Paycom · 1 day ago
Sr. IT GRC Analyst - Risk
United States
Full-time
Remote
Senior LevelPaycom is a company that focuses on IT Governance, Risk, and Compliance (GRC). They are seeking a Sr. IT GRC Analyst to maintain and audit information security controls, participate in risk assessments, and assist with audit/compliance activities.
Human ResourcesSoftware
Responsibilities
Perform and peer review security risk assessments for business and technology initiatives such as new vendors, critical vendors, and supporting software by reviewing security questionnaire responses, utilizing web app scanning technology and open-source software scanning technology, reviewing security compliance reports such as ISO27001, SOC 2, CSA, SIG, and more
Provide security recommendations to system and technology owners
Develop and coordinate security awareness programming
Facilitate and recommend updates to IT controls, procedures, and policies
Assess compliance with policies and procedures related to Information Security and regulatory compliance
Supervise and engage in IT SOX, ISO 27001, SOC 1, SOC 2, PCI-DSS, FFIEC, PIPEDA, GDPR and other compliance activities
Define, communicate, and ensure inclusion of data-related business requirements in operational planning and prioritization
Manage an enterprise-wide data governance framework, with a focus on improvement of data quality, lineage and the protection of sensitive data through modifications to organization behavior, policies, standards and processes
Lead risk assessments for projects
Engage in process review and improvement, document as required
Perform additional duties and assignments as requested
Qualification
Required
Experience in IT Governance, Risk, and Compliance (GRC)
Ability to maintain and audit information security controls
Knowledge of applicable standards and local laws and regulations
Experience in conducting risk assessments and third-party risk reviews
Ability to assist with audit/compliance activities
Experience in documenting audit requirements and implementing relevant controls
Experience in performing security risk assessments for business and technology initiatives
Ability to review security questionnaire responses and compliance reports such as ISO27001, SOC 2, CSA, SIG
Ability to provide security recommendations to system and technology owners
Experience in developing and coordinating security awareness programming
Ability to assess compliance with policies and procedures related to Information Security and regulatory compliance
Experience supervising IT SOX, ISO 27001, SOC 1, SOC 2, PCI-DSS, FFIEC, PIPEDA, GDPR compliance activities
Ability to define, communicate, and ensure inclusion of data-related business requirements in operational planning
Experience managing an enterprise-wide data governance framework
Ability to lead risk assessments for projects
Experience in process review and improvement
Company
Paycom
Paycom specializes in Human Capital Management, providing software that simplifies things and reduces costs.
Founded in 1998
5001-10000 employees
H1B Sponsorship
Paycom has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (167)
2024 (166)
2023 (167)
2022 (151)
2021 (112)
2020 (74)
Funding
Current Stage
Public CompanyTotal Funding
unknown2014-04-15IPO
Leadership Team
Chad Richison
President and CEO
Shane Hadlock
Chief Client Officer and Chief Technology Officer
Recent News
The Motley Fool
2026-01-05
The Journal Record
2026-01-03
Business Wire
2025-12-24
Company data provided by crunchbase