Governance, Risk, and Compliance Analyst
Nabla Infotech LLC
Hi All,
Hiring: GOVERNANCE, RISK, AND COMPLIANCE ANALYST | PHX, AZ
Dive into the details below, and if it's a match, send your resume to ***email_hidden***
Job Summary
GOVERNANCE, RISK, AND COMPLIANCE ANALYST
Location: PHX, AZ - Local Prefer
Required Skills
Skill Type Skill Name
Skill: NIST 800-53R5 (Must have)
Skill : Risk Management Framework (RMF)
Skill : Windows/Unix experience
Preferred Skills
Skill: Project Management experience
Skill: CISSP, CCSP, GSTRT, GSNA, or CAP certification
Job Summary
This position will work on the Governance Risk and Compliance (GRC) Team to communicate and engage with business units to develop a strong understanding of their reporting, data, and product needs. The team member will work with other personnel across departments to define requirements for projects, identify data dependencies and relationships to develop logical and physical data models, data flows and system activity diagrams, and write specifications for managing enterprise information policies. The team member will help develop plans and materials to support user adoption, training, and customer service, working through direct and regular contact with users from other divisions, programs, and service units to provide regular insight and guidance in prioritizing enhancements for the data systems. The team member will also support technical project managers to ensure that all aspects of the information analysis and requirements gathering process are completed with the highest degree of accuracy and quality, which includes developing and socializing key project artifacts.
The Client strives for a work culture that affords employees flexibility, autonomy, and trust. Across our many agencies, boards, commissions, many State employees participate in Remote Work Program and are able to work remotely in their homes, in offices, and in hoteling spaces. All work, including remote work, should be performed within Arizona unless an exception is properly authorized in advance.
Job Duties
- Perform risk assessments, audit reviews, generate findings reports, and make appropriate recommendations for improvement and track outcomes from those activities for DES reporting requirements. Develop and formulate comprehensive reports detailing the findings, areas of non-compliance, required POA&Ms (Plan of Action and Milestones), environmental observations, and incident reports.
- Review, update, and manage security related audit plans, security plans and risk plan documentation for accuracy and consistency, proactively solves problems.
- Evaluate data and formulate comprehensive reports detailing the findings, areas of non-compliance, required action plans, and environmental observations. Generates incident reports and investigates suspicious network activity.
- Preparing audit documentation that supports audit results, drafting and editing audit findings to adhere to the standards and the agency's writing style.
- Research agency and industry IT security practices standards, best practices, laws and regulations, and other applicable resources, ensures compliance with standards
Knowledge, Skills & Abilities (Not incompassing)
- Knowledge of security principles, policies, and procedures, and be able to develop effective security policies.
- Knowledge of Information Security Risk Management.
- Knowledge of laws, regulations, policies, principles, and ethics as they relate to cybersecurity and privacy. (Required: NIST 800-53 R5, IRS Pub1075, IPAA/HITRUST, CJIS and MARS-E)
- Expert knowledge of internal auditing, internal controls, and risk management practices and methods.
- Knowledge of Selection/Approval, Implementation, and Assessment/Audit of Security and Privacy Controls.
- Knowledge of Risk Management Framework (RMF) requirements.
- Knowledge of Authorization/Approval of Information Systems.
- Knowledge in conducting audits or reviews of technical systems.
- Knowledge in comprehensive understanding of internal control environments within the IT function.
- Knowledge in multiple technology domains including aspects of Windows, Unix and/or database administration, software development and networking.
- Knowledge in identifying cybersecurity and privacy issues that stem from connections with internal and external customers and partner organizations.
- Ability to produce high quality work products for both the IT groups and Senior Management.
- Ability to perform excellent interpersonal, written and oral communication skills.
- Ability to assess, manage, and improve security policies and procedures.
- Ability to work collaboratively in teams and across organizations.
- Ability to synthesize feedback and adjust plans accordingly, build strong relationships inside and outside the organization and manage large teams.
- Ability to ensure security practices are followed throughout all phases of the life cycle of every aspect of business and IT processes.
- Ability to develop policy, plans, and strategy in compliance with laws, regulations,
- policies, and standards in support of organizational cyber activities.
- Ability to exercise judgment when policies are not well-defined.
- Ability to ensure information security management processes are integrated with strategic and operational planning processes.
- Ability to ensure that senior officials within the organization provide information security for the information and systems that support the operations and assets under their control.
- Ability to understand technology, management, and leadership issues related to organization processes and problem solving.
