[Remote] IT Risk and Compliance Analyst - 100% Remote
Note: The job is a remote job and is open to candidates in USA. EPITEC is seeking an IT Risk and Compliance Analyst to support their IT Risk & Compliance Governance team. The role involves executing governance, risk, and compliance activities, developing reports, and contributing to process documentation while ensuring high-quality delivery.ResponsibilitiesIndependently perform and support IT governance, risk, and compliance processes and services to ensure timely, accurate, and high-quality deliveryHandle daily execution of assigned processes and services, identifying and resolving most tactical challenges with guidance as neededDevelop and maintain reports, metrics, and presentations; deliver content within a defined scope and audienceContribute to the creation and modification of internal Risk and Compliance process documentationSupport the implementation and operation of IT governance policies, standards, and proceduresApply risk and compliance frameworks (e.g., ISO, NIST, COSO, PCI) to assigned activities with guidance from senior team membersIdentify control gaps, inefficiencies, and improvement opportunities within existing processesCommunicate effectively with the engagement lead, team members, and process stakeholders to confirm requirements, timelines, and acceptance criteriaParticipate in cross-functional discussions to understand needs, clarify scope, and align on deliverablesEstablish and maintain productive working relationships within IT and across the business to support timely deliveryActively identify improvements to processes and lead assigned improvement activities with oversightSupport the use and administration of GRC tools (ServiceNow) and platforms to drive efficiency and consistencyStay current on IT risk, compliance, and cybersecurity concepts, trends, and best practicesSkills5-10 years of experience in IT risk, compliance, audit, or a related disciplineWorking knowledge of IT governance, risk management, and compliance conceptsExperience using ServiceNow Integrated Risk Management (IRM)Familiarity with common frameworks and standards (e.g., ISO, NIST, COSO, PCI DSS) and how to apply them to controls/evidenceAbility to handle assigned work independently, communicate status, and call out risks/issues earlyStrong written and verbal communication skills, including drafting clear control narratives and audit-ready responsesProficiency with common productivity tools (e.g., Excel, PowerPoint) and producing reports/metrics within a defined scopeAbility to collaborate effectively in a team-based, matrixed environment while operating as an independent contributorExperience supporting audits, assessments, or regulatory activitiesRelevant certifications (e.g., CISA, CRISC, CISSP)BenefitsW2 Candidates OnlyCompany OverviewEpitec is a premier technology services and professional staffing company. It was founded in 1978, and is headquartered in Southfield, Michigan, USA, with a workforce of 1001-5000 employees. Its website is https://epitec.com.