A women giving a presentation, with a blue C overlay

GRC Analyst

A Governance, Risk, and Compliance (GRC) Analyst is responsible for ensuring compliance with legal standards and identifying and mitigating IT-related risk. This role may oversee data privacy practices, but most commonly supports organizational compliance initiatives and the development of governance frameworks, promotes ethical behavior, and monitors regulatory changes.

Most common technical skills for GRC Analyst roles

According to market employment data, these are the top technical skills requested by employers:

Illustration of government building
Governance, risk management, and compliance
Illustration of government building
Risk analysis
Illustration of government building
ISO/IEC 27001
Illustration of government building
Auditing
Illustration of government building
Cybersecurity
Illustration of government building
Internal auditing
Illustration of government building
Risk management
Illustration of government building
Computer science
Illustration of government building
Security controls

Gain the technical skills needed to advance your career

You can rely on ISACA to provide the training, credentials, tools, and resources needed to meet current employer demands and emerging needs not yet widely represented in job descriptions.

CRISC Certified in Risk and Information Systems Control logo
Certification

CRISC—Certified in Risk and Information Systems Control

CRISC certification indicates expertise in identifying and managing enterprise IT risk and implementing and maintaining information systems controls.
Risk IT Framework, 2nd Edition
Book

Risk IT Framework, 2nd Edition | Digital | English

The Risk IT Framework is designed to assist in developing, implementing or enhancing the practice of risk management by: Connecting the business context with the specific I&T assets.

AI Governance: Principles, Strategies and Business Alignment
Online Course

AI Governance: Principles, Strategies and Business Alignment Course

AI in general may not be new, but the explosion of generative AI has thrust the topic into headlines with regards to bias, ethical usage, intellectual property rights, privacy and use of technology just to name a few.
CISA Certified Information Systems
Certification

CISA—Certified Information Systems Auditor

Prove your expertise in IS/IT auditing, control and security and be among the most qualified in the industry.
COBIT
Resource

COBIT

COBIT: a framework for enterprise governance of information and technology.

AI Elevate Your Expertise
Online Course

Ethical Perspectives in AI: Implications, Principles, and Social Dynamics Online Course

While AI could have myriad benefits across a variety of industries, there are many ethical considerations that need to be made before implementing an AI-powered resource.

Cybersecurity Fundamentals
Certificate

Cybersecurity Fundamentals Certificate

Cybersecurity Fundamentals affirms your understanding and ability to perform in today’s cybersecurity-threatened business and IT environments.
A person looking at their laptop screen
Certificate

Artificial Intelligence Fundamentals Certificate

Artificial Intelligence Fundamentals  assists learners through a hybrid learning approach in building understanding of AI concepts, principles and uses.

Looking for a different path?

Explore other role areas and find the one that aligns with your career goals.

See more role areas