Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

IT Risk and Compliance Analyst

$90k - $115k

BRG

Job Summary IT Risk and Compliance Analyst position is a highly visible, client‑facing role that works closely with Legal and Business Unit stakeholders and reports to the IT Risk and Compliance Manager. This role is responsible for evaluating, assessing, and monitoring the firm’s risk and compliance with applicable information security standards and frameworks, industry best practices, and applicable laws and regulations. It also coordinates and maintains the Information Security Management Program and implements security policy objectives aligned with business objectives. Reporting Relationships IT Risk and Compliance Manager Key Contacts Works closely with the Legal and Business Unit stakeholders. Works with clients in response to security assessments and due diligence questionnaires covering Healthcare, Financial Services, Construction, Government Contracts, Insurance, Real Estate, and more. Works in conjunction with the IT Security and Infrastructure Team. Major Responsibilities Provide IT security, risk, and compliance advice to business units on an ongoing basis. Analyze and address gaps in operations to ensure integrity of processes, controls, and policies. Assist in maintaining and updating Information Security Program policies and procedures, including yearly reviews to ensure documentation is current. Provide governance for participation in the information security incident response process by ensuring it is followed and documented. Respond to escalated security events and drive the security incident response process. Participate in the evaluation, development and implementation of security standards, procedures and guidelines for multiple platforms and diverse system environments. Work with internal and external auditors to demonstrate and provide evidence for controls that are in place; may conduct additional testing to validate remediation. Complete client security questionnaires and work with business units to assist with RFI responses related to IT security. Assist in vendor vetting to ensure vendors, business partners or suppliers use the same or higher security practices. Assist in conducting risk assessments and annual reviews for any new or current vendors, partners, or suppliers. Assist with complex security assessments that require analytical and technical skills across a broad range of IT topics (Identity and Access Management, Security Architecture, Physical and Environmental, etc.). Assist with evaluating, testing, documenting, and maintaining the firmwide DR and BCP policies, processes, and standards. Assist with Security Awareness Training program initiatives related to phishing campaigns and coordinate with HR to deliver ongoing employee training. Requirements Associate Degree or equivalent work experience. 3 years of experience in two or more major information technology functions (infrastructure, operations, datacenter, application support, etc.). 3 years of IT security, IT compliance, or IT risk management experience desired. 3 years of experience involving ISO27001 annual surveillance audits and full recertification audits. Familiarity with industry frameworks and standards such as SOC2, HIPAA, HITRUST is a plus. Familiarity with GDPR and CCPA. Familiarity using GRC tools. Knowledge of application and network security, information security risk, and industry best practice on managing risk. Experience with building, executing, and maintaining DR and BCP program. Ability to effectively prioritize and execute tasks in a high‑pressure environment. Excellent written and verbal communication skills and time‑management skills. Strong troubleshooting, problem‑solving and analytical skills. Position may require traveling for short periods (up to 5 working days, on rare occasions beyond 5 days); all travel expenses will be reimbursed. Compensation Salary Range: $90,000 – $115,000 Additional Information Candidate must be able to submit verification of legal right to work in the U.S. without company sponsorship. Equal Opportunity Employer BRG is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, religion, color, sex, gender, national origin, age, United States military veteran status, ancestry, sexual orientation, marital status, family structure, medical condition, veteran status, or mental or physical disability, so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. #J-18808-Ljbffr BRG

Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the IT Risk and Compliance Analyst in Boston, MA vacancy
  • Draper Labs in Cambridge, MA is seeking a Cybersecurity Risk Analyst to join their Cybersecurity Risk Management team. The analyst will focus on compliance efforts, applying regulatory requirements including DFARS and CMMC to unclassified computing environments. This role... 
    Suggested

    Draper Labs

    Cambridge, MA
    4 days ago
  • $82.3k - $220k

    The Charles Stark Draper Laboratory, Inc. seeks a Cybersecurity Risk Analyst in Cambridge, MA. This role focuses on managing unclassified information system risk and compliance with contractual and regulatory requirements, including DFARS and CMMC. The ideal candidate... 
    Suggested
    Flexible hours

    The Charles Stark Draper Laboratory, Inc.

