Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Lead GRC Analyst (IT/Security)

Quantum Global Technologies

Join UCT and be part of the fastest-growing sector in the world ! We indirectly touch every semiconductor chip that goes into every smartphone, smart car, and device that uses artificial intelligence. This is a critical time for the semiconductor industry and for UCT – as technology evolves, we evolve with it. UCT is a diverse workplace where every talented employee is committed to continuous innovation, challenging the status quo, and exceeding customer expectations. If you are a person with a relentless drive to succeed, a strong focus on quality with a passion for success – join us today! UCT is looking for a talented Analyst III, IT Infosec to join us in Austin, TX . Analyst III, IT Information Security is a contributor responsible for strengthening the organization’s security posture through analysis, detection, incident response, and security program development. This role blends technical expertise with strategic thinking, ensuring that security controls, policies, and processes effectively protect systems, data, and users across the enterprise. Role Overview The UCT GRC Specialist will support the design, execution, and maturity of UCT’s IT governance, risk, and compliance program. This role is responsible for coordinating IT risk management activities, supporting control design and testing, maintaining audit‑ready evidence, and partnering with IT, Security, Legal, Finance, HR, Operations, and business stakeholders to embed compliance into day‑to‑day processes. The role will help maintain a structured GRC program aligned with applicable regulatory requirements, SOX obligations, cybersecurity frameworks, internal policies, and UCT’s risk appetite. The specialist will also support continuous improvement initiatives, including automation, workflow optimization, reporting, and development of playbooks and self‑service resources. Third‑Party Risk Management & Vendor Governance Support the vendor and cloud service provider risk review process, including intake, security questionnaire review, SOC2 report review, architecture and access considerations, contract support, risk documentation, and stakeholder follow‑up. Evaluate vendor security posture in coordination with technical subject matter experts and document risks, compensating controls, remediation commitments, and risk acceptance decisions where applicable. Maintain vendor risk records and support reporting on third‑party risk themes, overdue remediation items, and exceptions that require management awareness. Compliance Automation, Reporting & Continuous Improvement Administer, optimize, and support GRC and compliance automation platforms to improve workflow efficiency, reduce manual effort, and strengthen reporting consistency. Develop and maintain compliance metrics, dashboards, process trackers, and executive reports to communicate program status, control performance, audit readiness, and remediation progress. Identify opportunities to streamline recurring compliance activities, standardize evidence collection, automate reminders, and improve stakeholder visibility into open tasks and deadlines. Risk Register Stewardship Establish, maintain, and mature the Enterprise IT Risk Register, including risk identification, categorization, likelihood and impact scoring, ownership assignment, risk response, and status tracking. Partner with risk owners to develop and monitor risk treatment plans, track remediation progress, and elevate high or critical risks when timelines, ownership, or mitigation plans require leadership attention. Develop and present risk dashboards, compliance metrics, and executive‑ready reports that provide leadership with a clear view of UCT’s IT risk environment, control gaps, remediation status, and program maturity. Framework Implementation, Control Design & Gap Analysis Support the scoping, design, and maturity of UCT’s IT compliance program by mapping IT controls to applicable frameworks and requirements, including SOX, ITGC expectations, CIS, NISTCSF, ISO27001, SOC2, and other relevant regulatory or customer obligations. Perform control gap analyses, document findings, assess control maturity, and develop remediation roadmaps in partnership with control owners, system owners, and process owners. Design, document, and improve internal controls and common control frameworks to support evolving compliance requirements, reduce duplication, and improve consistency across applications, infrastructure, and business processes. Site Walkthroughs & Operational Assessments Plan, coordinate, and perform site walkthroughs to evaluate local IT operations, physical and logical access practices, change management procedures, backup and recovery processes, asset management, and compliance with established IT policies and control requirements. Partner with site IT teams, business process owners, and control owners to understand local procedures, validate control operation, identify process gaps, and confirm that documented practices align with actual operating activities. Document walkthrough observations, risks, control gaps, evidence requirements, and remediation actions in a clear and audit‑ready format. Track site walkthrough findings through remediation, elevate significant issues where appropriate, and summarize recurring themes for leadership reporting and broader control improvement initiatives. Policy, SOP & Governance Support Draft, maintain, and periodically review IT policies, standards, procedures, and control documentation to ensure alignment with regulatory requirements, internal governance expectations, and operational practices. Manage the policy and SOP lifecycle, including drafting, stakeholder review, approval routing, publication, periodic recertification, and evidence‑based validation of operating procedures. Develop training materials, playbooks, and self‑service resources that help IT and business teams understand compliance expectations and meet requirements efficiently. Control Testing, Evidence Collection & Audit Readiness Lead or support control design walkthroughs and tests of operating effectiveness, including evidence collection, effectiveness validation, exception identification, remediation tracking, and continuous improvement. Prepare and support control owners and process owners for internal and external audits by reviewing people, processes, technologies, key configurations, and supporting evidence for completeness and audit readiness. Build and maintain a centralized evidence repository to ensure change control records, access reviews, control attestations, remediation artifacts, and other compliance documentation are organized, current, and available for audit requests. Coordinate audit evidence requests across IT and business teams, track completion against defined timelines, and communicate status, blockers, and escalation needs to stakeholders. Access Governance & User Access Reviews Define, maintain, and support the schedule and standards for periodic user access reviews of SOX‑relevant and mission‑critical systems. Validate completed access reviews against least privilege, segregation of duties, and business need requirements; document findings, exceptions, and evidence of review completion. Track remediation of excessive, inappropriate, or stale access identified during reviews and support reporting to control owners, system owners, and leadership. Partner with IT, Security, Engineering, Product, Legal, HR, Finance, Operations, and business stakeholders to integrate compliance requirements into processes, technology changes, vendor decisions, and operational practices. Communicate effectively with technical and non‑technical stakeholders on IT risk, control design, remediation expectations, audit requests, and program reporting. Manage multiple GRC initiatives simultaneously while keeping stakeholders informed, maintaining schedules, tracking deliverables, and escalating risks to timely completion. Program Leadership Scope Support the design of the overall GRC program structure, including process design, tooling strategy, control framework alignment, operating cadence, and prioritization roadmap. Help establish scalable GRC policy, methodology, documentation, and reporting standards as the function grows. Represent GRC in cross‑functional governance discussions and advise stakeholders on risk‑based prioritization, control expectations, and remediation planning. Provide technical direction, knowledge sharing, and mentoring support to additional GRC team members as the function expands. Other Duties Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. Minimum Qualifications Minimum of 3 years of experience in IT governance, risk, compliance, IT audit, cybersecurity compliance, IT controls, third‑party risk management, or a related field. Bachelor’s degree in Information Systems, Information Technology, Cybersecurity, Computer Science, Accounting, Business, Risk Management, or a related field, or equivalent practical experience. Professional certification preferred, such as CRISC, CISA, CISM, CISSP, or other relevant IT risk, audit, security, or compliance certification. Experience supporting IT risk register activities, control testing, evidence collection, audit readiness, remediation tracking, compliance reporting, or site walkthroughs. Working knowledge of IT control frameworks and compliance requirements such as SOX, ITGC, CIS, NISTCSF, ISO27001, SOC2, or similar frameworks. Ability to partner with IT, Security, business, site teams, vendors, and control owners to document processes, validate control operation, identify gaps, and support remediation. Strong written and verbal communication skills, with the ability to prepare clear documentation, walkthrough notes, risk summaries, control summaries, dashboards, and stakeholder updates. Strong organizational skills with the ability to manage multiple priorities, track deadlines, follow up on open items, and support recurring compliance activities. Ultra Clean Technology is proud to be an equal‑opportunity employer. We are committed to equal employment opportunity regardless of race, color, national or ethnic origin, age, religion, disability, sexual orientation, gender, gender identity and expression, marital status, and any other characteristic protected under laws and regulations. #J-18808-Ljbffr Quantum Global Technologies

