Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Governance Risk & Compliance Analyst

System One Holdings, LLC

Governance Risk & Compliance Analyst

System One is seeking a GRC Analyst for an opportunity in Lakewood, CO. The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company-wide security governance, risk management, and compliance programs. Under the direction of the GRC Functional Leader, the analyst contributes to policy development, risk oversight, and continuous improvement of the organization's security posture. The role also works closely with regional Information Security Officers (ISOs) and cross-functional teams to support the deployment of global standards and local regulatory requirements.

Responsibilities:

  • Support information security risk assessments for new projects, systems, and business processes.
  • Assist in conducting internal control reviews (e.g., JSOX), preparing audit materials, and coordinating responses to internal and external auditors.
  • Track and follow up on remediation actions to ensure timely closure of identified risks.
  • Contribute to drafting, updating, and maintaining global information security policies, standards, and procedures.
  • Review relevant laws, regulations, and industry frameworks (e.g., ISO 27001, NIS2) and incorporate stakeholder feedback into documentation.
  • Support the rollout and implementation of policies across regions.
  • Monitor adherence to security and regulatory requirements, including ISO 27001, NIS2, and GDPR.
  • Collect and organize compliance evidence, track corrective actions, and support certification and regulatory readiness efforts such as ISO 27001/42001 and NIS2 programs.
  • Conduct third party security risk assessments by distributing questionnaires, analyzing responses, verifying controls, and documenting results in the GRC tracking systems.
  • Identify and escalate high risk findings to the GRC Functional Leader and support follow up mitigation activities.
  • Participate in the planning and implementation of security awareness programs for all associates.
  • Create e-learning materials and training materials, conduct phishing email exercises, and distribute disseminated content on internal portals.
  • Monitor and analyze global regulatory developments related to cybersecurity with a focus on industrial control systems (ICS), IT environments, and critical infrastructure.
  • Assist in evaluating how new or updated regulations (e.g., NIS2, FDA cybersecurity expectations, industrial cybersecurity standards, or country specific critical infrastructure laws) impact company operations.
  • Track emerging obligations, document requirements, and support gap assessments to ensure timely compliance.
  • Assist in the preparation, maintenance, and continuous improvement of the CISO Dashboard by collecting, validating, and analyzing security metrics across the Global GRC function.
  • Compile key performance indicators (KPIs) and key risk indicators (KRIs) related to compliance status, audit findings, supplier risk, incident trends, training completion, regulatory readiness, and other relevant security domains.
  • Support the visualization and communication of security posture to senior leadership by ensuring data accuracy, timely updates, and clarity in reporting.
  • Support the development and enforcement of governance controls for the secure use of artificial intelligence technologies across the organization.
  • Identify risks related to AI systemssuch as model security, algorithmic integrity, and misuseand contribute to risk assessments and mitigation plans.
  • Help evaluate third party AI tools.
  • Support the development and improvement of GRC processes, tools, and documentation to enhance operational efficiency and standardization.
  • Assist in preparing reports, presentations, and materials for leadership reviews, steering committees, and cross-functional meetings.
  • Participate in internal security projects and initiatives, including process automation, metrics development, and enhancements to governance workflows.
  • Provide coordination and administrative support for security committees, working groups, and regional GRC activities.
  • Perform additional duties as assigned to support the Global Information Security Office and the broader GRC program.

Requirements:

