×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
IT Business Analyst Cybersecurity

Senior IT Risk & Compliance Analyst - IT Risk Assessment - US Remote

Remote / Online - Candidates ideally in
Framingham, Middlesex County, Massachusetts, 01704, USA
Listing for: The TJX Companies, Inc.
Remote/Work from Home position
Listed on 2026-02-18
Job specializations:
  • IT/Tech
    IT Business Analyst, Cybersecurity
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Senior IT Risk & Compliance Analyst - IT Risk Assessment - US Remote available

TJX Companies

At TJX Companies, every day brings new opportunities for growth, exploration, and achievement. You’ll be part of our vibrant team that embraces diversity, fosters collaboration, and prioritizes your development. Whether you’re working in our four global Home Offices, Distribution Centers or Retail Stores—TJ Maxx, Marshalls, Homegoods, Homesense, Sierra, Winners, and TK Maxx, you’ll find abundant opportunities to learn, thrive, and make an impact.

Come join our TJX family—a Fortune 100 company and the world’s leading off-price retailer.



Job Description

What You’ll Do

Join our IT Risk Management team as a Senior IT Risk & Compliance Analyst – IT Risk Assessment. In this role, you will play a key part in the execution and continuous improvement of our Information Technology Risk Assessment Program as we evolve from a primarily compliance‑driven organization to one focused on proactive risk management.



Key Responsibilities

  • Lead and support IT risk and compliance assessments, evaluating inherent, residual, and emerging risks across technology domains.
  • Identify, assess, document, and communicate IT risks in a clear and actionable manner to both technical and non‑technical stakeholders.
  • Evaluate existing controls and safeguards, considering effectiveness, likelihood, and impact to inform risk decisions.
  • Partner with technology, security, and business teams to support risk remediation planning and risk acceptance decisions.
  • Contribute to the development, refinement, and documentation of risk assessment workflows, processes, and methodologies.
  • Support alignment of IT risk practices with internal policies, standards, and external regulatory or industry frameworks.
  • Assist with ongoing improvements to IT risk governance processes, tools, and reporting.
  • Collaborate effectively within a distributed team across multiple time zones, fostering strong working relationships.
Who You Are

We’re looking for someone who puts internal customers first, is outcome‑focused, and is motivated to continuously improve IT risk and compliance practices without compromising associate experience. You’ll thrive in this role if you enjoy working in a collaborative, inclusive environment and are comfortable navigating ambiguity as programs evolve. Our teams span multiple time zones and cultures, so inclusivity is a must, working within and developing a team with varied strengths through inclusive behaviors is encouraged.

This is a global role based in the U.S., partnering with technology and business stakeholders across regions to help identify, assess, and manage IT risk.

Successful Candidates will have

  • 3–5 years of experience in IT Risk Management, IT Compliance, IT Audit, or related roles, with demonstrated experience conducting or supporting IT risk assessments.
  • Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field, or equivalent practical experience.
  • Strong working knowledge of IT risk and compliance concepts, methodologies, and control evaluation. Prior experience performing Business Application and IT Process risk assessment.
  • Familiarity with IT policies, regulations, standards, and frameworks such as NIST, ISO 27001/27002, PCI DSS, COSO, and/or ISO 31000.
  • Ability to analyze complex information, apply critical thinking, and make well‑reasoned risk decisions with appropriate guidance.
  • Strong written and verbal communication skills, with the ability to explain risk findings to a variety of audiences.
  • Proven ability to work cross‑functionally and manage multiple priorities in a fast‑paced environment.


Preferred Qualifications

  • Exposure to GRC technology platforms (e.g., Service Now, Archer, or similar tools).
  • Experience working within distributed or global teams.
  • Awareness of IT industry trends and emerging technologies and their associated risks.
Certifications

  • CISA or CRISC strongly preferred. Candidates actively pursuing one of these certifications are encouraged to apply. Equivalent experience in IT risk assessment and control evaluation will be considered.
Benefits include Associate discount; 401(k) match; medical/dental/vision; HSA; health care FSA; life insurance; short/long-term…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search