WM · 17 hours ago
Senior Analyst, IT GRC
800 CAPITOL ST STE 3000, HOUSTON, TX, 77002, US
Full-time
Hybrid
Senior Level
5+ years expWaste Management (WM), a Fortune 250 company, is the leading provider of comprehensive waste and environmental services in North America. The Sr. IT GRC Analyst supports governance, risk, and compliance frameworks for Digital/IT, focusing on advancing the Technology Risk program and collaborating with stakeholders to ensure strong security controls.
EnergyEnvironmental EngineeringRecyclingSustainabilityWaste Management
Responsibilities
Drive risk identification, assessment, and mitigation of cybersecurity, technology, and data risks while staying up-to-date on changes in regulations, best practices, emerging technologies, and company-specific M&A activity and strategy that could impact the organization's IT governance, risk, and compliance posture
Drive company-wide implementation and adoption of continuous monitoring technology and tools to improve overall adequacy, quality and efficacy of controls
Create and maintain policies and standards, in collaboration with stakeholders and drive company-wide implementation and adoption
Evaluate and support enterprise compliance against various regulatory requirements such as SOX, PCI, GDPR, as well as company policies. Provide reporting to leadership on issues identified, ongoing mitigation efforts and timing to execute, and formalize management risk acceptance where applicable
Promote a culture of cybersecurity awareness across the organization through risk assessments, monthly phishing and security training and awareness campaigns, giving leadership visibility into the effectiveness of training programs
Qualification
Required
Bachelor's degree (accredited) in Computer Science, MIS, Business Administration or similar area of study, or in lieu of degree, High School Diploma or GED (accredited) and 4 years or relevant work experience
Five years of relevant work experience (in addition to education requirement)
Must possess one of the following or will obtain one within the next 12 months: Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Security Control (CRISC), Certified Information Security Manager (CISM)
Advanced knowledge or skills in one or more of the following is required: Experience in the areas of change control, problem management, incident management troubleshooting security solutions
Technical understanding and awareness to security best practices to be implemented for modern systems such as Oracle ERP, AWS, and other agentic/AI/ML solutions
Ability to produce clear and actionable security reports and dashboards for stakeholders
Strong verbal and written communication skills to work with cross-functional teams
Preferred
Other professional certifications desired include: CCSP, CISA
Benefits
Medical
Dental
Vision
Life Insurance
Short Term Disability
Stock Purchase Plan
Company match on 401K
Paid Vacation
Holidays
Personal Days
Company
WM is North America's leading provider of integrated environmental solutions.
10001+ employees
H1B Sponsorship
WM has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1)
2023 (3)
2022 (3)
2020 (4)
Funding
Current Stage
Public CompanyTotal Funding
$9.95B2024-10-31Post Ipo Debt· $5.2B
2024-06-24Post Ipo Debt· $1.5B
2023-07-27Post Ipo Debt· $2B
Leadership Team
James C. Fish
Chief Executive Officer
John Morris
President and Chief Operating Officer
Recent News
Arkansas Business — Business News, Real Estate, Law, Construction
2025-12-22
Company data provided by crunchbase