18 grc analyst jobs at 12 companies in Everett, MA

1mo
Save
Mark Applied
Hide
GRC Analyst
Lowell, Massachusetts, United States
$78k-$125k/yr OnsiteFull Time
MACOM
MACOMNASDAQ: MTSI: Designs and manufactures semiconductor products for communications infrastructure.
1+ YOEBachelor's in relevant field (or equivalent), 1–3 years information security/risk/compliance experience, knowledge of security frameworks, strong analytical and communication skills, and willingness to learn ServiceNow GRC.
ServiceNow GRC, NIST, ISO 27001, SOC2, CIS, ISO9001, ISO14001
1w
Save
Mark Applied
Hide
GRC Analyst - Third Party Risk
Boston, Massachusetts, United States
$70k-$110k/yr OnsiteFull Time
WHOOP
WHOOP: Providing wearable health trackers and physiological performance analytics.
2+ YOE2+ years GRC experience, knowledge of ISO 27001, NIST CSF, COSO, SOC 2, PDI-DSS, bachelor’s degree, strong organizational and communication skills.
ISO 27001, NIST CSF, COSO, SOC 2, PDI-DSS
1w
Save
Mark Applied
Hide
GRC Analyst - Third Party Risk
Boston, Massachusetts, United States
$70k-$110k/yr OnsiteFull Time
WHOOP
WHOOP: Wearable technology for personalized health and performance tracking.
2+ YOE2+ years GRC or third‑party risk experience, bachelor’s degree required; knowledge of ISO 27001, NIST CSF, COSO, SOC 2, PCI‑DSS; strong organization, communication, and operational discipline.
ISO 27001, NIST CSF, COSO, SOC 2, PCI-DSS
22h
Save
Mark Applied
Hide
Senior GRC Analyst
Boston, Massachusetts, United States
$130k-$170k/yr OnsiteFull Time
WHOOP
WHOOP: Wearable technology for personalized health and performance tracking.
6+ YOE6+ years in cybersecurity or enterprise risk; experience conducting structured cyber/IT risk assessments, maintaining risk registers, familiarity with security frameworks and AI risk; strong communication and analysis skills.
NIST CSF, ISO 27001, PCI DSS, GDPR, HIPAA, NIST AI RMF, ISO/IEC 42001, FAIR
22h
Save
Mark Applied
Hide
Senior GRC Analyst
Boston, Massachusetts, United States
$130k-$170k/yr OnsiteFull Time
WHOOP
WHOOP: Providing wearable health trackers and physiological performance analytics.
6+ YOE6+ years in cybersecurity or enterprise risk management, experience conducting structured cyber/IT and AI risk assessments, maintaining risk registers, familiarity with NIST/ISO/PCI/GDPR/HIPAA, and strong communication skills.
NIST CSF, ISO 27001, PCI DSS, GDPR, HIPAA, NIST AI RMF, ISO/IEC 42001, FAIR
1mo
Save
Mark Applied
Hide
Senior Cybersecurity Analyst (GRC)
Boston or United States
$90k-$130k/yr RemoteFull Time
Boston Medical Center
Boston Medical Center: Provides specialized medical care and academic healthcare training.
6+ YOE6+ years information security experience focused on governance, risk, and compliance; bachelor’s preferred; certifications such as CISA/CRISC/CISSP preferred; knowledge of NIST CSF 2.0, HIPAA/HITECH; strong data analysis and communication skills.
Microsoft Excel, Microsoft SharePoint, NIST CSF 2.0, HIPAA, HITECH
1mo
Save
Mark Applied
Hide
Senior Security Engineer I
Boston or Seattle
$140k-$165k/yr RemoteFull Time
DigitalOcean
DigitalOceanNew York Stock Exchange: DOCN: Simplifies cloud infrastructure for developers, startups, and SMBs.
5+ YOE5+ years GRC experience with multi-standard programs (ISO 27001/27017/22301), familiarity with SOC 2 and HIPAA, risk assessment and remediation, control design, policy authoring, and cross-functional project management.
1w
Save
Mark Applied
Hide
IT Risk & Compliance Analyst
North Andover or United States
$84k-$94k/yr RemoteFull Time
Watts Water Technologies
Watts Water TechnologiesNYSE: WTS: Manufactures water flow control and water quality products.
3+ YOEBachelor's or equivalent; 3+ years IT compliance/internal audit/GRC experience; working knowledge of ITGCs and SOX; experience with GRC/audit platforms; strong communication and organizational skills.
Optro (AuditBoard), ServiceNow GRC, Archer, MetricStream, Jira, Microsoft Power Automate, SQL, Python, APIs
1mo
Save
Mark Applied
Hide
ETS Risk Analyst II
Johnston, Rhode Island, United States
HybridFull Time
Citizens Financial Group
Citizens Financial GroupNYSE: CFG: Provides retail, commercial, and private banking services to customers.
3+ YOEBachelor's in IT/Cybersecurity/Business required; 3+ years in IT/security/risk/internal audit; familiarity with control frameworks, GRC and ITSM tools; strong communication, analytical, and documentation skills.
Archer, ServiceNow, Jira, Microsoft Excel, Microsoft Word, Microsoft PowerPoint, AWS, Azure, NIST 800-53, NIST Cybersecurity Framework, CRI Profile, COBIT, ITIL
2w
Save
Mark Applied
Hide
Senior Analyst, IT Internal Controls & SOX Compliance
San Francisco or Salt Lake City or Phoenix or Los Angeles or Chicago or Boston or Austin or New York City or Miami or Tampa or Atlanta or Columbus or Boise or San Diego or Minneapolis or Houston or Raleigh or Nashville or Kansas City or Charlotte or Portland or Philadelphia or Dallas or Washington D.C. or Seattle
$113k-$148k/yr RemoteFull Time
Circle
CircleNYSE: CRCL: Digital currency issuer and blockchain financial infrastructure provider.
