Senior Governance & Risk Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

ZS · 1 day ago

Senior Governance & Risk Analyst

positionChicago, IL
timeFull-time
remoteHybrid
seniorityMid, Senior Level
date4+ years exp

ZS is a management consulting and technology firm focused on improving life through data, science, and technology. The Senior Governance & Risk Analyst will perform comprehensive risk assessments, manage vendor risk evaluations, and ensure compliance with regulatory standards to maintain the security and stability of the organization's infrastructure.

ConsultingManagement ConsultingMarketing
check
H1B Sponsor Likelynote

Responsibilities

Perform assessments for vendors, processes, and projects to identify security gaps and recommend controls
Evaluate risks across IT systems, applications, infrastructure, and third-party engagements
Document assessment findings with clear rationale and actionable recommendations
Perform vendor risk assessments to evaluate third-party security posture, document findings, and recommend mitigation strategies aligned with organizational standards
Maintain and update the risk register, ensuring accurate classification, ownership mapping, and closure tracking across all active and draft risks
Collaborate with internal teams (e.g., security, legal, procurement) and external stakeholders to ensure risk documentation is complete, validated, and aligned with business priorities
Conduct periodic risk hygiene activities, including archival of outdated risks, evidence collection, and exception tracking
Ensure all risk-related documentation is clear, complete, and accessible for stakeholders, supporting decision-making and compliance readiness
Apply knowledge of regulatory standards (e.g., ISO, NIST, GDPR) to assess and document compliance
Support the implementation of security policies and control frameworks across business functions
Monitor control effectiveness and suggest improvements where needed
Prepare risk reports with summaries of findings, impact analysis, and mitigation plans
Share updates on risk trends, exceptions, and closure progress on a regular cadence
Communicate technical risk concepts in a clear, accessible format for non-technical audiences

Qualification

IT risk managementRisk assessment methodologiesVendor risk managementRegulatory standards knowledgeRisk assessment toolsCertifications CRISCCertifications CISSPCertifications CISMAnalytical skillsCommunication skillsOrganizational skillsProblem-solving skills

Required

Bachelor's degree in Computer Science, Information Systems, or a related field (master's degree is a plus)
Minimum of 4-6 of years' experience in IT risk management, IT governance or related field
Strong understanding and knowledge of IT risk assessment methodologies, frameworks industry best practices and regulatory requirements (GDPR, HIPAA, PCI DSS)
Strong experience with vendor risk management and security risk assessments
High proficiency in using risk assessment tools and technologies
Excellent analytical and problem-solving skills
Strong written and verbal communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical audiences
Strong organizational and time management skills, with the ability to manage multiple priorities and deadlines
Professional appearance and demeanor, with ability to exercise good judgment and discretion
Proven ability to work creatively and analytically in a problem-solving environment

Preferred

Relevant certifications such as Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are preferred, ISO 27001

Benefits

Health and well-being
Financial planning
Annual leave
Personal growth and professional development
Robust skills development programs
Multiple career progression options
Internal mobility paths
Collaborative culture

Company

ZS

twittertwittertwitter
Glassdoor3.7
company-logo
ZS is a management consulting and technology firm that partners with companies to improve life and how we live it.
dateFounded in 1983
location
Evanston, Illinois, USA
people-size10001+ employees
web-link
https://www.zs.com/

H1B Sponsorship

ZS has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (351)
2024 (297)
2023 (251)
2022 (440)
2021 (292)
2020 (164)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Arun Shastri
Principal
linkedin
leader-logo
Victoria L Summers
Principal
linkedin

Recent News

GlobeNewswire
ZS recognized as a Leader in the IDC MarketScape analyst report for HCP Engagement
2025-12-30
PR Newswire
ZS to introduce ZAIDYN® intelligence into Agentforce Life Sciences
2025-12-11
PR Newswire
ZS acquires Torrent Consulting to fuel Salesforce's healthcare, life sciences AI solutions
2025-12-08
Company data provided by crunchbase