Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

IT Risk and Compliance Analyst

$90k - $115k

BRG

Washington DC

Job Summary IT Risk and Compliance Analyst position is a highly visible, client‑facing role that works closely with Legal and Business Unit stakeholders and reports to the IT Risk and Compliance Manager. This role is responsible for evaluating, assessing, and monitoring the firm’s risk and compliance with applicable information security standards and frameworks, industry best practices, and applicable laws and regulations. It also coordinates and maintains the Information Security Management Program and implements security policy objectives aligned with business objectives. Reporting Relationships IT Risk and Compliance Manager Key Contacts Works closely with the Legal and Business Unit stakeholders. Works with clients in response to security assessments and due diligence questionnaires covering Healthcare, Financial Services, Construction, Government Contracts, Insurance, Real Estate, and more. Works in conjunction with the IT Security and Infrastructure Team. Major Responsibilities Provide IT security, risk, and compliance advice to business units on an ongoing basis. Analyze and address gaps in operations to ensure integrity of processes, controls, and policies. Assist in maintaining and updating Information Security Program policies and procedures, including yearly reviews to ensure documentation is current. Provide governance for participation in the information security incident response process by ensuring it is followed and documented. Respond to escalated security events and drive the security incident response process. Participate in the evaluation, development and implementation of security standards, procedures and guidelines for multiple platforms and diverse system environments. Work with internal and external auditors to demonstrate and provide evidence for controls that are in place; may conduct additional testing to validate remediation. Complete client security questionnaires and work with business units to assist with RFI responses related to IT security. Assist in vendor vetting to ensure vendors, business partners or suppliers use the same or higher security practices. Assist in conducting risk assessments and annual reviews for any new or current vendors, partners, or suppliers. Assist with complex security assessments that require analytical and technical skills across a broad range of IT topics (Identity and Access Management, Security Architecture, Physical and Environmental, etc.). Assist with evaluating, testing, documenting, and maintaining the firmwide DR and BCP policies, processes, and standards. Assist with Security Awareness Training program initiatives related to phishing campaigns and coordinate with HR to deliver ongoing employee training. Requirements Associate Degree or equivalent work experience. 3 years of experience in two or more major information technology functions (infrastructure, operations, datacenter, application support, etc.). 3 years of IT security, IT compliance, or IT risk management experience desired. 3 years of experience involving ISO27001 annual surveillance audits and full recertification audits. Familiarity with industry frameworks and standards such as SOC2, HIPAA, HITRUST is a plus. Familiarity with GDPR and CCPA. Familiarity using GRC tools. Knowledge of application and network security, information security risk, and industry best practice on managing risk. Experience with building, executing, and maintaining DR and BCP program. Ability to effectively prioritize and execute tasks in a high‑pressure environment. Excellent written and verbal communication skills and time‑management skills. Strong troubleshooting, problem‑solving and analytical skills. Position may require traveling for short periods (up to 5 working days, on rare occasions beyond 5 days); all travel expenses will be reimbursed. Compensation Salary Range: $90,000 – $115,000 Additional Information Candidate must be able to submit verification of legal right to work in the U.S. without company sponsorship. Equal Opportunity Employer BRG is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, religion, color, sex, gender, national origin, age, United States military veteran status, ancestry, sexual orientation, marital status, family structure, medical condition, veteran status, or mental or physical disability, so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. #J-18808-Ljbffr BRG

Apply
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the IT Risk and Compliance Analyst in Washington DC vacancy
  • Compliance Data Analyst
     ...ProSidian provides enterprise services/solutions for Risk Management | Compliance | Business Process | IT Effectiveness | Engineering | Environmental |...  ...website at Description ProSidian Seeks a Compliance Data Analyst | Human Capital Programmatic Evaluation & Compliance... 
    Suggested
    Full time
    Contract work
    Temporary work
    For contractors
    H1b
    Work at office
    Flexible hours

