remote

Senior IT Risk and Compliance Analyst - NORC at the University of Chicago

Software Engineer

Lead IT risk and compliance initiatives for government clients, designing, documenting, and validating security controls to meet stringent regulatory and corporate standards.

About the role

Key Responsibilities

Specify, document, and validate IT security and privacy controls to ensure compliance with government regulations and corporate standards.
Develop and implement tools and processes for continuous risk assessment and control monitoring.
Lead audit preparation and coordinate with external auditors to demonstrate compliance readiness.
Collaborate with cross‑functional teams to integrate security controls into system design and deployment.
Maintain up‑to‑date knowledge of evolving security frameworks and regulatory requirements.

Requirements

5+ years of experience in IT risk, compliance, or security governance.
Deep understanding of government security standards (e.g., FedRAMP, NIST, FISMA).
Proven ability to develop and document security policies, procedures, and control frameworks.
Strong analytical skills with experience in risk assessment and audit management.
Excellent communication skills for stakeholder engagement and reporting.

Skills

penetration testing

CompanyNORC at the University of Chicago

DepartmentEngineering

LocationWashington, United States

Experience4+ years

Tenurefull-time

LevelSenior

Salary120,000

Posted June 27, 2026