  • 3 to 5+ years of experience in information security, governance, risk management, compliance, IT audit, or a related discipline.
  • Experience supporting security programs in global or regulated environments is a plus.
  • Understanding of global and regional information security regulations (e.g., data protection laws, cybersecurity requirements) and familiarity with security frameworks such as ISO 27001.
  • Knowledge of internal control frameworks (e.g., JSOX) and IT governance practices is highly desirable.
  • Experience supporting audit activities is preferred.
  • Experience with risk assessment methodologies, control evaluation, and vulnerability or issue management processes.
  • Strong analytical and problem-solving skills, with the ability to identify risks, assess impacts, and support the development and tracking of corrective actions.
  • Ability to communicate security requirements, policies, and audit findings clearly and persuasively with stakeholders across regions and business units.
  • Strong coordination skills to build consensus and drive compliance.
  • Industry certifications such as CISSP, CISA, CISM, ISO 27001 Lead Implementer/Auditor, or similar are preferred but not required.
  • Bachelor's degree in information security, Cybersecurity, Information Systems, Computer Science, or a related field; or equivalent professional experience.
  • Familiarity with governance, risk, and compliance tools (e.g., BitSight, Drata, OneTrust, Archer, or similar) for managing risks, audits, and compliance workflows.
  • Working knowledge of cybersecurity concepts such as identity and access management, endpoint protection, vulnerability management, cloud security, and secure system design.
  • Experience supporting cross-functional security or compliance initiatives, including requirements gathering, documentation, and progress tracking.
  • Ability to interpret risk metrics, compliance data, and audit results.
  • Experience with dashboards, KPI/KRI reporting, or data visualization tools is a plus.
  • Awareness of emerging cybersecurity regulations (e.g., NIS2, AI governance frameworks, critical infrastructure rules) and their potential impact on enterprise operations.

System One, and its subsidiaries including Joul and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan. System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Governance Risk & Compliance Analyst in Denver, CO vacancy
  •  ...Now Hiring: GRC Analyst (Contract-to-Hire) Location: Hybrid (2–3 days onsite) – Lakewood, CO Type: 6‑month contract...  ...looking for a GRC Analyst to support enterprise security governance, risk management, and compliance initiatives. This role partners with global teams to... 
    Suggested
    Contract work
    Temporary work
    Local area
    Immediate start

    Akkodis

    Lakewood, CO
    3 days ago
  • $120k - $150k

     ...Governance Risk And Compliance Analyst Polsinelli does not accept unsolicited resumes from search firms or agencies. Please, no phone calls or emails. At Polsinelli, What a Law Firm Should Be is not just our tagline, it is what we live every day. We strive to create... 
    Suggested
    Full time
    Temporary work
    Part time
    Work experience placement
    Remote work
    Flexible hours
    Shift work

    Polsinelli

    Denver, CO
    6 days ago
  • $44.79k - $72.34k

     ...UMB Bank is seeking an EFT Risk Analyst to monitor risk for ACH transactions and assist in the administration of various risk programs...  ...This hybrid role requires skills in financial processing and compliance. The ideal candidate will present reports to management and implement... 
    Suggested

    UMB Bank

    Denver, CO
    4 days ago
  • $70k - $75k

     ...love to hear from you! Your opportunity Support the Financial Risk team in delivering an effective Financial Risk program including...  ...reporting and metrics to support the Financial Risk team including for governance committees, client due diligence activities, and Boards.... 
    Suggested
    Work experience placement

    Janus Henderson Global Investors

    Denver, CO
    5 hours ago
  •  ...Ping Identity is looking for an Information Security Analyst to enhance its Information Security Management System. This role involves developing security policies, assessing compliance, and engaging in customer security assessments, all while collaborating with internal... 
    Suggested

    Ping Identity

    Denver, CO
    19 hours ago
  • $69.23k - $149k

     ...identify threats, vulnerabilities, and risks and to help protect the people, information...  ...work especially close with UMB data governance, enterprise technology and information security...  .... As the Sr. Information Security Risk Analyst, you will participate in activities... 
    Work experience placement
    Local area
    Remote work
    Flexible hours

    UMB Bank

    Denver, CO
    5 hours ago
  •  ...team across the board. Position Summary York Space Systems is seeking a Cyber Risk & Compliance Specialist to support the execution and administration of the company's cybersecurity governance, risk, and compliance programs. This role will work closely with... 
    Permanent employment
    Work at office
    Local area
    Worldwide

    York Space Systems LLC

    Greenwood Village, CO
    3 days ago
  • $65k - $75k

     ...to fill the position of a full-time Information Security Risk and Compliance Analyst at our Denver, CO location. The salary range for...  ...monitoring activities according to established schedules and governance expectations. Perform additional risk and compliance... 
    Full time

    Sunflower Bank, N.A.