4+ YOE4+ years Big 4 IT audit/controls experience, Bachelor's in related field, CPA/CISA/CIA/CISSP required; strong SOX/ITGC knowledge, cloud/SaaS/SDLC/IAM experience, ERP/GRC familiarity, and stakeholder communication skills.
Slack, Apple MacOS, Google Workspace, ERP, GRC, AI
22h
Save
Mark Applied
Hide
AI Risk & Compliance Analyst
Boston, Massachusetts, United States
$100k-$140k/yr OnsiteFull Time
WHOOP
WHOOP: Providing wearable health trackers and physiological performance analytics.
6+ YOE6+ years in GRC with experience assessing AI/ML risks, third-party/vendor risk management, policy development, audit support, and mapping controls to industry frameworks; bachelor’s degree preferred.
ISO/IEC 42001, NIST Cybersecurity Framework, NIST AI Risk Management Framework, EU AI Act, GDPR, PCI DSS
22h
Save
Mark Applied
Hide
AI Risk & Compliance Analyst
Boston, Massachusetts, United States
$100k-$140k/yr OnsiteFull Time
WHOOP
WHOOP: Wearable technology for personalized health and performance tracking.
6+ YOE6+ years in GRC with AI/ML risk assessment, third-party risk management, policy development, audit coordination, and mapping controls to standards; bachelor’s degree in related field.
ISO/IEC 42001, NIST Cybersecurity Framework, NIST AI Risk Management Framework, EU AI Act, GDPR, PCI DSS, LLM
1w
Save
Mark Applied
Hide
Principal/Senior IT Risk Analyst
Boston, Massachusetts, United States
$160k-$180k/yr OnsiteFull Time
Berkshire Hathaway Specialty Insurance
Berkshire Hathaway Specialty InsuranceNYSE: BRK.A: Provides commercial property, casualty, and specialty insurance coverages globally.
10+ YOE10+ years in IT risk/audit/GRC, experience with RCSAs/KRIs, vendor risk/SOC reviews, strong writing and communication, knowledge of NIST/COSO/COBIT and US/global regulations; professional certs a plus.
Workiva, AuditBoard, ServiceNow, Drata, Vanta
1mo
Save
Mark Applied
Hide
IT SOX Analyst
Billerica, Massachusetts, United States
HybridFull Time
Quanterix
QuanterixNASDAQ: QTRX: Developing digital immunoassay technology for ultra-sensitive protein detection.
5+ YOEManage IT SOX program, document and test ITGCs, collaborate with IT/Finance/Audit, support remediation and audit requests.
NetSuite, SAP, Oracle, AWS, Azure, LIMS, GRC tools
1mo
Save
Mark Applied
Hide
IT Compliance Analyst
Billerica, Massachusetts, United States
HybridFull Time
Quanterix
QuanterixNASDAQ: QTRX: Developing digital immunoassay technology for ultra-sensitive protein detection.
5+ YOE5+ years IT compliance/risk, SOX/NIST/ISO knowledge; bachelor’s in IS/cybersecurity/accounting or related; strong documentation and audit support skills.
ERP systems, GRC tools, LIMS, cloud platforms (AWS, Azure), SOX, NIST, SOC, ISO
2w
Save
Mark Applied
Hide
Senior Compliance and Risk Analyst
United States or San Francisco or San Jose or New York City or Chicago or Austin or Denver or Boston or Washington or Philadelphia or Portland or Seattle or Miami or California or Alaska or Delaware or Hawaii or Idaho or Iowa or Montana or Nebraska or North Dakota or Rhode Island or South Dakota or West Virginia
$165k-$233k/yr RemoteFull Time
Calendly
Calendly: Scheduling automation platform for managing meetings and appointments.
5+ YOE5+ years in compliance/GRC in a technology/SaaS environment; SOC 2 and ISO 27001 experience; knowledge of NIST, GDPR, HIPAA; experience with compliance automation platforms and UARs; strong project management and communication.
SOC 2, ISO 27001, NIST, GDPR, HIPAA, Drata, Vanta, Tugboat Logic, PCI DSS, FedRAMP
1mo
Save
Mark Applied
Hide
Principal Technology Risk Analyst
Boston or United States
$140k-$150k/yr RemoteFull Time
Fidelity Investments
Fidelity Investments: Provides investment management, retirement planning, and brokerage services.
3+ YOEBachelor's +5 yrs or Master's +3 yrs in IT/IS; experience performing IT audits, risk assessments, and cybersecurity control reviews; expertise with SOC/ISO/NIST frameworks, cloud, DevOps, and related audit tools.
AI, Machine Learning, Snowflake, DevOps, Cloud, GitHub, SonarQube, Jenkins, Artifactory, uDeploy, GRC, SOC 1, SOC 2, SOC 3, AICPA Trust Service Criteria, HiTRUST, ISO 27001, NIST Cybersecurity Framework, COBIT
2d
Save
Mark Applied
Hide
Governance, Risk and Compliance Analyst
Reston or Somerville
$80k-$125k/yr HybridFull Time
Babel Street
Babel Street: AI-powered identity intelligence and risk operations software solutions.
3+ YOEBachelor's degree or equivalent, 3+ years GRC/InfoSec experience, knowledge of NIST CSF, CMMC, Cyber Essentials Plus, SOC 2, ISO/IEC 27001, audit support and risk assessment skills.
NIST Cybersecurity Framework (NIST CSF), CMMC, Cyber Essentials Plus, ISO/IEC 27001, SOC 2