    ProSidian Consulting, LLC

    Alexandria, VA
    11 days ago
  • IT Risk and Compliance Analyst

    $90k - $115k

    Position Title: IT Risk and Compliance Analyst Location: Washington, DC | New York, NY | Boston, MA | Chicago, IL Position Type: Full time Requisition ID: JR100812 Job Summary The IT Risk and Compliance Analyst is a highly visible, client-facing role that works closely... 
    Suggested
    Full time
    Work experience placement

    Koitecc Solutions

    Washington DC
    9 hours ago
  • IT Risk & Compliance Analyst — Incident Response Lead

    $90k - $115k

    Koitecc Solutions is seeking an IT Risk and Compliance Analyst to evaluate and monitor compliance with information security standards. This role involves close collaboration with business units and Legal, providing security advice and conducting assessments. Qualified... 
    Suggested

    Koitecc Solutions

    Washington DC
    4 days ago
  • Cybersecurity Compliance & Risk Analyst (Onsite Arlington)
     ...Saic is seeking a Cybersecurity Compliance Analyst in Arlington, VA. This role involves providing technical and analytical expertise of the Risk Management Framework and managing compliance reporting requirements. The candidate must have a Bachelor's degree, 3+ years... 
    Suggested

    SAIC

    Arlington, VA
    5 days ago
  • IT Risk and Compliance Professional
     ...Title: IT Risk and Compliance Professional Location: Washington, DC Duration: 6+ Months Description The IT risk and compliance or IT audit professional will support Client's IT Risk & Compliance team in its efforts to establish an ongoing... 
    Suggested

    TWO95 International

    Washington DC
    6 days ago
  • Contract Compliance Analyst
     ...ProSidian provides enterprise services/solutions for Risk Management, Compliance, Business Process, IT Effectiveness, Engineering, Environmental, Sustainability...  ...Description ProSidian Seeks a Contract Compliance Analyst | Compliance / Risk / Regulatory: Risk, Compliance &... 
    Full time
    Contract work
    For contractors
    Work at office
    Remote work

    ProSidian Consulting, LLC

    Washington DC
    5 days ago
  • Senior Cybersecurity GRC Analyst, DoD RMF (TS)
    PingWind is looking for a Cybersecurity Analyst in Alexandria, VA to lead governance, risk, and compliance activities, ensuring compliance with DoD cybersecurity standards. You will have a role in monitoring security controls and managing vulnerability assessments. The... 

    PingWind

    Alexandria, VA
    2 days ago
  • Senior Cybersecurity GRC Analyst - RMF/DoD (TS)
    A leading federal services provider is seeking a Cybersecurity Analyst in Alexandria, VA. This role includes managing governance, risk, and compliance activities to ensure compliance with DoD requirements. The ideal candidate will have at least 10 years of relevant experience... 

    PingWind

    Alexandria, VA
    4 days ago
  • Senior Cybersecurity GRC Analyst - RMF/DoD (TS)
    A federal services provider is seeking a Cybersecurity Analyst in Alexandria, VA, focused on governance, risk, and compliance (GRC) activities. The ideal candidate should have a minimum of 10 years of relevant experience and senior-level cybersecurity certifications. You... 

    Medium

    Alexandria, VA
    9 hours ago
  • Security Governance Risk & Compliance (GRC) Analyst at Virtru Washington DC

    $130k - $180k

     ...building a cutting‑edge security compliance program aligned with FedRAMP,...  ...other frameworks. As a GRC Analyst you’ll help manage these initiatives...  ..., and SaaS services. Conduct risk assessments across business...  ...in information security, IT audit, IT risk management, or... 
    Local area
    Flexible hours

    Neier Inc.

