IT GRC Analyst

Posting Close Date: 

Applicants must submit their completed application by 03-30-2025 at 11:59 p.m. MST

Application and Special Instructions

As part of the application process, all applicants are required to submit an updated resume and cover letter at the time of the application.

Applications that do not include both documents by the closing date of the recruitment will be considered incomplete and will not receive further consideration for this recruitment.

SAVE THE DATE: Interviews will be held April 8, 2025, as needed. Those who are selected to move forward will receive further instruction for a virtual interview.

ABOUT THIS JOB

The IT GRC Analyst position at the City of Tucson’s Information Technology Department (ITD) is responsible for supporting the organization's Governance, Risk, and Compliance (GRC) efforts by developing, implementing, and maintaining IT policies, procedures, and controls. This position analyzes and applies governance frameworks to maintain compliance and protect the data and IT infrastructure while ensuring adherence to regulatory requirements.

Work is performed under the supervision of IT Manager. This position does not supervise.
 

Duties and Responsibilities

• Analyzes and supports the development of IT Governance, Identify and Mitigate risks (GRC) frameworks, policies, standards, procedures, and governance controls in collaboration with teams and subject matter experts (SMEs). Provides guidance on understanding and adhering to established policies and procedures with IT teams embedded in partner departments. Recommends and implements improvements documenting identified risks, risk score, mitigation strategies, contingency plans, and monitoring activities.

• Supports the development and maintenance of a comprehensive risk register, tracking identified risks, risk scores, mitigation strategies, contingency plans, and monitoring activities. Contributes to the definition and continuous improvement of key risk indicators (KRIs) and performance metrics to assess program effectiveness.

• Conducts and facilitates IT risk assessments to identify and evaluate potential threats, vulnerabilities, and impacts on tech-enabled business operations. Assesses risks associated with third-party vendors and service providers. Supports internal and external audits by gathering evidence, preparing documentation, and addressing audit findings.

• Performs gap analyses and compliance assessments to identify areas for improvement and ensure adherence to IT GRC standards. Maintains an up-to-date knowledge base for IT GRC-related information to support ongoing compliance and risk management efforts. Monitors organization-wide compliance with administrative directives and policies, external regulations (e.g. PCI, HIPAA, CJIS, etc.), and other IT governance requirements for corrective measures.

• Identifies opportunities for process improvements by working with SMEs to enhance risk management and compliance practices. Educates employees on IT standards, policies and compliance obligations

• Assists in IT incident response, documenting findings, supporting remediation and root cause analysis efforts, and assessing security and compliance impacts. Assists in the development and implementation of risk mitigation strategies and controls to enhance IT security and compliance.

• Performs all other duties and tasks as assigned.

Working Conditions

Mostly office environment.

All duties and responsibilities listed are subject to change.

MINIMUM QUALIFICATIONS

Education: Associates degree
Experience: Two (2) years of directly related experience

Preferred Qualifications

Experience in IT governance and risk management practices or in a related role. 
Experience operating systems, networking principles, and cloud computing. 
 

POSITION DETAILS

Job Profile

J0748 - Information Technology Analyst

To view the full job profile including classification specifications and physical demands click here.

Compensation Grade

G107

Hourly Range

$26.57 - 39.86 USD

The City of Tucson considers several factors when extending an offer, including but not limited to, the role and associated responsibilities, a candidate's work experience, education/training, key skills, and internal equity.

FLSA

Exempt

Position Type

Regular

Time Type

Full time

Department

Information Technology

Department Link

No Website

Background Check:  This position has been designated to require a criminal background check. 

ABOUT US

Benefits: The City of Tucson offers a generous benefits package for benefit-eligible positions. The comprehensive, flexible, and affordable coverage is designed to optimize health and well-being, security and future, and peace of mind. Benefits begin with medical, dental, vision, life, disability, and FSA coverage, surpassing your standard 401(k) program by offering a rich pension plan plus optional Roth and pretax deferred compensation savings. With your well-being in mind, our paid time off program provides new hires with 38 paid days off in the first year of employment, with time off increasing steadily in subsequent years. We offer twelve weeks of paid parental leave, paid tuition reimbursement, student loan repayment, off- and on-the-job training, and opportunities to forge connections with peers and the community through employee resource groups and paid volunteer hours. You can learn more about our benefits at https://www.tucsonaz.gov/Departments/Human-Resources/Employee-Benefit-Snapshot.

Citizenship: The City of Tucson employs only U.S. Citizens and lawfully authorized non-U.S. Citizens. All new employees must show employment eligibility verification as required by the U.S. Citizenship and Immigration Status.

City of Tucson is an Equal Opportunity/Affirmative Action/Veterans/Disability Employer and does not discriminate based on race, color, religion, sex (including sexual orientation, gender identity, and pregnancy), national origin, veteran status, age, disability, genetic testing, or any other protected status.  If you believe you have been a victim of discrimination, you may file a complaint with the City of Tucson's Office of Equal Opportunity Programs, U.S. Equal Employment Opportunity Commission (EEOC) or Arizona Attorney General's Office of the Civil Rights Division (ACRD).  Click for more information from ACRD about employment discrimination and how to file a complaint with ACRD 

The City of Tucson is committed to providing access and reasonable accommodation for individuals with disabilities or who require religious accommodation; please contact Human Resources at EmployeeLeaves@tucsonaz.gov or 520-791-2619.   

Recruiter Name

Liliana Almeraz (99363)

Recruiter Email

ccs_hr@tucsonaz.gov

For Human Resources general questions please contact 520-791-4241.