Associate IT Security Analyst, Governance Risk & Compliance (GRC)

If youre passionate about building a better future for individuals communities and our countryand youre committed to working hard to play your part in building that futureconsider WGU as the next step in your career.

Driven by a mission to expand access to higher education through online competency-based degree programs WGU is also committed to being a great place to work for a diverse workforce of student-focused professionals. The university has pioneered a new way to learn in the 21st century one that has received praise from academic industry government and media leaders. Whatever your role working for WGU gives you a part to play in helping students graduate creating a better tomorrow for themselves and their families.

The salary range for this position takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs.

At WGU it is not typical for an individual to be hired at or near the top of the range for their position and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is:

Job Description

The Associate IT Security Analyst on the GRC team supports the Human Risk and Governance functions within WGUs Information Security Governance Risk and Compliance (GRC) program. This entry-level role is focused on building core security governance skills while helping reduce human risk strengthen our security culture and support compliance activities. Working under the guidance of senior team members and the Director of GRC this analyst contributes to WGUs security policy lifecycle security awareness and training phishing simulations and privacy and regulatory initiatives in a highly collaborative growthoriented environment.

What Youll Do

• Support the security policy and standards lifecycle including coordinating reviews tracking updates and helping maintain related documentation.

• Help track document and maintain policy exceptions and approvals to support audit and compliance needs.

• Assist with regulatory and privacy compliance tasks in partnership with Legal and other GRC stakeholders.

• Support monthly employee phishing simulations including setup monitoring and reporting on results and trends.

• Help administer employee security awareness and required annual training including enrollment tracking and reporting completion.

• Assist with student security awareness plan development content coordination and execution of awareness activities.

• Support Human Risk Program documentation metrics dashboards and ongoing program activities.

• Contribute to Cybersecurity Awareness Month planning communications and events.

• Assist with Data Privacy Week materials messaging and engagement campaigns across the university.

• Support the Security Ambassadors Program through coordination communications and tracking engagement.

• Maintain GRC documentation dashboards and operational tracking tools in partnership with Information Security and GRC team members.

What Youll Bring

• Associates degree or equivalent combination of education and relevant experience.

• Approximately one year of experience in IT information security governance compliance communications or a related field; internships academic projects or parttime roles are welcome.

• Exposure to core information security concepts such as security awareness risk management and policy development with a strong interest in growing these skills.

• Ability to review and interpret basic data sets (for example reports training results or policy feedback) and summarize key observations.

• Good written and oral communication skills with the ability to communicate with purpose clarity and accuracy to technical and nontechnical stakeholders.

• Strong analytical problem solving and decision making skills with a solutionfocused mindset.

• Ability to work well with others in complementary roles collaborate across teams and follow through on commitments.

Bonus Points

• Familiarity with security awareness platforms phishing simulation tools or learning management systems.

• Experience supporting communications training content or awareness campaigns (e.g. newsletters intranet posts email campaigns).

• Coursework certifications or personal projects related to cybersecurity GRC privacy or human risk management.

Experience in lieu of education

An equivalent combination of training experience credentials or accomplishments demonstrating the ability to perform the essential functions of this job may substitute for education degree requirements.

What to Expect in the Process

At WGU our mission drives everything we do including how we hire. Our interview experience is designed to give qualified candidates the opportunity to show their best work through meaningful conversations practical problem-solving and authentic collaboration.

We thoughtfully review every application and invite forward the candidates whose experience and potential best align with the role and our mission. If selected candidates will hear from a recruiter or hiring manager who will guide them through the process. We aim to communicate decisions promptly and respectfully.

Interview Steps

• Introductory call with a Talent Partner

• On-site interview with the hiring leader and two senior team members

Work Location

This is a full-time in-office position at WGUs office in Salt Lake City Utah.

Visa Sponsorship

While we welcome applicants from all backgrounds WGU is not able to provide visa sponsorship for this role.

Position & Application Details

How to Apply: If interested an application will need to be submitted online. Internal WGU employees will need to apply through the internal job board in Workday.

Additional Information

Disclaimer: The job posting highlights the most critical responsibilities and requirements of the job. Its not all-inclusive.

Accommodations: Applicants with disabilities who require assistance or accommodation during the application or interview process should contact our Talent Acquisition team at

Equal Employment Opportunity: All qualified applicants will receive consideration for employment without regard to any protected characteristic as required by law.