Jobs · Information Technology · Ohio

IT GRC Lead Analyst

Westfield Insurance · Westfield Center, OH · 2 wk ago
HybridInformation Technology$10/hrFull-time

Job Summary

The IT Governance, Risk, and Compliance (GRC) Lead Analyst serves as a subject matter expert responsible for leading the design, implementation, maturity, and continuous improvement of the organization’s IT governance, risk management, and compliance programs. This role provides strategic oversight of technology risk and control management, partners with business and technology leaders to ensure alignment with enterprise objectives and drives a proactive risk-aware culture across the organization. The GRC Lead Analyst serves as a trusted advisor to senior leadership, influencing risk-based decision-making and ensuring compliance with regulatory requirements, industry standards, and internal policies. The ideal candidate possesses deep expertise in governance frameworks, regulatory compliance, IT controls, risk management, audit practices, and cybersecurity governance, along with demonstrated leadership in driving enterprise-wide initiatives and mentoring others.

Job Responsibilities

  • Lead the development, execution, and continuous improvement of the enterprise IT Governance, Risk, and Compliance (GRC) program, frameworks, and operating model.
  • Serve as the organization's subject matter expert for IT governance, risk management, compliance, and control oversight.
  • Lead enterprise technology risk assessments and provide risk-based recommendations aligned with business objectives and risk appetite.
  • Drive the maturity of risk management practices through governance enhancements, process optimization, and industry best practices.
  • Oversee compliance with regulatory requirements, industry standards, and internal policies, ensuring effective implementation of controls and monitoring mechanisms.
  • Establish and maintain IT control frameworks, including ITGCs, cybersecurity controls, and key risk indicators (KRIs).
  • Lead control assessments, testing, continuous monitoring, and remediation efforts to strengthen the organization's control environment.
  • Lead third-party technology risk management activities, including vendor assessments and ongoing risk oversight.
  • Champion the implementation, optimization, and automation of GRC processes and technologies to improve efficiency and effectiveness.
  • Develop and deliver executive-level reporting, dashboards, and insights on risk, compliance, audit results, and remediation activities.
  • Lead cross-functional GRC initiatives, influence strategic decision-making, and mentor team members to foster a culture of risk awareness and continuous improvement.

Job Qualifications

  • 7+ years of experience in IT Governance, Risk, and Compliance, Information Security, IT Audit, or related disciplines.
  • Bachelor's degree in Information Technology, Cybersecurity, Information Systems, Risk Management, Business, or related field.
  • Location: Hybrid defined as three (3) or more days per week in the office.
  • Licenses and Certifications: CISSP, CISA, CRISC, CISM, CGEIT.
  • Behavioral Competencies: Collaborates, Communicates Effectively, Customer Focus, Decision Quality, Nimble Learning.
  • Technical Skills: Insurance Industry Knowledge, Regulatory Examinations, GRC Platforms, Policy Management, Compliance Automation Tools, IT Risk Assessment, Control Design, Security Testing.

About Us

Founded in 1848, Westfield is a global leader in property and casualty insurance, delivering superior risk insights and innovative solutions to customers through a diverse portfolio of insurance products. Westfield underwrites commercial, personal, surety, and specialty lines of coverage through a network of leading independent agents and brokers in the United States and specialty products through Lloyd’s of London Syndicate 1200. As a mutual insurance company with more than 3,000 employees, Westfield has revenues in excess of $4 billion and more than $10 billion in assets.

Equal Opportunity Employer

United States: All applicants receive consideration for employment without regard to race, color, sex, religion, national origin, age, sexual orientation, gender identity, disability, or status as a protected veteran. United Kingdom: Westfield is committed to equality of opportunity for all staff and applications from individuals are encouraged regardless of age, disability, sex, gender reassignment, sexual orientation, pregnancy and maternity, race, religion or belief and marriage and civil partnerships.

Similar jobs

Lead GRC Analyst

Robert HalfMinneapolis, MN· 1 wk ago
RemoteBusiness Developmentapply on roberthalf.com

Senior IT GRC Analyst

Columbia BankHillsboro, OR· 3 wk ago
Information Technology$80k–$165k/yrapply on columbiabank.wd108.myworkdayjobs.com

GRC Analyst

Hayward Holdings, Inc.Clemmons, NC· 2 wk ago
Business Developmentapply on hayward.wd1.myworkdayjobs.com

GRC Analyst

MomentumDallas, TX· 3 wk ago
Business Development$5/hrapply on job-boards.greenhouse.io

GRC Analyst

Ease.ioIrvine, CA· 4 wk ago
Education$110k–$135k/yrapply on app.jazz.co