Demo

IT Security Engineer (GRC)

Default Board
Indianapolis, IN Full Time
POSTED ON 5/9/2026
AVAILABLE BEFORE 7/8/2026

Job Function: the IT Security Engineer (GRC) plays a key role in establishing and maintaining the NCAA’s information security governance, risk management, and compliance posture. This position is responsible for developing, implementing, and monitoring security policies, standards, and controls to ensure the confidentiality, integrity, and availability of NCAA information systems and data. The role leads and supports risk assessments, regulatory compliance efforts, and audit activities, ensuring alignment with industry frameworks and legal requirements. Working closely with IT, Security Operations, Legal, Privacy, and business stakeholders, the IT Security Engineer provides guidance on risk mitigation strategies, control effectiveness, and security best practices to support informed decision-making and enterprise security maturity.

Job Responsibilities:

Security Operations & Incident Response

  • Monitor and analyze security events, logs, and alerts to identify vulnerabilities, threats, and potential breaches.
  • Investigate security incidents, perform forensic analysis, conduct root cause analysis, and recommend corrective actions.
  • Support incident response activities and post-incident reviews from a governance, risk, and compliance perspective.

Governance, Risk, & Compliance (GRC)

  • Develop, maintain, and enforce information security policies, standards, and procedures aligned with business objectives and regulatory requirements.
  • Lead IT risk management activities, including risk assessments, risk registers, mitigation plans, and remediation tracking.
  • Map security controls to regulatory and framework requirements and maintain audit documentation and evidence.
  • Monitor and report on control effectiveness, overall risk posture, and compliance status to leadership.

Compliance & Audit Management

  • Ensure compliance with applicable legal, regulatory, and contractual obligations (e.g., NIST, ISO 27001, SOC, PCI-DSS, HIPAA, GDPR).
  • Coordinate and support internal and external security audits, assessments, and certifications.
  • Manage third-party and vendor security risk assessments and ongoing compliance reviews.

Security Architecture & Engineering

  • Design, implement, and maintain enterprise security controls and perimeter protections.
  • Collaborate with IT teams to deploy and support security technologies such as firewalls, intrusion detection/prevention systems, endpoint protection, and authentication mechanisms.
  • Maintain accurate documentation, inventories, and diagrams of the security environment.

Awareness, Training, & Collaboration

  • Develop and deliver security awareness and training programs to promote a strong security culture.
  • Partner with IT, Security Operations, Legal, Privacy, and business teams to embed security governance into systems, projects, and processes.
  • Work closely with the NCAA Information Security Officer to support enterprise security strategy and policy development.
  • Provide guidance and escalation support to the Service Desk for security-related issues.

Business Continuity, Reporting, & Events

  • Support disaster recovery and business continuity planning, including backup, restoration, and testing activities.
  • Prepare and maintain security documentation, incident records, and KPI-based reports to measure security effectiveness.
  • Provide IT security support for offsite events, including meetings and championships, with flexibility for after-hours, weekend, and extended remote assignments.
  • Perform other duties as assigned.
  • Other duties as assigned


Job Requirements

Required:

  • Bachelor’s degree in Computer Science, Information Technology, or a related field.
  • 2-4 years of experience in IT security, risk management, compliance or audit required (3-7 years preferred).
  • Strong understanding of GRC principles, risk assessment methodologies, and regulatory frameworks.
  • Experience with security frameworks and standards (e.g., NIST, ISO 27001, SOC, PCI-DSS).
  • Hands-on experience with GRC platforms (ServiceNow GRC, Archer, OneTrust, LogicGate, ZenGRC).
  • Working knowledge of cloud platforms (Azure, AWS, or GCP) and associated security controls.
  • Experience with Microsoft security platforms.
  • Ability to efficiently collect, manage, and present audit evidence.
  • Strong documentation, reporting, and policy development skills.
  • Strong analytical, organizational, and problem-solving skills.
  • Experience working in a collaborative, team-oriented environment.
  • Exposure to ITIL fundamentals.
  • Ability to support offsite events, including extended on-location assignments.
  • This position will be based out of the national office in Indianapolis, Indiana. Current work environment is hybrid; 2 days in the office and 3 days remote. Relocation is expected.

    Preferred:

    • Industry certifications such as CISSP, CISM, CRISC, CISA, or CompTIA Security .
    • Active pursuit or attainment of CISSP.


    Key Competencies

    • Self Management | Takes responsibility of one’s behavior, work, priorities, and time management accordingly.
    • Teamwork | Can effectively work together with other people and collaborate to achieve a common goal or to complete a task in the most effective and efficient way. 
    • Attention to Detail | Allocates cognitive resources to achieve thoroughness and accuracy when accomplishing tasks, no matter how small or large.  
    • Resourcefulness | The ability to creatively cope with difficult situations, or unusual problems. It is about problem-solving and getting things done in the face of obstacles and constraints.
    • Drives Vision & Purpose | Communicates a compelling picture of the vision and strategy that motivates others to action by: Talking about future possibilities in a positive way. Creating milestones and symbolizing support behind the vision. Showing personal commitment to the vision.

     

    Core Values

    • LEADERSHIP | We actively listen and continually strive to provide vital solutions, counsel and advocacy for student-athletes and intercollegiate athletics.
    • INCLUSION | We seek and incorporate different perspectives and experiences to drive innovation and impact.
    • COMMUNICATION | We commit to an environment of openness to build trust and make timely decisions.
    • COLLABORATION | We work together, based on mutual respect, to lead and serve our stakeholders.
    • ACCOUNTABILITY | We take ownership for our actions and results to add value every day.

     

     

    Salary.com Estimation for IT Security Engineer (GRC) in Indianapolis, IN
    $85,763 to $104,095
    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a IT Security Engineer (GRC)?

    Sign up to receive alerts about other jobs on the IT Security Engineer (GRC) career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at Default Board

    Senior Project Manager - Engineering/Construction
    Apply
    • Default Board Rapids, IA
    • Summary: As a Senior Project Manager at Fluid Quip Technologies, LLC (FQT), you are a key driver of successful project delivery and client satisfaction. Yo... more
    • 3 Days Ago
    Bilingual Restaurant Assistant Manager
    Apply
    • Default Board Phoenix, AZ
    • The Assistant Manager is responsible for managing the daily operations of our restaurants. They will recruit, cast, develop, mentor and coach team members ... more
    • 3 Days Ago
    Medical Professional- Registered Nurse
    Apply
    • Default Board Spokane, WA
    • Determined to Increase your work/life balance and home time, your ability to learn and advance, and your impact on other’s lives? We leave work at work. [S... more
    • 3 Days Ago
    Kitchen Staff
    Apply
    • Default Board Springfield, MO
    • Overview: A Hooters Kitchen employee is an integral part of the day-to-day operations at every Hooters restaurant. The Hooters Kitchen employee is responsi... more
    • 3 Days Ago
    View More Jobs at Default Board

    Not the job you're looking for? Here are some other IT Security Engineer (GRC) jobs in the Indianapolis, IN area that may be a better fit.

    IT Security Engineer (GRC)
    Apply
    • NCAA Indianapolis, IN
    • Job Function: the IT Security Engineer (GRC) plays a key role in establishing and maintaining the NCAA’s information security governance, risk management, ... more
    • 3 Days Ago
    Sr. IT Security Engineer
    Apply
    • Republic Airways Carmel, IN
    • JR-007135 POSITION PURPOSE : Manages, monitors and maintains all related Information Security systems. Reviews, recommends, configures and implements Infor... more
    • 2 Days Ago
    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!