    Cambridge, MA
    3 days ago
  • Draper is seeking a Cybersecurity Risk Analyst to join their Cybersecurity Risk Management team in Cambridge, Massachusetts. This role...  ...requirements to unclassified computing environments and leading CMMC compliance efforts. The ideal candidate will have a Bachelor's degree in... 
    Suggested
    Local area

    Draper

    Cambridge, MA
    4 days ago
  • $70k - $80k

     ...As a GRC Cybersecurity Analyst (CA), you will play a pivotal role securing our clients...  ...cybersecurity leadership in Governance, Risk, and Compliance (GRC) directly to our clients. You will...  ...remediator, technical auditor, IT administrator with security responsibilities... 
    Suggested
    Full time
    Work at office

    Fractional CISO

    Newton, MA
    3 days ago
  • $78.9k - $123.3k

    Position Overview We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous...  ...Assessment Reports (SARs) Plan of Action and Milestones (POA&Ms) Risk Assessments Continuous Monitoring documentation Security-... 
    Suggested
    Permanent employment
    Full time
    Part time
    Work at office
    Local area
    Remote work

    Noblis

    Boston, MA
    2 days ago
  •  ...Overview The IT Compliance Analyst will play a critical role in supporting Veson Nautical’s comprehensive compliance program across multiple...  ...assist in maintaining compliance certifications, conducting risk assessments, managing audit processes, and ensuring adherence... 

    Veson Nautical

    Boston, MA
    2 days ago
  • $76.34k - $107.82k

     ...Governance, Risk and Compliance Analyst About the Opportunity Job Summary The Governance, Risk, and Compliance (GRC) Analyst supports compliance and governance initiatives for both government and higher education environments. Core responsibilities include implementing... 
    Work experience placement
    Work at office
    3 days per week

    Northeastern University

    Boston, MA
    3 days ago
  • $25 - $30 per hour

     ...Compliance Reporting Analyst We are currently seeking candidates for a Compliance Reporting Analyst opportunity with a highly successful Investment Management firm located in Boston, MA. The Compliance Reporting Analyst will work closely with the Compliance Reporting... 
    Contract work
    Immediate start
    Remote work
    2 days per week

    Daley and Associates

    Boston, MA
    5 days ago
  • The CIP Group in Cambridge is seeking a Benefit Analyst to manage and analyze employee benefits programs. The ideal candidate will be...  ..., data analysis, and communication with employees, ensuring compliance with regulations. This role requires a strong knowledge of employee... 

    The CIP Group

    Cambridge, MA
    2 days ago
  • $200k - $250k

     ...s OneStudyTeam. We are seeking a Senior Security Compliance Analyst with expertise in Governance, Risk, and Compliance (GRC) to support and enhance our security...  ...to leadership. Work closely with legal, security, IT, and business teams to align compliance requirements... 
    Remote work
    Visa sponsorship
    Work visa

    OneStudyTeam

    Boston, MA
    4 days ago
  • $130k - $170k

     ...RESPONSIBILITIES: Lead cyber and technology risk assessments across systems, cloud...  ...Security Engineering, Product Security, Legal, IT, and business teams to evaluate new...  ...working with engineering, architecture, legal, compliance, and business stakeholders. ~... 
    Full time
    Work at office
    Relocation

    Whoop

    Boston, MA
    13 days ago
  • Yoh Services LLC is seeking a Lead Compliance Systems/Data Analyst to work remotely. This position focuses on ensuring accurate data for compliance monitoring and regulatory requirements, working closely with compliance and technology teams. A successful candidate will... 
    Remote job

    Yoh Services LLC

    Boston, MA
    3 days ago
  • $75 per hour

     ...re looking for a hands‑on ServiceNow GRC Analyst to join a growing Security organization and...  ...leads to document, validate, and track compliance—while intentionally excluding physical security...  ...of regulatory environments or risk frameworks is a plus Prior experience documenting... 

    Insight Global

    Boston, MA
    2 days ago
  •  ...Title: GRC Analyst Location MassDOT, 10 Park Plaza, Boston, MA 02116...  ...Skill Set - disaster recovery, IT, Hours / Shift: Monday -Friday...  ...Information Security Governance, Risk and Compliance (GRC) Analyst The Massachusetts Department... 
    For contractors
    Work at office
    Remote work
    Monday to Friday
    Flexible hours
    Shift work

    3B Staffing LLC

    Boston, MA
    5 days ago
  • $60.5k - $104.5k

     ...What is the opportunity? As a Senior Marketing Compliance Analyst, you will play a critical role in supporting the firm's Institutional and...  ...Associate Director's oversight. Identify and escalation high‑risk or ambiguous compliance matters to the Associate Director for... 
    Flexible hours

    RBC Capital Markets, LLC

    Boston, MA
    3 days ago
  • $69k - $115k

    The Treasury Compliance Analyst serves as an independent control function within Treasury’s Second Line of Defense, responsible for preventing...  ...legal, regulatory, operational, financial, and strategic risks across Treasury activities. This role supports a strong culture... 
    Full time
    Local area
    Relocation package

    American Family Insurance

    Boston, MA
    3 days ago
  • Northeastern University is hiring a Governance, Risk and Compliance Analyst in Boston. This hybrid role involves supporting compliance initiatives and NIST frameworks in government and higher education environments. The ideal candidate will have a Bachelor's degree, 2-4... 