- Ability to understand the basic concepts and issues related to cyber and its organizational impact.Develop plans and materials to support user adoption, training, and customer service.
- Ability to work collaboratively in teams and across organizations.
- Develop plans and materials to support user adoption, training, and customer service.
- Work directly with users from other divisions, programs, and service units to provide insight and guidance.
- Identify risks and suggest improvements to information systems and processes.
- Support technical project managers to fulfill information analysis requirements with the highest degree of accuracy and quality.
- Develop and maintain key project artifacts.
- Governance, Risk & Compliance (GRC) Analyst | Information Security | Phoenix AZ Hybrid | Arizona State Agency | Contract to Hire Contract or Full time | SunSoft Online | United States Posted On 06/18/2026 Job Information Job Opening ID 2912 Location Phoenix AZ Client...SuggestedFull timeContract workLocal areaVisa sponsorship
- ...Job Title: Governance, Risk, and Compliance Analyst (GRC) Location: Phoenix - Hybrid (within a one hour commute) Due to Government restrictions this position is open only to US citizens and Green Card Holders. No C2C or third parties will be considered. Our client is...Suggested
- Responsibilities Perform risk assessments and audit reviews; Generate findings reports and track outcomes Review and manage security... ...IT security standards, laws, and regulations to ensure compliance Requirements NIST 800-53 R5 — must have Risk Management Framework...SuggestedLocal areaVisa sponsorship
- Access Data Consulting Corporation seeks a Governance, Risk, and Compliance Analyst to join their security team in a hybrid work environment in Phoenix. The role involves ensuring compliance with security regulations while bridging technical infrastructure and regulatory...Suggested
- Jobtailor seeks a skilled Fraud Risk professional to oversee ERM across all business lines and delivery channels. You will develop... ...support first-line Fraud Operations, track issues, and contribute to governance documentation. Required are a Bachelor’s degree in a related...Suggested
$63.59k - $121.53k
...economic, industry trends, tax law changes, estate issues, retirement risks, and other threats to an effective retirement income plan, as... ..., monitored, and controlled in accordance with risk and compliance policies and procedures. What you have: ~ High School Diploma...H1bWork at officeRemote workRelocation packageFlexible hours$20 - $22 per hour
...A leading compliance recruitment firm is seeking an entry-level Senior Technical Recruiter in Phoenix, AZ. This position is perfect for... ...Responsibilities include conducting research, analyzing compliance risks, and collaborating with internal teams. Strong attention to...Contract work- Responsibilities Partners with their assigned Line of Business, other Risk/Compliance/Audit (RCA) professionals, and RCA Managers Create, implement, maintain, review or oversee an effective risk management framework Participates in projects and/or activities that ensure...Work experience placementWork at officeLocal area
- ...Sr. GRC Analyst, Risk Management Under the direction of and in collaboration with the GRC... ...from a static document into a dynamic governance instrument one that delivers a clear, current... ...with comprehensive reports of compliance-focused activities and outcomes, as requested...For contractorsImmediate startFlexible hours
- ...with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a Risk focused... ...details on the security practices and compliance levels for each third-party being... ...-level agreements (SLAs), and AI governance Documents and communicates all relevant...For contractorsImmediate startFlexible hours
$78.9k - $123.3k
...seeking a detail-oriented cybersecurity compliance professional to support system authorization... ...Plan of Action and Milestones (POA&Ms) Risk Assessments Continuous Monitoring... ...Substitutions Substitutions are subject to government customer review and approval. Mid to senior...Permanent employmentFull timePart timeWork at officeLocal areaRemote work$69.6k - $90.09k
...Job Description Position: Trade Compliance Specialist - International Logistics\n Job... ...Compliance teams. \n \n \n Data Governance, Reporting & Analytics \n \n \n Maintain... ...program health, profitability, and risk exposure. \n \n Partner with warehouse...Hourly payPermanent employmentFull timeTemporary workWork experience placementWork at officeLocal areaWorldwide2 days per week- Jobtailor is seeking a Security Risk Analyst in the Phoenix area to perform risk assessments, audit reviews, and manage security plans.... ...will generate findings reports, track remediation, and ensure compliance with NIST RMF controls. The role requires hands-on experience...Local areaVisa sponsorship
- A large enterprise organization is seeking a GRC Analyst to support a high-visibility security initiative in an onsite role... ...Phoenix, AZ. This is a contract position focused on governance, risk, and compliance activities across technology projects, with exposure to security...Contract workWork at office
- Gilder Search Group is looking for a Sr. GRC Analyst to manage Third-Party & Human Risk while ensuring risks are identified and treated satisfactorily. The role requires 6-8 years in risk assessment, with a bachelor's degree and required certifications expected. You'll...Flexible hours
- Sky Mavis seeks a Sr. GRC Analyst in Phoenix, AZ, to manage Third-Party and Human Risk Management. This analytical role involves vendor risk assessment, security awareness training, and compliance evaluation, ensuring holistic risk management. Candidates should have significant...
