$113,503–$170,309 Per Year
Accounting, Amazon Web Services (AWS), Analysis Skills, Artificial Intelligence (AI), Auditing, Brand Marketing (Branding), Brand Strategy, Business Writing, Cloud Computing, Communication Skills, Competitive Analysis/Strategy, Computer Science, Conferences, Content Delivery/Distribution, Content Development, Continuous Deployment/Delivery, Control Objectives for Information and related Technology (COBIT), Cross-Functional, Diversity, Ecosystems, Emerging Technology, Equal Employment Opportunity (EEO), Finance, GCP (Good Clinical Practices), Genetics, Government, Healthcare, ISACA (Information Systems Audit and Control Association), ISO (International Organization for Standardization), IT Governance, Industry Standards, Industry/Trade Analysis, Information Technology & Information Systems, Information Technology/Systems Audit, Information/Data Security (InfoSec), Internet Security, Leadership, Legal Support Skills, MCP - Microsoft Certified Professional, Market Research, Marketing, Microsoft Windows Azure, Military, Multitasking, People Management, Podcasting, Privacy Controls, Product Testing, Publications, Qualitative Analysis, Quantitative Analysis, Regulations, Reporting Skills, Research Skills, Risk, Risk Analysis, Risk Management, Sarbanes-Oxley Act (SOX), Standards Strategy, Team Lead/Manager, Technical Presentation, Technical Strategy, Technology Analysis, Testing, Thought Leadership, U.S. National Institute of Standards and Technology (NIST), Use Cases, Volunteer Management, Webinar, White Papers, Willing to Travel
Schaumburg - Hybrid, Illinois
About ISACA:
ISACA® (www.isaca.org) champions the global workforce advancing trust in technology. For more than 55 years, ISACA has empowered its community of 195,000+ members with the knowledge, credentials, training and network they need to thrive in fields like information security, governance, assurance, risk management, data privacy and emerging tech. With a presence in more than 195 countries and with more than 230 chapters worldwide, ISACA offers resources tailored to every stage of members’ careers—helping them to thrive in a rapidly changing digital landscape, drive trusted innovation and ensure a more secure digital world. Through the ISACA Foundation, ISACA also expands IT and education career pathways, fostering opportunities to grow the next generation of technology professionals.
Overview:
A Principal Research Analyst at ISACA leads the development, delivery, and continuous enhancement of high-quality forward-thinking content, guidance, and practitioner aids for their assigned area of expertise, ensuring alignment with ISACA’s Professional Practices Program Strategy and industry standards. This role partners closely with business units, marketing, events teams, and ISACA leadership to integrate practice-area content consistently across conferences, webinars, publications, and other member-facing initiatives. Serving as a subject matter expert in their assigned practice area. This Principal Research Analyst recruits, mobilizes, and guides volunteer SME groups to co-develop and validate content, while providing expert guidance throughout content and research project cycles. The position represents ISACA externally at industry events, panels, and webinars, evaluates conference proposals, and ensures presentations meet technical and strategic standards.
Additionally, the role supports knowledge advancement by responding to member inquiries, monitoring trends, and maintaining up-to-date expertise, and contributes to ISACA’s brand and marketing efforts to strengthen organizational visibility and credibility. This position requires consistent demonstration of critical thinking, collaboration, strong communication, analytical skills, and the ability to manage multiple priorities, embodying ISACA’s values of People First, Curiosity, Passion, and Collaboration.
Responsibilities:
Content Leadership & Development
- Lead the creation, review, and delivery of content including articles, audit programs, whitepapers, secondary research reports, and practitioner aids.
- Ensure content aligns with ISACA’s Professional Practices Program Strategy and industry standards.
- Provide input on materials, frameworks, and references to maintain high-quality outputs.
- Use AI responsibly and in compliance with organizational policies
Subject Matter Expertise & Volunteer Engagement
- Serve as internal SME within assigned professional practice (e.g., audit, emerging tech, GRC, information security, privacy).