    Northeastern University

    Boston, MA
    4 days ago
  • $60k - $90k

    As a GRC Analyst, Operations & Risk, you will support the WHOOP Governance, Risk, and Compliance program by helping manage GRC intake, coordinate third-party risk activities, strengthen...  ...with Security, Legal, Privacy, Procurement, IT, Finance, and business owners Assist with... 
    Full time
    Work at office
    Relocation

    WHOOP

    Boston, MA
    2 days ago
  • We are seeking a Product Certification / Compliance Specialist to join the Product Compliance team in North Andover, MA. This hybrid role...  ...teams on certification pathways, test requirements, regulatory risks, and compliance strategies. Review engineering changes, drawings... 
    For contractors
    Work at office
    Remote work

    BrightHire Search Partners

    Boston, MA
    5 days ago
  • Regulatory Compliance Consultant, ETX Governance, Risk & Compliance Team Full-Time, Boston/Springfield/New York The Opportunity As a Regulatory Compliance Consultant, you will play a crucial role in implementing the regulatory compliance framework. This will ensure adherence... 
    Full time
    Temporary work

    MassMutual

    Boston, MA
    3 days ago
  • $22 - $24 per hour

     ...to thrive. What You'll Do This is an amazing opportunity for a Compliance Associate to join the Regional Compliance Team at BCG, working...  ...team. The NAMR Regional compliance function forms part of BCG's Risk Management and Global Compliance team. The Global Compliance... 
    Hourly pay
    For contractors
    Work at office
    Local area

    The Boston Consulting Group GmbH

    Boston, MA
    3 days ago
  • £45k per year

     ...comfortable taking ownership of regulatory compliance under scrutiny. We will support...  ...working closely with operational teams, analysts, and regulatorManage abstraction licence...  ...enhanced modelling and analysis for high-risk ("hot") licence reviewsMaintain accurate... 
    Full time
    Flexible hours

    Anglian-Water-5

    Cambridge, MA
    2 days ago
  • LIS Solutions is seeking a Junior Compliance Officer to support the Department of Homeland Security, Immigration and Customs Enforcement in Boston. The role involves inputting and evaluating data, performing audits, and conducting research. Candidates must be detail-oriented... 
    Work at office

    LIS Solutions

    Boston, MA
    3 days ago
  • $75 per hour

    Kforce has a client that is seeking an Audit/Compliance Analyst IV in Boston, MA. Duties: * Review and evaluate transactions or requests to...  ...compliance, or a related field * Experience supporting regulatory, risk, or compliance functions within a corporate or financial... 
    Contract work
    Work at office
    Boston, MA
    8 days ago
  • $95k - $115k

    Risk And Compliance Specialist Risk & Compliance Specialist | Watertown, MA | Remote Are you looking for a challenging and rewarding career with a vibrant and growing company? If you have exceptional communication, research, writing, problem solving and collaboration skills... 
    Work at office
    Remote work
    Flexible hours

    VHB

    Watertown, MA
    4 days ago
  • $95k - $115k

    VHB is seeking a Risk & Compliance Specialist in Watertown, MA with flexibility for remote work. The role involves collaboration with the Deputy General Counsel and requires strong communication and analytical skills along with a Bachelor's degree and preferably a JD. This... 
    Remote job

    VHB

    Boston, MA
    2 days ago
  • Vance Airscoop is looking for a Senior Research and Policy Analyst in Boston, Massachusetts. The successful candidate will conduct advanced policy research and regulatory analysis to support healthcare initiatives, monitor policy developments, and provide actionable insights... 
    Full time

    Vance Airscoop

    Boston, MA
    2 days ago
  • $134k - $348.5k

     ...landscapes, enhancing their internal controls, and mitigating risks effectively. Within our Assurance practice, you will focus on confirming...  ...to regulatory requirements and providing strategic guidance on compliance strategies. As a Director, you will set the strategic direction... 
    H1b

    PRICE WATERHOUSE COOPERS

    Boston, MA
    4 days ago
  • $134k - $348.5k

     ...regulatory landscapes, enhancing internal controls and mitigating risks. Within our Assurance practice, you will confirm adherence to regulatory requirements and provide strategic guidance on compliance strategies. As a Director, you will set the strategic direction, lead... 

    PwC South Africa

    Boston, MA
    3 days ago
  •  ...graduate for a role in asset management and fund operations. The position offers mentorship and exposure to financial reporting, compliance monitoring, and board-level materials. Ideal candidates should have a Bachelor’s degree in Finance or Accounting together with strong... 

    Natixis Investment Managers

    Boston, MA
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to IT Risk and Compliance Analyst. Be the first to apply!