$46.51 per hour
SunSoft Online is looking for a Governance, Risk & Compliance (GRC) Analyst to join an Arizona state agency's Information Security team. The role requires performing risk assessments, conducting audit reviews, and ensuring compliance with IT security standards. This hybrid...Contract workLocal area- Humana is seeking a Senior Professional for Risk and Compliance in Phoenix, AZ to oversee risks associated with Medicaid programs and ensure adherence to MHPAEA regulations. Responsibilities include risk management strategy development, conducting assessments, and collaborating...Remote job
- ...Summary of Position: The Compliance and Risk Specialist will work with clinical, business, and support functions to ensure compliance... ...experience and/or training in risk, compliance, and/or regulatory governance, including conducting internal audits, risk assessments,...Work at office
- Kelly Services is looking for a GRC Analyst to enhance governance and compliance initiatives for a key security project based in downtown Phoenix, AZ. The contract role involves overseeing a project risk register, ensuring all documentation is audit-ready, and collaborating...Contract work
- Motion Recruitment Partners LLC is seeking a GRC Analyst for a contract position in downtown Phoenix, AZ. This role involves ownership of governance, risk, and compliance activities on technology projects, ensuring comprehensive tracking and audit readiness. The ideal candidate...Contract work
- ...Responsibilities Manage the compliance inbox by reviewing, prioritizing, and responding to employee inquiries related to policies, procedures... .... Triage incoming questions and route complex or high-risk issues to appropriate compliance, legal, or privacy personnel....
$70k - $90k
CopperPoint has an exciting opportunity for a Compliance Specialist. In this role, you'll help develop and administer an effective regulatory... ...compliance while partnering with internal teams to identify risks, implement solutions, and promote regulatory best practices....Hourly payFull timeTemporary workCasual workLocal areaFlexible hours- Jobtailor in the United States (Arizona) seeks a seasoned Risk/Compliance professional to partner with the Line of Business, RCA teams, and management to build and maintain an effective risk management framework. You will drive initiatives to ensure compliance with federal...Local area
- Circle-the-Cit in Phoenix, Arizona is seeking a Compliance and Risk Specialist to ensure compliance with laws and regulations. The role involves compiling and analyzing data, conducting risk assessments, and collaborating with departments to maintain regulatory standards...Work at office
$55k - $70k
KPA is looking for an EHS Risk Management Consultant based in Phoenix, AZ, who will engage with clients to enhance safety practices. This role emphasizes building client relationships, understanding industry regulations, and conducting field audits. The ideal candidate...Remote job- ...colleagues, friends, and family. WHAT WE DO Our Security, Risk and Compliance consultants work with clients at all levels of the organization... ...solutions Work or projects with military or federal government agencies in Risk, Compliance or Information Security / Cyber...Permanent employment
- An established industry player is seeking a Risk Compliance Consultant to join their dynamic team in Phoenix. This role involves collaborating with clients at all organizational levels to deliver strategic initiatives focused on compliance, risk management, and information...
- A financial institution in Phoenix is seeking a Team Lead Business Analyst. The successful candidate will oversee project teams in Business Data Governance to ensure compliance with regulatory reporting regulations. Key responsibilities include leading data quality initiatives...
- ...As a Senior Trade Compliance Analyst - Reconciliation here at Honeywell Aerospace, you will have a significant impact on the company's global... ...compliance policies and procedures, you will contribute to minimizing risks and avoiding penalties related to import violations. In this...Permanent employmentTemporary workFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Governance, Risk, and Compliance Analyst. Be the first to apply!
- senior quantitative risk analyst Phoenix, AZ
- it risk analyst Phoenix, AZ
- risk consultant Phoenix, AZ
- operational risk consultant Phoenix, AZ
- third party risk analyst Phoenix, AZ
- risk analyst Phoenix, AZ
- risk officer Phoenix, AZ
- governance risk & compliance analyst Phoenix, AZ
- risk compliance officer Phoenix, AZ
- operational risk specialist Phoenix, AZ


