×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant IT Business Analyst

Information Security GRC – Risk & Compliance Senior Analyst

Job in Southfield, Oakland County, Michigan, 48076, USA
Listing for: AlixPartners GmbH
Full Time, Contract position
Listed on 2026-06-15
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, IT Business Analyst
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Information Security GRC – Risk & Compliance Senior Analyst (Contract)
At Alix Partners, we solve the most complex and critical challenges by moving quickly from analysis to action when it really matters; creating value that has a lasting impact on companies, their people, and the communities they serve. By understanding, respecting, and honoring the needs of our employees, clients, and communities, Alix Partners actively promotes an inclusive environment. We strongly believe in the value that diversity brings to our experiences and are committed to the perpetual enhancements of initiatives, policies, and practices.

We hold ourselves accountable by providing space for authenticity, growth, and equity for everyone.

Location:

Southfield, MI (contract/hybrid)
Assignment duration: through December 2026 with potential to extend

MUST BE CURRENTLY AUTHORIZED TO WORK IN THE UNITED STATES. NO VISA OR IMMIGRATION SPONSORSHIP FOR THIS ROLE, NOW OR IN THE FUTURE. (e.g., H-1B, STEM OPT, TN, etc.)About the Role As a member of the Information Security team, the IS GRC Senior Analyst - Risk & Compliance will be responsible for understanding the firm's security risk and compliance requirements. You will manage and maintain the risk register, analyze risk, and process risk assessments via the risk assessment platform.

The IS GRC – Risk & Compliance will help set up and monitor control testing to support audit activities. This role will consult and interface with IT leadership, IT staff, and non-IT departments to conduct risk analysis and monitor controls.

The Information Security Governance, Risk & Compliance Senior Analyst (Risk & Compliance) is a full-time, contract position located in Southfield, MI reporting to the Information Security Governance, Risk, & Compliance Manager. Paid relocation and benefits are not available for this position.

What you'll do Security

Risk Management:

Support the CISO in the completion of the annual risk assessment required to support client and compliance audits, as well as periodic risk assessments as determined

Manage the review and analysis of risk register ensuring accuracy, completeness, and timely updates

Conduct risk assessments including evaluation of risk and control effectiveness

Track remediation actions to closure with assigned control owners, maintain due dates, escalate overdue items, and report status to leadership

Interview subject matter experts and gather information for conducting risk assessments

Collaborate with cross-functional teams to develop risk mitigation strategies

Conduct security assessments of third-party suppliers, including review of security questionnaires, supporting documentation, and independent audit reports

Identify third-party supplier gaps, risk ratings, and required mitigations

Control Framework and Testing:

Design, execute, and monitor control tests to assess compliance with contractual, regulatory, and internal requirements

Partner with control owners across IT and business functions; ensure roles and responsibilities are clearly communicated and understood

Prepare audit request materials and upload documentation for internal or external auditors

Measure and report metrics to IS GRC Risk & Compliance Manager, IS GRC Director and CISOImprove security efficiency, streamline, and automate work processes while working collaboratively with other team members and IT staff to accomplish objectives

Additional responsibilities as identified. This description is not designed to encompass a comprehensive listing of required activities, duties, or responsibilities.

What You'll Bring Bachelor's degree in Information Technology or related field preferred; relevant work experience may be considered in lieu of education

Minimum 3 years of professional work experience

Experience with in Information Security, Risk, Compliance, Audit, or Information Technology is required

Experience with ISO 27001, SOC 2, PCI, HIPAA, or other global standards or regulations is highly preferred

Certified Information Systems Security Professional (CISSP) and/or Certified Information Systems Auditor (CISA) desired, but not required

Willingness to increase knowledge and credibility through obtaining training and/or certifications (CISSP, CISA, CRISC, etc.)Attention…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search