Senior Security Governance Risk & Compliance Analyst
Commerce Co.
- # Security Governance Risk & Compliance AnalystApplyremote type: Hybridlocations: Austin, TXtime type: Full timeposted on: Posted Yesterdayjob requisition id: JR102550# **Welcome to the Agentic Commerce Era**## At Commerce, our mission is to empower businesses to innovate, grow, and thrive with our open, AI-driven commerce ecosystem. As the parent company of BigCommerce, Feedonomics, and Makeswift, we connect the tools and systems that power growth, enabling businesses to unlock the full potential of their data, deliver seamless and personalized experiences across every channel, and adapt swiftly to an ever-changing market. We believe in harnessing AI responsibly to unlock new possibilities, and we’re looking for individuals who use it intentionally to solve problems, accelerate outcomes, and expand what’s possible in their role. Our purpose is to help businesses confidently solve complex commerce challenges so they can build smarter, adapt faster, and grow on their own terms. If you want to be part of a team of bold builders, sharp thinkers, and technical trailblazers who shape the future of commerce, this is the place for you.We're looking for a **Senior Security Governance Risk and Compliance Analyst** to help support our compliance programs and work with our teams to implement risk improvement processes and projects. Commerce is committed to being a leader in Information Security in the e-commerce space. Your skills and your passion for protecting data and ensuring compliance will be a large factor in Commerce’s future success. This role will report into our GRC function and work cross-functionally with Product Security, Legal, Partnerships, Privacy, and Engineering teams.**What you’ll do:*** Function as a frontline representative of Information Security leading by example, being diplomatic yet firm, fair, flexible and consistent in deploying industry standard information security best practices and applicable laws, regulations, and policies.* Using a risk-based framework, manage third party risk assessments—from onboarding due diligence to continuous monitoring—leveraging platforms like OneTrust, SafeBase, or similar* Partner with fraud operations and data science to model and detect threats such as account takeovers, payment abuse, promo fraud, and affiliate misbehavior; understand fraud detection platforms, e.g., e-Hawk, Recorded Future, etc.* Maintain metrics and reporting that tie fraud risk to potential loss or customer impact in real terms.* Demonstrate understanding of BC GRC Office strategic vision, be a self-starter, and responsible for actions promoting this strategic vision.* Provides support and guidance regarding best practice, regulatory, and legal compliance, including PCI, GDPR, ISO 27001, NIST, and SOX.* Assistance in evaluating the design and operating effectiveness of the BC Integrated Secure Controls Framework (BC SCF) built from Industry Standards such as NIST, ISO 27001, PCI DSS around technology controls, including, but not limited to Software Development Lifecycle (SDLC), Logical Security, Data interfaces, availability/redundancy, and Cyber / Info security.* Preparing supporting evidence, documenting test plans which clearly describes the audit procedures performed, results of testing and conclusions reached for various processes.* Creating technology diagrams detailing the systems and their dependencies during the audit process* Assisting with the Department’s data collection and analytics efforts and Internal Audit report preparation.* Assisting in the development and tracking of control recommendations for corrective action/improvement.* Work with Internal Audit leadership to identify and continuously improve departmental practices.* Monitor and demonstrate compliance with organizational policies and practices, as evidenced by strong quality assurance results, and strong performance within standards and related metrics.* Stay abreast of current issues and obtain continuing education and training.* Participate in special projects and perform other duties as requested.* Interact with all levels of management to provide effective risk and control advice, maintaining active communication to enhance risk and control awareness and manage expectations.* Provide data analysis support for ongoing compliance monitoring* Maintain up-to-date knowledge about audit controls and techniques* Utilize innovative ideas and tools to enhance operational effectiveness* Evaluate and recommend improvements to business practices, processes, and controls**Who You Are:*** 5-6 years of relevant experience in a technology environment.* Experience with translating business requirements into project implementation plans and validation, including user acceptance testing.* Knowledge of network-based services, client/server applications, cloud-based and virtualized environments, mobile applications, enterprise systems and infrastructure, network architecture, and security infrastructure.* Passion about process improvement and removing friction from systems* Direct experience with audit and compliance frameworks, e.g., ISO 27001, 2007:2017, PCI, etc.* Background in IT hardware/software concepts and processes used within the business, covering + Core security concepts + Cloud-based services + Windows and Linux operating systems + Open-source ecosystem (databases, applications, etc.)* Experience with auditors and the evidence collection process* Experience with the design and testing of IT security controls in a managed hosting and/or Software-as-a-Service environment* Experience in building relationships across business functions, locations, and technical stakeholders.* Self-direction, attention to detail with a passion to solve practical problems while dealing with a number of variables.* Ability to present ideas/solutions and communicate clearly, concisely, and accurately with others at all levels of the organization.* Experience in reading the culture of a company, adjusting your style and adapting as needed.* Collaborative, upbeat work ethic where you both take ownership and have fun.* Able to meet deliverables and drive your work to completion within specified timelines.* Great verbal and written communication skills.*This is a Hybrid role - Beginning March 1, 2026, employees who live within commuting distance of a Dedicated Office will be expected to be in the office three days per week.*
- J-18808-Ljbffr Commerce Co.
Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Senior Security Governance Risk & Compliance Analyst in Austin, TX vacancy
- Job Description The Sr. Cybersecurity Governance, Risk, and Compliance (GRC) Associate plays a critical role in supporting the organization's GRC program, with a specialized focus on security framework compliance and information security risk management. Reporting to the...SeniorPermanent employmentTemporary workWork at officeFlexible hours
- BigCommerce Pty is seeking a Senior Security Governance Risk and Compliance Analyst based in Austin, TX. In this hybrid role, you will manage risk assessments and lead compliance initiatives while interacting with various teams across the company. Ideal candidates will...Senior
- BigCommerce Pty. is seeking a Senior Security Governance Risk and Compliance Analyst in Austin, TX. This hybrid position involves managing risk assessments and ensuring compliance with industry standards. The ideal candidate will have significant experience in information...SeniorRemote job
- EZCORP Inc is seeking a Senior Compliance Analyst to support the Compliance Management Program in Austin, Texas. The successful candidate will play a critical role in regulatory examination management, monitoring compliance, and overseeing compliance efforts. This position...SeniorRemote job
- EZCORP Services, Inc. in Austin is looking for a Senior Compliance Analyst to enhance their Compliance Management Program. The role involves monitoring compliance, managing regulatory examinations, and recommending corrective actions to maintain compliance standards. The...Senior
- Commerce Inc in Austin is looking for a Senior Security Governance Risk and Compliance Analyst to support compliance programs and implement risk improvement projects. This hybrid role involves managing third-party risk assessments, collaborating with cross-functional teams...Senior
$164.9k - $223.1k
Arm Limited is seeking a GRC Risk Manager in Austin, Texas, to oversee security risk management and lead supply-chain cyber risk assurance. The ideal candidate will have deep expertise in technical risk frameworks like ISO 27001 or NIST and possess strong analytical and...Senior- Corient is seeking a Sr. Cybersecurity Governance, Risk, and Compliance Associate in Austin, Texas. This role plays a critical part in enhancing security frameworks and managing organizational risks. The ideal candidate will have 3-6+ years in cybersecurity GRC, strong...Senior
$88.95k - $150.43k
...commerce, this is the place for you. As a Senior Security GRC Analyst and Internal Security Assessor (ISA),... ...of this program, ensuring that compliance is integrated into our "business as usual... ...specific focus on managing Targeted Risk Analyses (TRAs) and the customized...Senior- ...Role Sonic Healthcare USA is seeking a Senior Compliance Audit Specialist to support and enhance... ...operations Support the annual compliance risk assessment and work plan development... ...as abide by all applicable privacy and security standards. Employees are expected only...SeniorFull timeLocal area
- Iaawg is looking for a Senior Risk & Data Analyst in Austin, Texas. This full-time position allows a hybrid work model, where you'll analyze portfolio performance, develop key performance indicators, and provide data-driven insights for decision-making. With over 5 years...SeniorFull time
- Senior Risk & Data Analyst (Full‑Time, Hybrid, U.S.) Responsibilities Risk Analytics & Portfolio Management (60%) Analyze portfolio performance across products (VSC, GAP, Tire & Wheel, etc.) to identify trends, loss drivers, and profitability opportunities. Develop and...SeniorFull timeH1bWork visaFlexible hours
- A leading security solutions provider in Austin, TX is seeking an Intel Analyst responsible for supporting proactive risk management through intelligence analysis. Key tasks include monitoring threats, developing reports, and collaborating across teams to ensure effective...Remote job
$92.91k - $154.81k
...pursue their financial goals. Job Overview: A Senior Risk Governance and Reporting Technology Analyst reports to the Information Security and Technology Risk department. In this... ..., Enterprise Risk Management, Corporate Compliance, and Audit teams as required Maintain...SeniorFull timeWork from home$107.7k - $199.3k
Position Purpose The Security Compliance Lead Information Risk Analyst is a senior individual contributor role with enterprise-wide responsibility for security governance, compliance execution, audit readiness, and GRC platform leadership. The role operates independently...Full timePart timeWork at officeRemote workFlexible hours- ## Compliance Analyst, Texas Institute for ElectronicsApplylocations: AUSTIN... ...of state and local government, pre-eminent defense electronics... ...capabilities to address national security needs and catalyze domestic... ...Assist in daily IT governance, risk management, and compliance...Ongoing contractLive inWork at officeLocal areaMonday to FridayFlexible hours
