Senior GRC Analyst
$110k - $120kPrizePicks
At PrizePicks, we are the fastest-growing sports company in North America, as recognized by Inc. 5000. As the leading platform for Daily Fantasy Sports, we cover a diverse range of sports leagues, including the NFL, NBA, and Esports titles like League of Legends and Counter-Strike. Our team of over 550 employees thrives in an inclusive culture that values individuals from diverse backgrounds, regardless of their level of sports fandom. Ready to reimagine the DFS industry together? Overview: PrizePicks is seeking an experienced and detail-oriented Senior GRC Analyst to join our expanding governance programs. This role will help drive the continued development and maturation of the organization's IT and Security governance, risk, and compliance initiatives. You will partner closely with Security, IT, Legal, Engineering, and business stakeholders to help strengthen our compliance posture, improve governance processes, and support ongoing risk management efforts across the enterprise. The ideal candidate is collaborative, proactive, and comfortable working with both technical and non-technical teams in a fast-paced environment. What you’ll do: Policy Lifecycle Management: Own the ongoing review and maintenance of organizational security policies, standards, and procedures. Assist in identifying policy gaps based on evolving regulatory requirements, business needs, and industry best practices. Compliance Program Support: Serve as a primary cross-functional coordinator with other dedicated compliance teams (e.g., Legal, Regulatory Affairs, Internal Audit) to design and maintain a unified, strategic governance roadmap that ensures all corporate compliance activities are aligned, documented, and consistently executed across the enterprise. Third-Party Risk Management (TPRM): Lead security risk assessments for new and renewing third-party vendors third-party vendors as part of the procurement lifecycle. Track remediation items and collaborate with stakeholders to address identified risks. Audit & Certification Coordination: Coordinate and support the organization's annual security audits and certifications (e.g., SOC 2, PCI, CIS). Coordinate evidence collection, track action items, communicate with stakeholders, and assist with audit readiness activities. Lead cross-functional coordination with internal SMEs to support evidence collection activities with internal SMEs to support the internal evidence gathering process across multiple departments, reviewing appropriateness, tracking action items, and ensuring timely submission of required documentation. This includes acting as a secondary liaison with external auditors, coordinating the internal evidence gathering process across multiple departments, tracking action items, and ensuring timely submission of required documentation. Serve as a subject matter resource in interpreting and mapping security controls to operational processes and supporting evidence, helping ensure control language, documentation, and evidence collection align with audit and compliance requirements. Security Training Program: Assist with the administration and continuous improvement of the company’s security awareness and training program, including tracking completion metrics and updating training content as needed. Regulatory & Compliance Support: Work in close partnership with Legal and Regulatory teams to interpret new and changing compliance requirements. Provide security insight to ensure corporate practices and technology align with legal and regulatory mandates. Governance and Process Improvement: Proactively identify and drive improvements to the efficiency, consistency, and scalability of GRC processes of GRC processes and documentation. Contribute to initiatives that enhance operational maturity and reduce organizational risk. Ensuring internal tools and processes meet control objectives and reduce organizational risk. Assist with the administration, maintenance, and continuous improvement of the organization’s GRC platform and related workflows to help streamline governance, risk, and compliance operations. Risk & Issue Management Support: Maintain and help evolve risk and issues registries, tracking exceptions, risk owners, update timelines, and supporting broader risk management initiatives across Security and IT functions. What you have: 5+ years of experience in Governance, Risk, and Compliance (GRC), Information Security, IT Audit, or related fields. Experience independently managing audits, compliance initiatives, or governance programs with limited supervision. Experience working with security and compliance frameworks such as SOC 2, ISO 27001, SOX 404, PCI-DSS, NIST, GDPR, CIS or similar standards. Familiarity with audit processes including evidence gathering / review, remediation tracking, and auditor coordination. Experience maintaining or developing security policies, standards, and procedures. Hands-on experience conducting Third-Party Risk Management (TPRM) assessments, including vendor security reviews, questionnaire evaluations, risk analysis, remediation tracking, and ongoing monitoring of third-party risk throughout the vendor lifecycle. Experience identifying, documenting, tracking, and communicating security and compliance risks to technical and non-technical stakeholders, including supporting risk remediation and exception management processes. Experience working with GRC platforms and tooling to manage compliance activities, risk registers, policy lifecycle management, audit evidence collection, and workflow automation. Experience interpreting and mapping security and compliance controls to operational processes and evidence requirements, including refining control language, validating control applicability, and ensuring appropriate evidence collection aligns with audit and compliance expectations. Familiarity with the impact of Governance, Risk, and Compliance (GRC) on