IT GRC Analyst in Houston, Texas - #72297 | VanderHouwen

Description

Job Id: 72297

IT GRC Analyst
Our client is seeking a detail-oriented and analytical IT GRC Analyst to support enterprise governance, risk, and compliance initiatives within a complex, highly regulated environment. This individual will play a key role in strengthening internal controls, supporting audit readiness, and aligning IT practices with industry frameworks. The ideal candidate is proactive, highly organized, and comfortable collaborating across teams to translate risk and compliance requirements into practical, scalable processes.

This role is based in Houston, Texas. Fully remote candidates may be considered.

IT GRC Analyst Responsibilities

• Support the development, implementation, and continuous improvement of IT governance, risk, and compliance programs and controls.
• Align IT general controls with industry frameworks (e.g., NIST, ISO, COSO, ITIL) and support compliance with regulatory requirements such as SOX.
• Perform and support risk assessments, control testing, and ongoing monitoring activities to identify and mitigate potential risks.
• Maintain and update risk registers, track issues, and partner with stakeholders to drive timely remediation efforts.
• Assist with internal and external audit activities, including evidence collection, documentation, and coordination with auditors.
• Conduct routine compliance activities such as user access reviews, policy updates, and control documentation maintenance.
• Track and report on compliance status, risks, and control effectiveness to leadership and relevant stakeholders.
• Partner cross-functionally to develop and enhance policies, procedures, and training related to IT compliance and risk management.

IT GRC Analyst Qualifications

• 5+ years of experience in an IT environment, with at least 2+ years focused on governance, risk, compliance, audit, or security functions.
• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field (or equivalent combination of education and relevant experience).
• Hands-on experience with risk assessments, control development and testing, and compliance program support.
• Working knowledge of industry frameworks and standards such as NIST, ISO, COSO, and ITIL.
• Experience supporting SOX or similar regulatory compliance initiatives within a structured control environment.
• Familiarity with GRC tools and technologies (e.g., risk management platforms, identity governance, privileged access management, or access review tools).
• Strong analytical, problem-solving, and organizational skills with the ability to manage multiple priorities and deadlines.
• Excellent written and verbal communication skills, with the ability to collaborate effectively across technical and non-technical teams.

Salary: $99K-$119K/year. (DOE)

Benefits
Benefits are available to eligible full-time employees and include coverage for medical, dental, vision, life insurance, short and long term disability, and matching 401k.

Meet VanderHouwen
What kind of recruiter do you see yourself working with? One who prioritizes your best interest, no matter what? VanderHouwen does, and we’re in it for the long game! Our recruiters focus on YOU, building meaningful, long-term relationships while developing a deep understanding of companies’ staffing needs and workplace cultures. This approach helps us find an ideal job match that aligns with your unique career aspirations and goals.

VanderHouwen is an award-winning, Women & Diversity-Owned, WBENC certified professional staffing firm. Founded in 1987, VanderHouwen places experienced professionals across the nation! Our recruitment teams specialize in either Technology and IT, Engineering, Human Resources, or Accounting and Finance career markets. Partner with us to land your next exciting career!

VanderHouwen is an Equal Opportunity Employer and participates in E-Verify. VanderHouwen does not discriminate based on race, color, religion, sex, national origin, age, disability, or any other characteristic protected by applicable local, state, or federal civil rights laws.

#LI-Hybrid