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Lead GRC Analyst (IT/Security) in Manor, TX vacancy
  • Ultra Clean Technology in Austin, TX is seeking an Analyst III for IT Information Security. This role involves enhancing the company's security posture through various compliance, risk management, and governance tasks. The ideal candidate will have a strong background in... 
    Suggested

    Ultra Clean Technology

    Austin, TX
    3 days ago
  •  ...IT Security Manager Key Responsibilities: Governance Develop, maintain, and enforce...  ...: Strong experience in GRC, IT audit, or cybersecurity. Strong understanding...  ...Certifications such as CISA, CRISC, CISSP, or ISO 27001 Lead Implementer are a plus.... 
    Suggested

    Yochana

    Austin, TX
    12 hours ago
  • QUANTUM GLOBAL TECHNOLOGIES, LLC is seeking an Analyst III in IT Infosec to bolster its security framework based in Austin, Texas. The role entails enhancing security policies, compliance automation, and vendor risk management. The ideal candidate should possess a bachelor... 
    Suggested

    Quantum Global Technologies

    Manor, TX
    2 days ago
  • $125k

    The University of Texas at Austin is seeking a Cybersecurity GRC Analyst to enhance their governance, risk, and compliance activities. This...  ...on compliance frameworks such as NIST and CMMC, supporting secure research practices. The ideal candidate should have at least 3... 
    Suggested
    Remote job

    The University of Texas at Austin

    Austin, TX
    12 hours ago
  • Gravity Engineering Services Pvt Ltd. is offering a remote position within the Information Security Office at The University of Texas at Austin. This role is crucial for supporting governance, risk, and compliance programs in cybersecurity. You'll work with an intelligent... 
    Suggested
    Remote job
    Work at office

    Gravity Engineering Services Pvt Ltd.

