Risk and Compliance Analyst

Posted Yesterday
Be an Early Applicant
New York, NY, USA
In-Office
100K-125K Annually
Mid level
Legal Tech
Davis Polk is an elite global law firm with world-class practices across the board.
The Role
Support and execute the firm's GRC program including ISO 27001 ISMS support, client security assessments, vendor risk reviews, internal IT risk assessments, DR testing, access recertification, and remediation tracking across audits and security reviews.
Summary Generated by Built In

Davis Polk & Wardwell LLP (including its associated entities) is an elite global law firm with world-class practices across the board. Clients know they can rely on Davis Polk for their most challenging legal and business matters. From offices in the world's key financial centers and political capitals, our more than 1,000 lawyers collaborate seamlessly to deliver exceptional service, sophisticated advice and creative, practical solutions. Visit davispolk.com.

Position Summary

The Risk and Compliance Analyst will play a key role in supporting and executing the Firm’s governance, risk and compliance (GRC) program. Reporting to the Compliance Manager, this role will independently manage components of the Firm’s risk and compliance processes, including vendor risk management, client assessments, audit support, and policy governance. This position offers strong exposure to ISO 27001, client-facing security assessments, and enterprise risk management within a professional services environment.

Essential Duties and Responsibilities

Typical responsibilities include, but are not limited to, the following:

  • Support and help maintain the Firm’s Information Security Management System (ISMS), including contributing to ISO 27001 compliance and annual recertification efforts.

  • Manage day-to-day execution of the Firm’s client security assessment process, including gathering documentation, tracking questionnaires, and coordinating responses with internal teams.

  • Support third-party vendor risk assessments, including reviewing questionnaires, SOC reports, and supporting security documentation.

  • Assist in conducting internal IT risk assessments by gathering information from business and IT stakeholders to identify risks, document findings, and support development of risk treatment plans.

  • Support disaster recovery (DR) testing activities, including coordination, documentation, and tracking of results and action items.

  • Execute user access recertification processes for standard and privileged accounts, including tracking completion and escalating issues as needed.

  • Track and follow up on remediation efforts related to findings from client assessments, internal audits, penetration tests, and other security reviews.

  • Support the ongoing use of tools supporting vendor risk management and compliance processes.

  • Perform other duties as assigned.

Qualifications/Position Requirements

  • Familiarity with ISO 27001 framework, as well as NIST, SOC 2, or similar.

  • Experience responding to client security questionnaires and conducting vendor risk assessments.

  • Strong analytical, organizational, and time management skills with attention to detail.

  • Proven ability to manage multiple priorities and projects simultaneously in a fast-paced environment while consistently meeting deadlines.

  • Excellent verbal, written, and presentation skills, with the ability to communicate effectively with clients, leadership, and cross-functional teams.

  • Strong interpersonal skills with ability to build relationships and interact with individuals at all organizational levels.

  • Ability to work independently, exercise sound judgement, and take initiative while collaborating effectively across teams.

Education and/or Experience

  • Bachelor’s degree required, preferably Business Systems, Information Systems.

  • 3-5 years of experience in IT risk, compliance, audit, or information security.

  • Previous experience in legal services preferred.

Compensation

The expected base salary for this position ranges from $100,000 - $125,000. Salary offers are based on a wide range of factors including relevant skills, training, experience, education, anticipated assignment, and, where applicable, licensure or certifications obtained. Market and organizational factors are also considered. Davis Polk offers a competitive salary and comprehensive benefits package.

Skills Required

  • Bachelor's degree
  • 3-5 years of experience in IT risk, compliance, audit, or information security
  • Familiarity with ISO 27001 framework
  • Familiarity with NIST, SOC 2, or similar frameworks
  • Experience responding to client security questionnaires and conducting vendor risk assessments
  • Experience reviewing SOC reports and security documentation
  • Strong analytical, organizational, and time management skills with attention to detail
  • Excellent verbal, written, and presentation skills
  • Ability to work independently, exercise sound judgment, and take initiative
  • Previous experience in legal services
  • Bachelor's degree preferably in Business Systems or Information Systems

Davis Polk & Wardwell LLP Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Davis Polk & Wardwell LLP and has not been reviewed or approved by Davis Polk & Wardwell LLP.

  • Fair & Transparent Compensation Compensation for attorneys follows a predictable lockstep structure that matches prevailing market scales for salaries and bonuses. Feedback suggests this consistency supports confidence in pay fairness and reliability.
  • Parental & Family Support Paid parental leave, fertility coverage, and financial support for adoption and surrogacy are complemented by access to back‑up childcare. These offerings indicate a comprehensive approach to family‑building and caregiving needs.
  • Healthcare Strength Comprehensive medical, dental, and vision coverage is paired with mental‑health resources such as confidential counseling and a Calm subscription, plus wellness programming. On‑site and concierge health options further reinforce depth of coverage in key offices.

Davis Polk & Wardwell LLP Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: New York, NY
2,758 Employees
Year Founded: 1849

What We Do

Davis Polk & Wardwell LLP (including its associated entities) is an elite global law firm with world-class practices across the board. Clients know they can rely on Davis Polk for their most challenging legal and business matters. From offices in the world’s key financial centers and political capitals, our more than 1,000 lawyers collaborate seamlessly to deliver exceptional service, sophisticated advice and creative, practical solutions. Attorney Advertising. Prior results do not guarantee a similar outcome. © 2026 Davis Polk & Wardwell LLP

Similar Jobs

Headway Logo Headway

Senior Governance, Risk, Compliance (GRC) Analyst

Consumer Web • Healthtech • Professional Services • Social Impact • Software
Hybrid
3 Locations
819 Employees
162K-202K Annually

HealthPartners Logo HealthPartners

Compliance Analyst

Healthtech • Information Technology
In-Office or Remote
2 Locations
5537 Employees

Circle Logo Circle

Director, Corporate Communications

Blockchain • Fintech • Payments • Financial Services • Cryptocurrency • Web3
In-Office or Remote
New York, NY, USA
1050 Employees
200K-258K Annually

Smartly Logo Smartly

Customer Onboarding Manager

AdTech • Artificial Intelligence • Digital Media • Marketing Tech • Social Media • Software • Generative AI
Easy Apply
Hybrid
New York, NY, USA
805 Employees

Similar Companies Hiring

Eve Thumbnail
Legal Tech • Software • Generative AI
San Mateo, CA
180 Employees
GC AI Thumbnail
Artificial Intelligence • Legal Tech
San Mateo, California
100 Employees
Legora Thumbnail
Artificial Intelligence • Legal Tech • Software
Chicago, Illinois
700 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account