    Denver, CO
    12 days ago
  • $54.22k - $79.02k

     ...The EFT Risk Team monitors Risk for ACH and other payment channels. Managing the Risk...  ...to UMB’s Risk appetite. As the EFT Risk Analyst , you will assist with the ongoing administration...  ...or equivalent experience. 1 year of compliance, audit, or risk experience. Bonus Points... 
    Local area
    Remote work
    Monday to Friday
    Flexible hours

    UMB Bank

    Denver, CO
    3 days ago
  •  ...driven and detail-oriented Enterprise Risk Analyst to support two distinct but interconnected...  ...with engineering, security, legal, compliance, and operations teams to help identify,...  ...briefings, external assessor interactions, and government partner reviews. Qualifications 5+... 
    Permanent employment
    Contract work
    Work at office

    Dormont Manufacturing Company

    Centennial, CO
    3 days ago
  • $80k - $100k

     ...Responsibilities An exciting opportunity to join a small but critical Risk Management team at a dynamic, best-in-class public company. As...  ...of Insurance (COI) requests and maintain ongoing COI compliance tracking Champion safety initiatives and contribute to the development... 

    Healthpeak Properties, Inc.

    Denver, CO
    5 days ago
  • $100k - $123k

     ...analysis that contributes to and advances Risk Management programs and processes...  ...Operational Risk and Resilience, Product Governance, AI Risk Governance, and Risk Governance...  ...to benchmark industry standards, monitor compliance, and track adherence to policies and procedures... 
    Work experience placement
    Work at office
    Work visa
    Flexible hours

    CoBank

    Englewood, CO
    6 days ago
  •  ...together About the role The Mid-Level GRC Analyst operates at the intersection of compliance, risk, and operational integrity. You will be more than...  ...What you bring: ~3-5 years of experience in governance, risk, and compliance, preferably in a technology-... 
    Work at office
    Remote work
    Flexible hours

    AspenView Technology Partners, Inc.

    Denver, CO
    2 days ago
  • $100k - $123k

     ...awards Essential Functions Contributes to the research and development of financial models incorporating credit and/or market risk elements. Contributes to or owns the ongoing management of existing models, which includes maintenance of data/documentation/parameters... 
    Work experience placement
    Work at office
    Work visa
    Flexible hours

    CoBank

    Greenwood Village, CO
    4 days ago
  • $90k - $110k

     ...Analyst, Risk Management - Performance Guarantees The Analyst supports governance and tracking of client performance guarantees (PGs) and contract related commitments within Client Services. This role maintains visibility into PG obligations, supports reporting needs... 
    Contract work
    Remote work

    Judi Health

    Denver, CO
    6 days ago
  •  ...Senior Associate, Risk Advisory Group In today's dynamic environment, business leaders face constantly shifting risks. Riveron helps organizations implement leading governance, risk and compliance practices by combining deep expertise with pragmatic partnership, using... 
    Full time
    Contract work
    Work at office
    Shift work

    Riveron

    Denver, CO
    3 days ago
  • $100k - $125k

    Lead Risk Analyst $100 - $125k Denver, CO Straddle

    Straddle

    Denver, CO
    4 days ago
  • $60k

     ...operating, and improving essential government systems and services, with proven...  ...citizenship. This role is remote. The Risk, Quality, and Performance Analyst serves as the Risk, Quality, and...  ...management activities to ensure compliance with contract requirements and... 
    Contract work
    Remote work

    MAXIMUS

    Denver, CO
    5 days ago
  • Managing and growing relationships with private capital clients, the full-time California Licensed Private Risk Specialist will develop customized insurance programs, advise on risk management strategies, and ensure exceptional client service while working remotely. Key... 
    Remote work

