Governance Risk & Compliance Risk Register Analyst
Posted 2 days ago by StoneGate-Technologies LLC
Negotiable
Undetermined
Remote
Remote
Summary: The Governance Risk & Compliance Risk Register Analyst role focuses on supporting enterprise risk management and information security governance initiatives. The candidate will be responsible for designing and operationalizing risk register processes and documentation that align with security and audit requirements. This position requires strong stakeholder engagement and the ability to create clear, audit-ready documentation. The role is fully remote, allowing for flexibility in work arrangements.
Key Responsibilities:
- Define end-to-end governance workflows for risk identification and intake, risk review and validation, risk acceptance, mitigation, or transfer, and ongoing monitoring and periodic reassessment.
- Establish roles and responsibilities for risk owners, risk reviewers, and governance and decision-making bodies.
- Design escalation and reporting processes for high-risk items and accepted risks.
- Engage stakeholders across business, technology, security, and governance teams to validate risk requirements and workflows.
- Facilitate workshops and working sessions to socialize risk register and governance processes.
- Support onboarding of initial risks into the enterprise risk register.
Key Skills:
- Strong experience in Governance, Risk & Compliance (GRC) and enterprise risk management.
- Experience building or managing enterprise risk registers.
- Knowledge of risk scoring methodologies and frameworks.
- Excellent stakeholder management and workshop facilitation skills.
- Experience creating audit-ready documentation.
Salary (Rate): undetermined
City: undetermined
Country: undetermined
Working Arrangements: remote
IR35 Status: undetermined
Seniority Level: undetermined
Industry: Other
Role: Governance Risk & Compliance Risk Register Analyst
Location: Remote
Job Description
We are seeking an experienced Governance, Risk & Compliance (GRC) Risk Register Analyst to support enterprise risk management and information security governance initiatives. The ideal candidate will help design and operationalize end-to-end risk register processes and documentation aligned with security and audit requirements.
Key Responsibilities
Define end-to-end governance workflows for:
Risk identification and intake
Risk review and validation
Risk acceptance, mitigation, or transfer
Ongoing monitoring and periodic reassessment
Establish roles and responsibilities for:
Risk owners
Risk reviewers
Governance and decision-making bodies
Design escalation and reporting processes for:
High-risk items
Accepted risks
Engage stakeholders across business, technology, security, and governance teams to validate risk requirements and workflows.
Facilitate workshops and working sessions to socialize risk register and governance processes.
Support onboarding of initial risks into the enterprise risk register.
Documentation & Deliverables
Create clear, audit-ready documentation including:
Risk register structure and data definitions
Risk scoring methodology
Governance workflows and decision authorities
Provide knowledge transfer to internal security staff to ensure long-term sustainability.
Required Skills
Strong experience in Governance, Risk & Compliance (GRC) and enterprise risk management
Experience building or managing enterprise risk registers
Knowledge of risk scoring methodologies and frameworks
Excellent stakeholder management and workshop facilitation skills
Experience creating audit-ready documentation