AI system, AI use case, model, or automated decisioning inventory. Experience supporting AI governance in a federated, matrixed, or multi‑business enterprise. Experience with third‑party AI risk management, GRC platforms, workflow tools, risk registers, Jira, SharePoint, OneTrust, MetricStream, Archer, or similar tools. Experience developing AI governance metrics, dashboards, executive reporting, or operational KPIs. Relevant certifications such as AIGP, CISA, CRISC, CISM, CISSP, CDPSE, ISO 27001, ISO 42001, or similar credentials. Equal Opportunity Employer Jobot is an Equal Opportunity Employer. We provide an inclusive work environment that celebrates diversity and all qualified candidates receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, age (40 and over), disability, military status, genetic information or any other basis protected by applicable federal, state, or local laws. Jobot also prohibits harassment of applicants or employees based on any of these protected categories. It is Jobot’s policy to comply with all applicable federal, state and local laws respecting consideration of unemployment status in making hiring decisions. #J-18808-Ljbffr Australia-Employment