    Austin, TX
    1 day ago
  • Cacheflow is looking for a Senior Security GRC Analyst to serve as the SME for the PCI DSS program. This role involves leading compliance efforts and acting as a technical bridge between various teams and auditors. The ideal candidate will have extensive experience in... 

    Cacheflow

    Austin, TX
    3 days ago
  • AVOMO is seeking a Senior IT Manager for its autonomous vehicle operations in Austin, Texas. This role focuses on IT infrastructure oversight, security implementation, and vendor coordination to support fast-paced operational needs. The ideal candidate will have substantial... 

    AVOMO

    Austin, TX
    3 days ago
  • A national organization for communication services in Texas is seeking an IT & Security Governance Manager to advance technology maturity across corporate IT and cloud environments. The ideal candidate will drive operational compliance frameworks, manage technology risk... 

    Communication Service for the Deaf (CSD)

    Austin, TX
    4 days ago
  • Tesla Motors, Inc. is seeking a GRC Senior System Analyst to join their Governance Risk and Compliance team in Austin, Texas. This role focuses on integrating AI solutions into governance frameworks, ensuring compliance with internal policies and regulations while driving... 

    Tesla Motors, Inc.

    Austin, TX
    2 days ago
  •  ...About The Team Tesla is looking for an GRC IT Analyst to join our Global Risk and Compliance...  ...working with the IT teams, Business and Security Teams. In addition to operations for Key...  ...efforts You have experience leading and mitigating risk in projects throughout... 
    Full time
    Temporary work
    Part time
    Summer work
    Internship
    Relocation
    Flexible hours

    Tesla

    Austin, TX
    2 days ago
  •  ...We're seeking a motivated and detail-oriented Site IT Lead & Systems Administrator to join our growing IT team here at Cliet on a contract...  ...Coordinate with our InfoSec team to remediate security gaps or vulnerabilities across Client's Enterprise Tools FedRAMP... 
    Contract work
    Work experience placement
    Work at office

    Diamondpick

    Austin, TX
    3 days ago
  •  ...Austin in 1989, EZCORP has grown into a leading provider of pawn loans in the United States...  ...for both shaping how AI is governed securely and executing the day-to-day controls that...  ...hallucination-driven decisionsCollaborate with IT Security architecture on secure AI... 
    Temporary work
    Fixed term contract

    EZCORP Services, Inc.

    Austin, TX
    3 days ago
  • Hard Rock Digital is seeking a Cybersecurity Risk Analyst to join their Security Risk Management team. This role focuses on protecting cloud infrastructure and customer data while ensuring compliance with gaming regulations. With a blend of technical knowledge and business... 
    Remote job
    Flexible hours

    Hard Rock Digital

    Austin, TX
    4 days ago
  • LPL Financial in Austin, Texas is seeking a highly skilled Senior Analyst to support their Technology and Information Security efforts. This position involves identifying and mitigating risks associated with financial products and technology, requiring over 4 years of... 

    LPL Financial

    Austin, TX
    3 days ago
  • $4,500 - $6,000 per month

    Chaxy is looking for a Cybersecurity Analyst in Austin, Texas, responsible for protecting our digital infrastructure against threats. This role includes monitoring for vulnerabilities, analyzing security logs, and coordinating incident responses. Qualified candidates will... 

    Chaxy

    Austin, TX
    3 days ago
  • EZCORP Services, Inc. in Austin is looking for a Senior Compliance Analyst to enhance their Compliance Management Program. The role involves monitoring compliance, managing regulatory examinations, and recommending corrective actions to maintain compliance standards. The... 

    EZCORP Services, Inc.

