GRC CareersAGJ, the AI governance job boardPost a Job

Jobs › Security Risk Analyst

Security Risk Analyst

College Board

Role at a glance

Category
Risk
Work arrangement
Remote
Location
Remote
Posted
Jul 7, 2026
Apply for this roleApplications go directly to College Board
ShareEmailLinkedInXFacebookPrint / Save PDF

College Board is hiring a Security Risk Analyst in Remote. This is a Risk role in the governance, risk, and compliance field. Review the full details below and apply directly with College Board.

Job Description External Posting Role Title – Security Risk Analyst College Board – Risk Management Location: This is a remote role. Candidates who live near CB offices have the option of being fully remote or hybrid (Tuesday and Wednesday in office). All CB employees are required to occasionally travel to meet in person for business purposes. Role Type: This is a full-time position About the Team The Information Security Governance Risk and Compliance (ISGRC) team at the College Board works closely with other teams across the organization to assess and certify the security of College Board’s information systems and processes. This dedicated team facilitates information security governance and compliance by assessing College Board’s vendors, reviewing and negotiating contractual commitments to information security, planning for disaster response and recovery, testing system strength using industry-recognized frameworks (ISO 27001, PCI-DSS and SOC2) and obtaining related compliance certifications, implementing information security policies, promoting security awareness and training, and testing the acumen of College Board employees through robust and innovative training and phishing campaigns. About the Opportunity As a Security Risk Analyst, you will have the critical role of being responsible for evaluating and managing exceptions to IT security policies, for managing the Organization’s Risk and Control Issues Register (Risk Register), and for developing reports and metrics. Your strong technical communication and negotiation skills will help you build relationships and collaborate with diverse stakeholders and reduce risk to the organization and ensure compliance. Under the direction of management, you will manage the Risk Register and perform security policy exceptions to help the College Board understand its critical risks. In this role you will: Manage the Risk Register (20%) • Leads the management of the issues and risks and quickly escalates any untimely completion of audit actions. • Works independently to communicate risks and works with others to problem-solve risks to tolerance levels based on data and evidence. • Maintains data quality of Risk Register and executes any required data clean-up exercises. • Understands College Board work to be able to drive Risk or Control Owners to ensure consistent application of policies and standards. • Raises awareness about Risk & Control Issues, Policy exceptions, and available risk reduction options. •

Full responsibilities and requirements are on College Board's application page.

Apply for this role →
About College Board
Hiring for governance, risk, and compliance roles on GRC Careers.
Browse all College Board roles →

Location and market context

This is a remote risk management role, so it draws from a national talent pool rather than a single metro. Remote governance and compliance roles reward candidates who can show they work effectively across time zones and distributed legal, security, and product teams. Confirm any residency, travel, or occasional-onsite expectations directly with College Board.

About risk management roles

Risk roles own the methodology for identifying, assessing, and escalating enterprise, operational, and technology risk. Second-line teams set risk appetite and challenge the first line. Roles like this one are typically evaluated against frameworks such as enterprise and operational risk frameworks, NIST AI RMF, and risk-appetite and escalation practices.

How to position yourself for this risk management role

Strong candidates emphasize risk assessment methodology, appetite and escalation, cross-functional partnership, and clear reporting to senior leadership and the board. In your resume and outreach, tie your experience to how College Board would apply enterprise and operational risk frameworks, NIST AI RMF, and risk-appetite and escalation practices, and lead with concrete outcomes rather than duties.

Similar GRC roles

Procurement Analyst (Compliance & Risk Management)
Executive Director, Office of Acquisition, Logistics and Construction
Multiple Locations$126k to $164k
Risk Management and Internal Controls Specialist
Department of War Education Activity
Alexandria, Virginia$102k to $158k
Compliance - Healthcare Risk Management Program Manager (O-5 Billet) Non-Supervisory
Immigration and Customs Enforcement
Washington, District of Columbia$150k
Third Party Risk Management Expert
Nubank
Brazil, Sao Paulo
Staff Product Manager, Risk Product Experience
Stripe
Seattle, New-York
Staff Product Manager, Risk Modeling
Plaid
San Francisco
Get more roles like this by email
We will email you new Risk roles in Remote as they post. Free and confidential, one click to unsubscribe.

More GRC jobs: All GRC roles · Browse by category & location