the Secure Software Development Life Cycle (SSDLC) and IT operations. Experience supporting privacy and data protection compliance initiatives, including CCPA, consumer privacy regulations, and broader PII/data handling protection requirements across business and technology environments. Strong written and verbal communication skills with the ability to collaborate across technical and non-technical teams. Strong organizational skills and ability to manage multiple priorities effectively.Strong project management experience. What makes you stand out: Industry certifications such as CISSP, CISM, CISA, CRISC, Security+, or similar. Experience working in high-growth technology or regulated environments. Familiarity with GRC tooling such as Vanta, Drata, Archer, OneTrust, or ServiceNow GRC. Experience supporting PCI-DSS, privacy, or state regulatory compliance initiatives. Exposure to security awareness platforms and vendor risk management tooling. Experience helping mature or scale governance and compliance programs. Where you’ll live: While we prefer candidates based in Atlanta, we are open to qualified applicants from anywhere in the U.S. and are willing to consider remote candidates. #LI-Remote Working at PrizePicks: The typical salary range for this position is $110,000 to $120,000. At PrizePicks, we consider your role, level, and where you'll be working when determining our salary ranges. The compensation info you see on our job postings gives you an idea of the starting pay range for the position. Your actual pay within that range will depend on your specific work location, as well as your skills, experience, and education. Your recruiter will be happy to chat more about the specific pay range for your location and how we arrived at it during the hiring process. This application period will remain open for 30 days. We’re committed to finding the best candidate, so this date may be adjusted, and any changes will be reflected in this posting. Date Posted: 7/8/26 Benefits you’ll receive: In addition to your great compensation package, full-time employees will be eligible for the following perks: Company-subsidized medical, dental, & vision plans 401(k) plan with company match Annual bonus Flexible PTO to encourage a healthy work/life balance (2 weeks STRONGLY encouraged!) Generous paid leave programs, including 16-week paid parental leave and disability benefits Workplace flexibility and modern work schedules focused on getting the job done, not hours clocked Company-wide in-person events and team outings Lifestyle enhancement program Company equipment provided (Windows & Mac options) Annual performance reviews with opportunities for growth and career development You must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time. PrizePicks is an Equal Opportunity Employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.
$130k - $160k
...Alumni Ventures is seeking a Senior GRC Analyst to operate and mature governance, risk, compliance, and audit readiness programs. This role involves collaboration across departments to ensure effective compliance practices. Ideal candidates have 5+ years in GRC and experience...SeniorRemote workFlexible hours- ...be a US Citizen or Green Card holder NO THIRD PARTIES Only local candidates will be contacted We are seeking a highly motivated GRC Analyst to support the modernization and transformation of our Governance, Risk, and Compliance (GRC) program. This role is ideal for someone...SeniorContract workLocal area
- ## Senior GRC AnalystApplylocations: Westerville, OHtime type: Full timeposted on: Posted Yesterdayjob requisition id: R-101927Kokosing... ...looking for a Security Governance, Risk, and Compliance (GRC) Analyst to support and mature our security and compliance programs across...SeniorFor contractors
- ...Role Hotman Group is a boutique cybersecurity and GRC consulting firm doing meaningful work for clients who need GRC... .... What You Will Do As an Experienced or Senior GRC Analyst at Hotman Group you will work directly with clients to help them...SeniorPermanent employmentFull timeContract workRemote work
- ...About the role We’re hiring a Senior GRC Analyst to help scale Radar’s security and compliance programs, with a focus on third‑party risk and modern SaaS governance. You’ll partner with Engineering, Product, IT, Legal, Sales, and Security teams to evaluate vendors, manage...SeniorWork at officeRemote work
- ...Oura is seeking a Senior Governance, Risk, Compliance (GRC) Analyst to join the Security Team in New York City. This role involves leading GRC initiatives, managing compliance policies, and performing risk assessments. Candidates should have over 6 years of experience...SeniorRemote workFlexible hours
$140k - $165k
...Senior GRC Analyst Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and...SeniorLocal areaRemote workWorldwideFlexible hours- ...Sr. GRC Analyst, Risk Management Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk Register. This role is responsible for ensuring all identified...SeniorFor contractorsImmediate startFlexible hours
$130k - $150k
...come build with us at Crusoe. About This Role We’re seeking a GRC Analyst to support the day-to-day execution of our Governance, Risk, and... ...questionnaires and due diligence requests with guidance from senior team members Maintaining and updating audit and compliance...SeniorTemporary work- ...The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a risk focused, highly analytical role that ensures all human and third‑party risk to Clayco is identified, quantified...SeniorImmediate startFlexible hours
- ...Senior GRC Analyst | Deltek, Inc You will be part of the GRC team responsible for assessment, audits of cloud environments, information systems, risk management, and security tools to ensure adherence to applicable frameworks, laws, and regulations. As a Senior GRC...SeniorRemote work