    Washington DC
    4 days ago
  • Governance, Risk, & Compliance (GRC) Analyst
    Governance, Risk, & Compliance (GRC) Analyst Washington, DC Remote Full-Time About This Role As a GRC Analyst, you will help organizations navigate the complex landscape of cybersecurity compliance and risk management. You will work directly with clients to assess their... 
    Full time
    Remote work

    Districttechgroup

    Washington DC
    1 day ago
  • Risk and Compliance Systems Analyst
     ...Job Title: Risk and Compliance Systems Analyst Location: Vienna, VA Work schedule: hybrid onsite 3 days (remote 2 days) Pay Rate: Open to Both...  ..., incidents, audit readiness, and compliance activities. It combines security operations, business analysis, testing,... 
    Full time
    Contract work
    For contractors
    Local area
    Remote work

    System One

    Falls Church, VA
    2 days ago
  • Securities Compliance Content Specialist
     ...salary About the Role: Join CFM Partners GRC, Inc. as a Regulatory Compliance Specialist - Content & Product. In this dynamic role, you will...  ...GRC, Inc. helps organizations strengthen governance, manage risk, and build a lasting culture of compliance. Based in Washington... 
    Work from home
    Flexible hours

    CFM Partners GRC, Inc.

    Washington DC
    1 day ago
  • 508 Compliance & Accessibility Analyst
     ...transformative results. Trilogy Federal is seeking a Section 508 Compliance & Accessibility Analyst to support the Department of Veterans Affairs (VA) T4NG...  ...workflows, and design reviews. Cybersecurity & Risk Management (Secondary Focus) Support cybersecurity... 
    For contractors

    Trilogy Federal

    Arlington, VA
    2 days ago
  • Compliance Analyst
     ...This role involves developing and implementing compliance strategies, ensuring adherence to federal regulations, and mitigating compliance risks. The Senior Consultant will be instrumental in helping our clients achieve compliance excellence while aligning with governmental... 

    Federal Mangement Systems

    Washington DC
    3 days ago
  • Compliance Analyst (GRC/RMF Focused)
     ...Job Title: Compliance Analyst (GRC/RMF Focused) Pay Type : SALARIED EXEMPT Location: Hybrid, Washington, DC (DMV Area)...  ...The Compliance Analyst (GRC/RMF Focused) supports governance, risk, and compliance (GRC) initiatives by developing, maintaining,... 
    Full time
    Monday to Friday

    Quzara LLC

    Washington DC
    1 day ago
  • Technical Compliance Analyst - TS CI Poly required to apply
     ...Monitors computer networks and systems for security issues, suspicious activities, and compliance with established standards. Assists in investigating security breaches or incidents and participates in documenting findings and remediation activities. Works as part... 

    Bow Wave LLC

    Washington DC
    3 days ago
  • SME SCRM Policy & Compliance Analyst

    $131.3k - $237.35k

     ...Modernization sector is seeking an experienced SME SCRM Policy & Compliance Analyst to support the delivery, enhancement, and adoption of...  ...Responsibilities: * Develop, maintain, and govern Supply Chain Risk Management (SCRM) policies, Standard Operating Procedures (SOPs... 
    Contract work

    Leidos Holdings Inc.

    Alexandria, VA
    3 days ago
  • Lead Governance & Compliance Analyst

    $136k - $253k

     ...deliver essential outcomes. We are seeking a Lead Governance & Compliance Analyst  to join our Operations and Technology organization,...  ...in-process platforms for products such as Legal Research and Risk & Fraud.   This role is central to sustaining and evolving... 
    Contract work
    Work at office
    Local area
    Flexible hours
    2 days per week
    3 days per week

    Thomson Reuters

    Washington DC
    1 day ago
  • Remote SCA & DBA Compliance Analyst

    $96k - $120k

    Amentum is seeking an SCA and DBA Compliance Analyst to support compliance with the Service Contract Act and Davis-Bacon Act. The role involves oversight of local and federal laws, collaboration with various departments, and managing compliance audits. The ideal candidate... 
    Remote job
    Contract work
    Local area

