Senior Governance, Risk, Compliance (GRC) Analyst
New York, New York, United States; San Francisco, California, United States; Seattle, Washington, United States
USD 161K-202K Senior-level Full Time
Tasks
- Assess and mitigate technical security risks
- Collect evidence for audits
- Conduct onboarding compliance training
- Coordinate compliance requirements with privacy legal IT and engineering teams
- Coordinate with security assessors
- Enforce security policies during procurement and renewals
- Maintain centralized security risk register
- Manage vendor security assessments
- Perform risk scoring for vendors
- Review SOC 2 reports and ISO reviews
- Run phishing simulations
- Run security awareness training program
- Support HIPAA compliance readiness
- Support HITRUST audit readiness
- Support PCI DSS audit readiness
- Support SOC 2 audit readiness
- Surface risk priorities to leadership
- Track control gaps and remediation timelines
- Track training completion
Perks/Benefits
- Employee Assistance Program (EAP)
- Flexible PTO
- HSA/FSA
- Medical, dental & vision coverage
- Parental leave
- Retirement savings plan
- Therapy reimbursement
- Training and professional development
- Work from home stipend
Skills/Tech-stack
Awareness Training | Control remediation | Evidence collection | GRC platforms | HIPAA | HITRUST | PCI DSS | Phishing Simulations | Policy enforcement | Risk Management | Risk scoring | SOC 2 | Security Awareness Training | Security Risk | Security Risk Management | Security assessment | Security awareness | Technical Risk | Technical risk management | Third Party | Third-Party Risk | Third-party risk management | Vendor Security Assessment | Vendor security
Education
N/A
Regions
Countries
States
Related jobs
-
Cybersecurity Analyst II USD 105K-126KACAS | Capability Maturity | Compliance Assessment | Cybersecurity | EMASSActive DoD clearance support | Onsite work | Up to 10 percent travelMid-level Full TimeColorado Springs, CO, US15h ago
-
Systems Security Analyst USD 110K-128KAandA | Configuration Management | Cybersecurity | DOD STIGs | Information AssuranceMid-level Full TimeColorado Springs, Colorado, United States18h ago
-
Assessment and Authorization | Authority to Operate | Control Assessment | Cybersecurity | Governance Risk401k | Dental | Medical | Onsite work flexibility | Paid time offSenior-level Full TimeWashington, DC19h ago
-
800-53A | Control Assessment | Cybersecurity | Governance Risk | Governance Risk and Compliance401k | Dental insurance | Medical insurance | Paid time off | Professional development reimbursementSenior-level Full TimeWashington, DC20h ago
-
Mid-level Full TimeUnited States-Texas-Galveston22h ago
-
Business Analyst, Cybersecurity USD 116K-194KBusiness Continuity | Business Continuity Planning | Business Process | Business Process Reengineering | Continuity of OperationsSenior-level Full TimeUSA-VA-Springfield23h ago
-
Principal Classified Cybersecurity Analyst USD 108K-163KACAS | Assessment and Authorization | Continuous Monitoring | Management Framework | NIST401k matching | 9/80 work schedule | Company-Paid Holidays | Healthcare benefits | Paid time offSenior-level Full TimeMDLI05, United States1d ago
-
Cybersecurity Analyst II USD 81K-121KAccess Management | Analytics | Automation | Awareness Training | Cloud SecurityEntry-level Full TimeRemote (United States) R1d ago
-
Risk Management - Risk Reporting Associate USD 185K-200KAlteryx | Control Validation | Data Analysis | Issue management | KPI ReportingMid-level Full TimeNewark, DE, United States1d ago
-
Cloud Security Analyst USD 112K-179KAWS | Azure | Cloud Compliance | Cloud Governance | Cloud SecuritySenior-level Full TimeArlington, VA1d ago
-
