Risk and Compliance Analyst

HUB International

full-time

Posted on: 9/18/2025

Origin: • 🇺🇸 United States • Illinois

✨ AI Apply

💰 $70,000 - $80,000 per year

Mid-LevelSenior

About the role

Work directly with internal stakeholders to complete and respond to customer/client due diligence questionnaires including the preparation and submission of HUB’s annual due diligence profile
Assist with the semi-annual user access review process on HUB’s enterprise applications and infrastructure
Support of our internal audits that take place such as our ITGC and SOC-2 audits
Evaluate the design and test the operating effectiveness of key controls identified and provide control enhancement recommendations as appropriate
GRC data entry and data validation especially in the area of vendor risk
Contribute to other risk management activities, which may include exception monitoring and tracking, vendor viability assessments, and other special projects as needed

Minimum BA/BS or equivalent work experience in audit, compliance, communication and information systems, security or a related field preferred
5-7 years of relevant experience
Have a strong working knowledge of some or all of ISO 27001 and other information security standards, SSAE-18, GDPR, ITIL
Experience with GRC software (e.g. Archer, ProcessUnity) and/or process expertise in GRC areas (e.g. risk management, compliance & regulation, continuous control monitoring, vendor risk, and security)
Ability to provide polished, written responses and executive summaries
Excellent verbal and written communication and interpersonal skills
Excellent organizational, time management and prioritization skills
Able to develop and maintain effective relationships with associates at all levels of the organization
Ability to work independently, as well as collaboratively in a team environment
Demonstrated knowledge of MS Office applications (Outlook, Word, Excel, PowerPoint, Project Visio)
Basic knowledge of HUB customer types, products, and services preferred