    VirtualVocations

    Aurora, CO
    2 days ago
  • $92.5k - $120k

     ...professional journey. To support the continued growth of our Risk Advisory for State & Local Government practice, an opportunity has been created for a Senior...  ...to deliver solutions over operational and regulatory compliance risks, supporting them in the areas of internal audit,... 
    Work experience placement
    Work at office
    Local area
    Remote work

    Cherry Bekaert

    Denver, CO
    4 days ago
  • $85k - $95k

     ...Senior Risk & Insurance Analyst Within our Corporate Enterprise Risk Management team in Denver, Leprino is seeking a Senior Risk & Insurance...  ...insurance renewals, evaluate risk, maintain program compliance, and provide meaningful analysis that supports informed business... 
    Local area

    Leprino

    Denver, CO
    4 days ago
  • $65k - $75k

     ...Insurance Risk Advisor Join our team of insurance professionals! We seek a driven and motivated Insurance Risk Advisor to join our team at Flood and Peterson. The ideal candidate will have a strong work ethic and a passion for building and maintaining relationships... 
    Full time

    flood and peterson insurance

    Englewood, CO
    4 days ago
  • $140k - $165k

     ...Insider Risk Specialist Join us in building the future of finance. Our mission is to democratize finance for all. An estimated $124 trillion of assets will be inherited by younger generations in the next two decades. The largest transfer of wealth in human history... 
    For contractors
    Work at office
    Flexible hours
    Shift work
    3 days per week

    Robinhood

    Denver, CO
    2 days ago
  •  ...day. This role sits within theInformation Security Governance, Risk and Compliance (GRC) team, which reports directly into the CISO organization...  ...In this role you will: The Information Security GRC Analyst with a Risk and Policy focusis responsible forassistingin... 
    Contract work
    Immediate start

    Chatham Financial

    Denver, CO
    8 days ago
  • $80k - $95k

     ...Operational Risk Management Support the day-to-day execution of the Transamerica Operational Risk Management...  ...(e.g. line and functional management, compliance, IT, Internal Audit). Navigate company Governance Risk & Compliance (GRC) tool to record, update and... 
    Work at office
    Remote work

    Transamerica

    Denver, CO
    6 days ago
  • $99k - $124k

     ...Lead Analyst, Risk Adjustment Analytics Denver, CO How You'll Make An Impact At Strive Health, patients come first. We're on a mission to transform chronic conditions by identifying risk earlier, coordinating thoughtful care, and supporting people through every... 
    Work at office
    Remote work
    Work from home
    Flexible hours
    2 days per week

    Strive Health

    Denver, CO
    3 days ago
  • $73.5k - $147k

     ...Health Actuary - Analyst III At Mercer, we make a difference in the lives of more than 110 million people every day by advancing their health, wealth, and careers. We're in the business of creating exciting and rewarding futures for our clients and their employees — whether... 
    Minimum wage
    Work experience placement
    Work at office
    Local area
    Remote work
    Flexible hours
    3 days per week
    1 day per week

    Marsh & McLennan

    Denver, CO
    10 days ago
  •  ...Senior Risk Monitoring Analyst Join FINRA's mission to protect investors and ensure market integrity. Are you a seasoned financial regulatory professional ready to make a meaningful impact? FINRA is seeking a Senior Risk Monitoring Analyst to play a pivotal role in... 

    FINRA

    Denver, CO
    3 days ago
  • $67.5k - $125.8k

     ...Sales And Risk Consultant Our not-so-secret sauce. Award-winning, inclusive, top...  ...to laws, regulations and requirements governing the insurance industry. Generate referrals...  ...requirements are met and there is compliance with all internal policies and procedures... 
    Minimum wage
    Contract work
    Local area
    Flexible hours
    Night shift

    Oliver Wyman

    Denver, CO
    7 days ago
  •  ...detailed reserve movement analyses Partner with the Liability Product Owner to ensure data integrity and model soundness through governance procedures and user acceptance testing Contribute to VM-20 actuarial assumption setting and testing, including mortality and... 
    Remote work

    VirtualVocations

    Aurora, CO
    8 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Governance Risk & Compliance Analyst. Be the first to apply!