IT Risk and Compliance Analyst

Berkeley Research Group

Actively hiring
Washington, DC · New York, NY · Boston, MA · Chicago, IL Posted 10 days ago $90,000$115,000 / year
View original post Log in to save

At a glance

AI generated

TL;DR

The IT Risk and Compliance Analyst role at BRG is a client-facing position reporting to the IT Risk and Compliance Manager within the Legal and Business Unit teams. This senior-level analyst will provide ongoing security advice, assess operational gaps, and maintain Information Security Management Program policies. Daily tasks include coordinating with internal and external auditors, responding to escalated security events, and conducting risk assessments for vendors and business partners across various industries. The ideal candidate should have 3 years of IT security experience, familiarity with ISO27001, SOC2, HIPAA, HITRUST, GDPR, and CCPA, and proficiency in GRC tools. Strong analytical skills and the ability to prioritize tasks in a high-pressure environment are essential for this role that involves frequent travel.

Skills

ISO27001 SOC2 HIPAA HITRUST GDPR CCPA GRC tools DR and BCP program application security network security information security risk management CI/CD Kubernetes AWS Azure Google Cloud Terraform Python SQL PostgreSQL Mariadb Linux Windows Server

What you'll do

  • Provide IT security, risk, and compliance advice to business units.
  • Analyze operational gaps to ensure integrity of processes, controls, and policies.
  • Maintain and update Information Security Program policies and procedures annually.
  • Coordinate information security incident response process documentation and enforcement.
  • Respond to escalated security events and drive the security incident response process.
  • Assist in vendor vetting to ensure compliance with security practices.

What we're looking for

  • 3 years of IT security, compliance, or risk management experience
  • Familiarity with ISO27001, SOC2, HIPAA, HITRUST, GDPR, and CCPA
  • Experience in conducting annual surveillance audits for ISO27001
  • Knowledge of application and network security, information security risks, and industry best practices
  • Ability to prioritize tasks effectively in high-pressure environments
  • Strong written and verbal communication skills
  • Troubleshooting, problem-solving, and analytical skills

Market check

Salary context

This $90,000–$115,000 range sits above 8% of similar postings on FindRole.

Peer median band

$110,000$182,400

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$126,800$170,000

Middle half of comparable postings.

Based on 237 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Berkeley Research Group

Berkeley Research Group is a global consulting firm specializing in expert testimony, disputes and investigations, corporate finance, and performance improvement.

Berkeley Research Group currently has 5 open roles on FindRole.

Listed pay typically runs $125,000–$175,000 across 5 roles with salary data.

Most-posted roles

View all roles at Berkeley Research Group

More like this

Similar roles

IT Governance, Risk, & Compliance Manager

Qualcomm

San Diego, Ca,Us, US 10 days ago $123,200$184,800
ServiceNow AuditBoard SOX ISO_27001 CISA CISM CISSP NIST_CSF COBIT GDPR IT_Governance Risk_Assessment Compliance_Frameworks Third_Party_Risk_Management GRC_Tools Cross_Functional_Collaboration Reporting_and_Communication

IT Business Analysis, AVP

State Street

US 30 days ago $80,000$140,000
SQL Python PostgreSQL BCBS 239 Agile Data Warehouses Data Lakes Risk Data Governance Data Lineage Data Quality Control Concepts Regulatory Reporting CBAP PMI-PBA FRM

IT Analyst

Dow

Remote (Midland (Mi, Usa), US) 17 days ago
SAP Azure ETL REST SOAP OData SSO OAuth SAML Basic Keypairs Windows ActiveDirectory Linux DevSecOps CI/CD PowerShell AzureCLI IaC VisualStudio Git AKS Containers GitHub EntraID
Remote

IT Compliance Manager

Green Dot Corp

Us-Ca California Los Angeles/Orange County Home Office, US 35 days ago $133,300$183,300
AWS Azure GRC platforms Archer LogicGate PCI DSS SOX GLBA FFIEC CI/CD Infrastructure security Technical control testing Cloud environments Compliance dashboards Executive reporting

IT Compliance Manager

Green Dot Corp

Us-Ca California Los Angeles/Orange County Home Office, US 35 days ago $133,300$183,300
AWS Azure GRC platforms Archer LogicGate PCI DSS SOX GLBA FFIEC CI/CD Cloud environments Infrastructure security Technical best practices

Cyber Security Risk Analyst

The Federal Reserve

New York, Ny, US 31 days ago
NIST 800-53 DevSecOps CI/CD Cloud application security Application security testing Agile management Gen AI systems security U.S. Citizenship National Security Clearance