$80k - $110k
Governance, Risk and Compliance (GRC) Analyst Location: Austin, Texas. Hybrid - 3 days in office. Overview The Governance, Risk and Compliance (GRC) Analyst will understand security and privacy principles and regulatory compliance for a US business. In this role, you...Work at office$125k
The University of Texas at Austin is seeking a Cybersecurity GRC Analyst to support governance, risk, and compliance for its Controlled Research Program. The role involves maintaining security programs, conducting assessments, and collaborating with IT and research stakeholders...Remote job$80k - $110k
Storyful is seeking a Governance, Risk and Compliance (GRC) Analyst in Austin, Texas. This hybrid role involves supporting and maintaining the Cyber GRC... ...Candidates should have a minimum of 3 years in Cyber Security and familiarity with frameworks like NIST CSF and PCI...$125k
Overview Job Posting Title: Cybersecurity GRC Analyst Department: Information Security Office Location: AUSTIN, TX (This position can be a... ...on the development, maintenance, and execution of governance, risk, and compliance activities that support the university’s Controlled...Work at officeRemote work- Cacheflow is looking for a Senior Security GRC Analyst to serve as the SME for the PCI DSS program. This role involves leading compliance efforts and acting as a technical bridge between various teams and auditors. The ideal candidate will have extensive experience in...Senior
$76k - $100k
...bonterratech.com. About the Role The Bonterra Information Security Risk and Compliance department is looking to hire a Compliance Specialist to... ...exercise good judgement and tact in dealing with Bonterra senior management. ~ Proficient with technology and ability to...Full timeLocal areaSocial Solutions Global
Austin, TX2 days ago- ...Engineering Services Pvt Ltd. is offering a remote position within the Information Security Office at The University of Texas at Austin. This role is crucial for supporting governance, risk, and compliance programs in cybersecurity. You'll work with an intelligent and dedicated...Remote jobWork at office
$143k - $243k
A healthcare solutions organization is seeking a Senior Principal Actuary for a remote position in Austin, Texas. This role is pivotal in providing actuarial direction and creating innovative pricing strategies. The ideal candidate will have at least 10 years of actuarial...SeniorRemote workPrime Therapeutics
Austin, TX1 day ago$125k
...University of Texas at Austin is seeking a Cybersecurity GRC Analyst to enhance their governance, risk, and compliance activities. This role focuses on compliance frameworks such as NIST and CMMC, supporting secure research practices. The ideal candidate should have at...Remote job$80k - $110k
News Corporation is seeking a Governance, Risk and Compliance (GRC) Analyst in Austin, Texas. The role involves compliance support for security and privacy principles and regulatory compliance while developing and maintaining cybersecurity policies. The ideal candidate...$92.5k - $120k
...To support the continued growth of our Risk Advisory for State & Local Government practice, an opportunity has been created for a Senior Associate to join our nationally distributed... ...over operational and regulatory compliance risks, supporting them in the areas of internal...SeniorWork experience placementWork at officeLocal areaRemote workCherry Bekaert
Austin, TX19 hours ago- ## Sr. Compliance AnalystSolicitarlocations: Corporate Remote Texastime type: Tiempo... ...compensation and benefits.Dirección:TexasThe Senior Compliance Analyst plays a critical role in supporting... ...identifying and assessing compliance risks, , overseeing compliance efforts and...SeniorTemporary workWork experience placementRemote work
EZCORP
Austin, TX4 days ago - ...Two Interactive is seeking a Senior Vulnerability Management Advisor... ...over 5 years in Information Security, a deep understanding of... ...this position, you will manage risk, lead remediation efforts, and... ...across teams while ensuring compliance with regulatory standards. Join...Senior
$3,520.33 - $4,360 per month
The Texas Workforce Commission is seeking a Program Specialist III-IV to oversee and implement risk management and continuity programs. This role requires a background in emergency management and offers a salary range of $3,520.33 - $4,360.00 per month. The ideal candidate...Senior
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Security Governance Risk & Compliance Analyst. Be the first to apply!
Related searches
- security analyst remote Austin, TX
- senior information security analyst Austin, TX
- information security compliance analyst Austin, TX
- security analyst intern Austin, TX
- security analyst Austin, TX
- national security analyst Austin, TX
- application security analyst Austin, TX
- IT security analyst Austin, TX
- entry level information security analyst Austin, TX
- cloud security analyst Austin, TX