Forensics / Incident Response SME USD 155KAWS | Alert triage | Chain of Custody | Device Forensics | Digital forensics100 percent remote work | 401k matching | FSA programs | Health coverage contribution | Online education and training portalSenior-level Full TimeRemote / Telework, United States R2d ago
-
Security Analyst USD 70K-94KChange Management | Configuration Management | Information Technology | Information Technology Infrastructure | Information Technology Infrastructure LibraryMid-level Full TimeArlington, Virginia, United States2d ago
-
Information Security Analyst (Onsite) USD 69K-103KCIS Benchmarks | CIS Critical Controls | Configuration auditing | Critical controls | DLP401k matching | Career development | Dental insurance | Employee assistance program | Flexible spending accountMid-level Full TimeOceanside, CA, United States2d ago
-
Cyber Systems Engineer - Continuous Monitoring USD 145K-190K800-137 | 800-37 | 800-53 | 800-53A | AWSSenior-level Full TimeChantilly, VA2d ago
-
Information Security Analyst USD 71K-96KActive Directory | Alert triage | Application Configuration | Application Firewall | Awareness Training401k | Accident insurance | Basic life insurance | Cancer Insurance | Dental insuranceEntry-level Full TimeGreensboro, North Carolina, United States2d ago
-
Information Security and Compliance Analyst USD 100K-125KAWS | Alert Logic | Azure Security | Azure Security Center | COBIT 5401k contribution | Dental insurance | Disability insurance | Flexible spending plan | Gym membershipMid-level Full TimeUnited States2d ago
-
Sr InfoSec Compliance & Risk Analyst USD 106K-158KAudit evidence | Control gap analysis | FAIR | GRC tools | Gap AnalysisSenior-level Full TimeUnited States2d ago
-
Network Security Analyst USD 74K-100KCIS Controls | Data Loss Prevention | Data loss | Detection and prevention | HIPAAContinued Education | Employee discounts | Life insurance | Medical, dental, vision benefits | Paid time offMid-level Full TimeFrisco, TX R2d ago
-
Data Loss Prevention | Data loss | Firewall | HIPAA | Incident investigationContinued Education | Dental insurance | Employee discounts | Life insurance | Medical insuranceMid-level Full TimeFrisco, TX R2d ago
-
Information Security Analyst USD 104K-138KAccess requests | DNS | Endpoint Security | Enterprise Management | Enterprise Management Tracking SystemsHealth care plan | Life insurance | Paid time off | Retirement planMid-level Full TimeWright-Patterson Air Force Base, Ohio, United …2d ago
-
Engineer II - Insider Threat USD 60K-84KAlert triage | Behavioral indicators | Cloud Security | Data Classification | Data Loss PreventionAdoption Assistance | Backup dependent care | Behavioral health solutions | Employee resource groups | Infertility coverageMid-level Full TimeUSA - PA - Conshohocken - …2d ago
-
Information Security GRC Analyst III USD 94K-164KAccess Management | Application Security | Authentication | Authorization | Computer NetworkingSenior-level Full TimeDayton WFH, United States R2d ago
-
Cybersecurity Controls Assessor USD 114K-185K800-53 | Anomaly Detection | Audit Readiness | CMMC | Continuous Monitoring401k match | Employee assistance program | Health, dental, vision insurance | Hybrid work schedule | Paid time offSenior-level Full TimeIndianapolis, North Building Meridian Center (US-MC-NB), … R2d ago
-
Access Controls | Account Management | Change Management | DAAPM | DCSA AssessmentSenior-level Full TimeUS-MA-WOBURN-WB1 ~ 235 Presidential Way ~ …2d ago
-
Senior Cybersecurity Reporting & Analytics Lead - Raytheon Tucson, Dallas Metro, Boston Metro USD 107K-204KBusiness Intelligence | Continuous Monitoring | Dashboarding | Data Governance | Data Normalization401k match | Dental insurance | Employee assistance program | Employee scholar program | Flexible work schedulesSenior-level Full TimeUS-MA-TEWKSBURY-TB3 ~ 50 Apple Hill Dr …2d ago