    Amentum

    Washington DC
    3 days ago
  • Compliance and Data Governance Specialist

    $120k - $180k

     ...Job Description Job Description Compliance and Data Governance Specialist - Department of State The Position: We are seeking driven...  ...Implement AI-powered predictive analytics to assess sponsor risk and detect anomalies Establish secure data-sharing protocols... 
    Full time
    For contractors
    Work at office
    Remote work
    Work from home
    Flexible hours
    Night shift

    Censeo Consulting Group

    Washington DC
    12 days ago
  • Healthcare Compliance Consultant
     ...Job Description Job Description Healthcare Compliance Consultant (Full-Time) - Alexandria, VA (Hybrid) Strategic Management is seeking...  ...of a compliance program, regulatory compliance and compliance risk areas. Responsibilities Include Leads and provides... 
    Full time
    Interim role
    Work at office

    Strategic Management

    Alexandria, VA
    19 days ago
  • Junior Compliance Analyst: Data & I-9 Audits
    LIS Solutions is looking for a Junior Compliance Officer to support the Department of Homeland Security's worksite enforcement unit. The role involves inputting and evaluating data, conducting database queries, and supporting compliance review activities. Candidates must... 
    Work at office

    LIS Solutions

    Washington DC
    1 day ago
  • HR Policy & Compliance Specialist
     ...tailored solutions based on industry-leading practices. ProSidian provides enterprise services/solutions for Risk Management | Compliance | Business Process | IT Effectiveness | Engineering | Environmental | Sustainability | Human Capital. We help forward-thinking... 
    Full time
    Contract work
    Temporary work
    For contractors
    H1b
    Work at office
    Flexible hours

    ProSidian Consulting, LLC

    Alexandria, VA
    11 days ago
  • Senior Cybersecurity & Compliance Analyst
     ...Security Specialist in Washington, DC. This position entails developing and implementing IT security standards, monitoring security technology performance, and ensuring compliance with regulations like PCI and HIPAA. Candidates should possess a Bachelor’s degree in Computer... 

    National Education Association

    Washington DC
    9 hours ago
  • Junior Compliance Analyst: Data & I-9 Audits
    LIS Solutions is seeking a Junior Compliance Officer to join their team in Arlington, VA. This role focuses on supporting federal law enforcement by handling sensitive data and conducting audits related to Employment Eligibility Verification Forms (I-9). The ideal candidate... 
    Work at office

    LIS Solutions

    Arlington, VA
    1 day ago
  • Global Trade Compliance Data Analyst & Insights
     ...leading defense and technology company is seeking a Data Analyst for its Global Trade Compliance team in Arlington, VA. This full-time, in-office...  ...collecting and analyzing data to support compliance and risk analysis. The ideal candidate will have extensive data analysis... 
    Full time
    Work at office

    L3Harris Technologies

    Arlington, VA
    2 days ago
  • Strategic Budget & Compliance Analyst — Hybrid (DC)
    ManpowerGroup Global, Inc. is looking for a Finance, Risk & Compliance - Financial Analyst to join their team. The successful candidate will manage the External Affairs team's budget and assist with financial processes. This role requires 5+ years of experience in budget... 

    ManpowerGroup Global, Inc.

    Washington DC
    4 days ago
  • Finance, Risk & Compliance - Financial Analyst
     ...Finance, Risk & Compliance - Financial Analyst Job Title: Finance, Risk & Compliance - Financial Analyst Location: Washington DC / Hybrid Contract Job Summary: We are seeking a highly organized and detail-oriented contingent worker to support the External Affairs... 
    Contract work

    Experis

    Washington DC
    2 days ago
  • GRC Analyst

    $84k - $100k

     ...GRC Analyst Uplight is creating a new category of energy. We make...  ...Manage 3rd party/vendor risk management assessments Assist...  ...functions by managing security and compliance-related tasks such as...  ...management, risk assessment, and IT audit ~ Exposure to public cloud... 
    Local area
    Flexible hours
    Shift work

    upLIGHT

    Washington DC
    2 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to IT Risk and Compliance Analyst. Be the first to apply!

Related searches