Senior IT Risk & Compliance Analyst - IT Risk Assessment - US Remote available

TJX Companies

At TJX Companies, every day brings new opportunities for growth, exploration, and achievement. You'll be part of our vibrant team that embraces diversity, fosters collaboration, and prioritizes your development. Whether you're working in our four global Home Offices, Distribution Centers or Retail Stores-TJ Maxx, Marshalls, Homegoods, Homesense, Sierra, Winners, and TK Maxx, you'll find abundant opportunities to learn, thrive, and make an impact. Come join our TJX family-a Fortune 100 company and the world's leading off-price retailer.

Job Description:

What You'll Do

Join our IT Risk Management team as a Senior IT Risk & Compliance Analyst - IT Risk Assessment. In this role, you will play a key part in the execution and continuous improvement of our Information Technology Risk Assessment Program as we evolve from a primarily compliance‑driven organization to one focused on proactive risk management.

Key Responsibilities

• Lead and support IT risk and compliance assessments, evaluating inherent, residual, and emerging risks across technology domains.
• Identify, assess, document, and communicate IT risks in a clear and actionable manner to both technical and non‑technical stakeholders.
• Evaluate existing controls and safeguards, considering effectiveness, likelihood, and impact to inform risk decisions.
• Partner with technology, security, and business teams to support risk remediation planning and risk acceptance decisions.
• Contribute to the development, refinement, and documentation of risk assessment workflows, processes, and methodologies.
• Support alignment of IT risk practices with internal policies, standards, and external regulatory or industry frameworks.
• Assist with ongoing improvements to IT risk governance processes, tools, and reporting.
• Collaborate effectively within a distributed team across multiple time zones, fostering strong working relationships.

Who you are

We're looking for someone who puts internal customers first, is outcome‑focused, and is motivated to continuously improve IT risk and compliance practices without compromising associate experience. You'll thrive in this role if you enjoy working in a collaborative, inclusive environment and are comfortable navigating ambiguity as programs evolve. . Our teams span multiple time zones and cultures, so inclusivity is a must, working within and developing a team with varied strengths through inclusive behaviors is encouraged. This is a global role based in the U.S., partnering with technology and business stakeholders across regions to help identify, assess, and manage IT risk.

Successful Candidates will have

• 3-5 years of experience in IT Risk Management, IT Compliance, IT Audit, or related roles, with demonstrated experience conducting or supporting IT risk assessments.
• Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related field, or equivalent practical experience.
• Strong working knowledge of IT risk and compliance concepts, methodologies, and control evaluation. Prior experience performing Business Application and IT Process risk assessment.
• Familiarity with IT policies, regulations, standards, and frameworks such as NIST, ISO 27001/27002, PCI DSS, COSO, and/or ISO 31000.
• Ability to analyze complex information, apply critical thinking, and make well‑reasoned risk decisions with appropriate guidance.
• Strong written and verbal communication skills, with the ability to explain risk findings to a variety of audiences.
• Proven ability to work cross‑functionally and manage multiple priorities in a fast‑paced environment.

Preferred Qualifications

• Exposure to GRC technology platforms (e.g., ServiceNow, Archer, or similar tools).
• Experience working within distributed or global teams.
• Awareness of IT industry trends and emerging technologies and their associated risks.

Certifications

• CISA or CRISC strongly preferred. Candidates actively pursuing one of these certifications are encouraged to apply. Equivalent experience in IT risk assessment and control evaluation will be considered.

Benefits include Associate discount; 401(k) match; medical/dental/vision; HSA; health care FSA; life insurance; short/long-term disability; paid holidays/vacation /sick/bereavement/parental leave; EAP; incentive programs for management; auto/home insurance discounts; tuition reimbursement; scholarship program; adoption/surrogacy assistance; smoking cessation; child care/cell phone discounts; pet/legal insurance; credit union; referral bonuses. All benefits are subject to applicable plan or program terms (including eligibility terms) and may change from time to time. Contact your TJX representative for more information.

In addition to our open door policy and supportive work environment, we also strive to provide a competitive salary and benefits package. TJX considers all applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity and expression, marital or military status, or based on any individual's status in any group or class protected by applicable federal, state, or local law. TJX also provides reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local law.

Address:
770 Cochituate Rd

Location:
USA Home Office Framingham MA 770 Cochituate Rd

This position has a starting salary range of $101,500.00 to $131,900.00 per year. Actual starting pay is determined by a number of factors, including relevant skills, qualifications, and experience. This position is eligible for an annual incentive.

Client-provided location(s): Framingham, MA

Job ID: TJX-TJCOGLOBALREQ93379EXTERNALENGLOBAL

Employment Type: FULL_TIME

Posted: 2026-02-05T20:11:14