- Recruit, mobilize, and manage volunteer SME groups to co-develop and validate ISACA content.
- Provide guidance and leadership during content and research project cycles e.g., exam prep materials, journal articles.
External Representation & Thought Leadership
- Represent ISACA at industry events, panels, podcasts, and webinars to promote the organization’s research and frameworks.
- Evaluate conference proposals and review final presentations for technical and strategic accuracy.
Knowledge Advancement & Inquiry Support
- Respond to member and partner technical inquiries within area of practice.
- Maintain up-to-date knowledge by attending professional seminars, reviewing literature, and monitoring trends.
Cross-Functional Collaboration
- Partner with business units, marketing, and events teams to ensure consistent, relevant integration of practice-area content across conferences, webinars, podcasts, and publications.
- Collaborate with ISACA leadership to align professional practice content with organizational messaging and priorities.
Strategic and Brand Support
- Support ISACA’s marketing and brand-building efforts through strategic communication and collaboration.
- Participate in activities that foster partnerships and elevate ISACA’s visibility and credibility in the global ecosystem.
Qualifications:
Required Field of Study:
- Bachelor’s Degree in a relevant field of study from an accredited university, or an equivalent combination of education and experience.
Minimum Years of Experience Required:
- Minimum of 8 years of experience in a similar role or capacity, with a demonstrated record of success.
- Experience responding to stakeholder inquiries, providing expert guidance and practical interpretation of industry practices and trends.
- Proven experience collaborating cross-functionally with business teams
Description of Minimum Experience Required:
- Experience conducting secondary research and reporting
- Track record of public-facing thought leadership: conference speaking, webinars, podcasts, or published articles
- Additional 5+ years of experience with enterprise IT audit processes: risk assessment, control design review, control testing, and audit evidence collection.
- 1+ year experience auditing artificial intelligence technologies
- Deep working knowledge of relevant frameworks, standards, and regulations: COBIT, GDPR, NIST CSF, ISO, SOX
- Practical understanding of IT governance, risk management, and compliance practices and how they map to business objectives
Required Competencies/Skills:
- Working knowledge of artificial intelligence technologies, current applications within assigned area of expertise, identification of appropriate use cases, and related risk.
- Vendor and market research – evaluating products, mapping capabilities, and performing competitive analysis
- Critical thinking, collaboration, and cross-functional stakeholder engagement
- Business writing
- Proven ability to translate research into content deliverables: verbal presentations or written reports
Preferred Field of Study:
- Master’s Degree in Accounting, Business, Cybersecurity, Computer Science, Information Systems, or related field from an accredited university.
Preferred Years of Experience:
- 10+ years of experience in a similar role or capacity, with a demonstrated record of success.
Description of Preferred Experience:
- Related experience in regulated industries (finance, healthcare, energy) or working with regulators and compliance programs
- Experience assessing AI technologies, e.g., models, MCP servers, etc.
- Strong quantitative and qualitative analysis skills to synthesize data into actionable findings
- Experience auditing cloud (AWS/Azure/GCP)
- Experience assessing readiness against U.S. government mandates and/or public sector standards (e.g., CMMC, NIST)
Required Certifications:
Preferred Certifications:
Travel may be required to attend industry conferences, professional events, workshops, and external meetings. Travel is primarily domestic, with occasional international travel depending on event participation and organizational priorities.
Equal Opportunity Employer (EEO):
ISACA is proud to be an equal opportunity employer. ISACA is committed to building an environment of diversity, equity, and inclusion where equal employment opportunities are available to all applicants and employees without regard to race, color, religion, sex (including pregnancy and gender identity), national origin, age, ancestry, disability, genetic information, citizenship, sexual orientation, veteran status, marital status, familial status, military discharge status, or any other characteristic or status protected by federal, state, or local law. We support an inclusive workplace where employees excel based on merit, qualifications, experience, and ability.
Posted Salary Range:
USD $113,503.00 - USD $170,309.00 /Yr.
Benefits Information:
Benefits Information available below:
ISACA Career Opportunities and Benefits