    Austin, TX
    2 days ago
  •  ...Job Description Summary The Team Lead assists in supervising and managing all day-to-day store operations while ensuring that 100% compliance exists with all established Company policies and procedures. Provides leadership, guidance and training to the store staff... 
    Full time
    Part time
    Casual work

    Rack Room Shoes

    Manor, TX
    3 days ago
  •  ...s USA will not receive a copy of your employment application and it will have no involvement in any employment decisions, including whether...  .... Make your move. See a day in the life of a Guest Experience Lead at McDonald's Requirements: We believe in letting you do... 
    Full time
    Part time
    Local area

    McDonald's

    Manor, TX
    1 day ago
  • Commerce Inc in Austin is looking for a Senior Security Governance Risk and Compliance Analyst to support compliance programs and implement risk improvement projects. This hybrid role involves managing third-party risk assessments, collaborating with cross-functional teams... 

    Commerce Co.

    Austin, TX
    12 hours ago
  •  ...Preferred 10+ Years (Enterprise/Government GRC Environments) Job Description: Seeking an experienced RSA Archer GRC Security Analyst to support enterprise governance, risk,...  ...with security, compliance, risk, audit, and IT teams to translate regulatory and business... 

    Siritech Solutions Corp

    Austin, TX
    9 days ago
  • $18 per hour

     ...Description We are looking for a reliable and experienced Lead to ensure all facility operations follow policies and procedures...  ...case basis. ABM participates in the U.S. Department of Homeland Security E-Verify program. E-Verify is an internet-based system used to... 
    Hourly pay
    Work experience placement
    For subcontractor
    Local area
    Monday to Friday
    Shift work

    ABM Industries

    Manor, TX
    12 hours ago
  • Walmart is seeking Meat/Produce associates to help keep the Fresh area fully stocked and organized. You will rotate product, ensure displays are tidy, and support food safety standards throughout the shift. This full-time role at Walmart emphasizes maintaining fresh displays...
    Full time
    Shift work

    Walmart

    Manor, TX
    3 hours ago
  •  ...spearhead the advancement of its Information Security Governance and Risk functions. The...  ...activities, formalizing cyber risk controls, and leading the team to ensure compliance and...  ...record as thought leaders in solving complex IT-risk management issues, with a strong... 
    Work experience placement

    Confidential

    Austin, TX
    2 days ago
  • $88.95k - $150.43k

     ...this is the place for you. As a Senior Security GRC Analyst and Internal Security Assessor (ISA), you...  ...DSS 4.0 environment; your mission is to lead the continuous evolution of this program...  ...our Engineering, Infrastructure, and IT teams and external auditors, ensuring that... 

    Cacheflow

    Austin, TX
    3 days ago
  •  ...Job Description Job Description GRC Archer Network Security Analyst II (RSA Archer Specialist) Mode of Work: Onsite Job Description: Seeking...  ...Collaborate with compliance, security, risk, and IT stakeholders on governance initiatives Maintain governance... 

    Siritech Solutions Corp

    Austin, TX
    9 days ago
  • A pioneering biotech company is seeking a CMC Program Manager in Austin, Texas to lead cross-functional initiatives supporting groundbreaking therapies in women's health. This mid-senior level role involves coordinating CMC activities, managing external partnerships, and... 

    Gameto

    Austin, TX
    4 days ago
  •  ...Company, Inc. is searching for a Cybersecurity Compliance & Audit Analyst in Austin, Texas. This hybrid role involves supporting cybersecurity and IT audits, validating audit evidence, and assessing security controls against various frameworks. Candidates should have a... 

    McLane Company

    Austin, TX
    4 days ago
  •  ...is looking for Cybersecurity Compliance Analyst to work on site in Austin, TX and support...  ...in an accredited state. Assist in daily IT governance, risk management, and compliance...  ...the daily administration of information security measures in compliance with the NIST SP 8... 

    Insight Global

    Austin, TX
    1 day ago
  •  ...high performance. They lead with accountability, communicate...  ...Compliance & Audit Analyst to support and...  ..., risk, and compliance (GRC) program. This role is ideal...  ...teams to ensure strong security controls, audit readiness...  ...external cybersecurity and IT audits from planning through... 
    Full time
    Work at office
    Shift work
    3 days per week

    McLane Company, Inc.

    Austin, TX
    4 days ago
  •  ...Opportunities: Cybersecurity Compliance Analyst (17423) Functional Title: Cybersecurity Compliance...  ...& Human Services Comm; Department: SP28 IT Security; Posting Number: 17423; Closing Date: 07/...  .... Experience working with enterprise GRC and IT service management tools.... 
    Permanent employment
    Full time
    Contract work
    Temporary work
    Part time
    Shift work

    FALL CREEK FARM & NURSERY

    Austin, TX
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Lead GRC Analyst (IT/Security). Be the first to apply!