- Gilder Search Group is looking for a Sr. GRC Analyst focused on Third-Party & Human Risk Management in St. Louis, Missouri. The role ensures all human and third-party risks to Clayco are identified and treated appropriately. Key responsibilities include owning the TPRM...Senior
$161.6k - $202k
...- and that responsibility demands a security and compliance program that scales with the business. We're building out our dedicated GRC team to improve and mature our program! You'll join the Security team and work across four pillars: security certifications (HITRUST...SeniorWork from homeFlexible hours- Sky Mavis is seeking a Senior GRC Analyst focused on Third-Party and Human Risk Management in St. Louis, Missouri. This role requires 6-8+ years of experience in Risk Assessment and Information Security, with strong analytical skills. You will lead the Vendor Risk Management...Senior
- Itlearn360 is seeking an experienced Third Party Governance, Risk and Compliance (GRC) Analyst in Los Angeles, CA. The ideal candidate should have at least three years of experience, preferably with Big 4 consulting or in regulated industries. This role involves executing...Senior
- Crunchyroll is seeking an experienced Risk Analyst to support our Information Security GRC team. This role emphasizes governance, risk, and compliance, ensuring technology evolution aligns with employee needs and strategic goals. Successful candidates will have over 8 years...SeniorFlexible hours
- A staffing agency based in Dallas, Texas is seeking a Senior Security Analyst to identify and mitigate security risks within the IT environment.... ...Information Security or IT and at least 3 years of experience in GRC/risk management. Competitive compensation and benefits...Senior
- Siritech Solutions Corp is seeking an experienced RSA Archer GRC Security Analyst in Austin, Texas. This role involves supporting enterprise governance, risk, and compliance initiatives through RSA Archer's administration and configuration. The ideal candidate will work...Senior
- Forrester Research, based in Cambridge, MA, is seeking a Senior Analyst to deliver strategic advice and conduct research for risk management leaders. The ideal candidate will possess strong knowledge of risk practices, cyber risk quantification, and excellent communication...Senior
- Tesla Motors, Inc. is seeking a GRC Senior System Analyst to join their Governance Risk and Compliance team in Austin, Texas. This role focuses on integrating AI solutions into governance frameworks, ensuring compliance with internal policies and regulations while driving...Senior
- Dormont Manufacturing Co is seeking a Senior Risk & Governance Analyst to join our GRC team in Dallas, Texas. This hybrid role involves maintaining our risk register, advancing AI risk governance, and supporting HIPAA compliance programs. The ideal candidate will have...Senior
- Protingent is looking for an IT GRC Analyst 4 to support governance, risk management, and compliance initiatives in Houston, TX. The role includes identifying and mitigating risks, ensuring compliance with regulations, and collaborating on audits. This position requires...Senior
- Gilder Search Group is looking for a Sr. GRC Analyst focusing on Third-Party & Human Risk Management in Atlanta, Georgia. This role involves risk analysis, compliance assessments, vendor management, and developing security awareness training. The ideal candidate has 6-8...Senior
- Phase2 Technology is seeking a Senior Analyst to conduct research and provide strategic guidance for risk management leaders. The successful candidate will leverage their expertise in cyber risk quantification and risk management practices to deliver insights across multiple...Senior
- Radar is hiring a Senior GRC Analyst in New York City to enhance security and compliance programs, focusing on third-party risk and SaaS governance. You will work with various teams to evaluate vendors, shape security strategies, and improve workflows, reporting to the...Senior
- Inceed is seeking a skilled Senior GRC Analyst to support DoD and federal compliance programs in a fully remote role. The candidate will join a dynamic team, ensuring compliance for government and defense-related systems while working on CMMC 2.0 Level 2 implementation...SeniorRemote job
- Amynta Group in Fort Worth is seeking a Senior GRC Analyst to enhance its risk management and compliance program. This hybrid role requires an individual to assess information security risks and support audits across operations. The ideal candidate should possess a Bachelor...Senior
- A global beverage solutions provider is seeking a Sr IT Governance Risk and Controls Analyst in Tampa, Florida. This role focuses on maintaining and improving the IT governance, risk, and compliance program, particularly in SOX compliance. Responsibilities include conducting...Senior
$80 - $82 per hour
Itlearn360 is seeking a Sr GRC Analyst in Santa Clara, CA, responsible for vendor risk assessments across various security domains and supporting customer audit requests. The perfect candidate will have a Bachelor's Degree in Technology or Risk Management and relevant certifications...SeniorHourly pay- DoorDash USA is seeking a Senior GRC Analyst specializing in HIPAA compliance to enhance and operate security programs across the organization. The ideal candidate will lead compliance workstreams, assess risks, and ensure regulatory adherence. This role requires 6+ years...Senior
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior GRC Analyst. Be the first to apply!
- grc analyst United States
- senior practice manager United States
- senior innovation manager United States
- senior warehouse manager United States
- senior game producer United States
- senior electronic design engineer United States
- senior quality assurance specialist United States
- senior robotics software engineer United States
- senior java software engineer United States
- senior specialist United States

