GRC Analyst
Tasks
- Collaborate with legal and sourcing on contract redlines
- Coordinate evidence collection for audits
- Draft SSP and POA M deliverables
- Extract and catalog security requirements
- Maintain risk register and risk reporting
- Maintain security governance artifacts and documentation
- Map requirements to security frameworks and controls
- Own operational risk assessment process
- Participate in assessor and auditor interviews
- Produce compliance matrices and gap analyses
- Review customer contracts for security obligations
- Support audit assessment and certification activities
- Support third party and supply chain security reviews
- Write customer security questionnaire responses
Perks/Benefits
- N/A
Skills/Tech-stack
800-171 | 800-53 | Audit Readiness | CMMC | Compliance Matrix | Control mapping | FedRAMP | GDPR | Gap Analysis | ISO 27001 | Information Security Management | Information Security Management System | Information security | Management System | NIS2 | NIST CSF | NIST SP | NIST SP 800 | NIST SP 800-171 | NIST SP 800-53 | POA M | Requirements Traceability | Requirements Traceability Matrix | Risk Assessment | Risk Management | Risk register | SP 800-171 | SP 800-53 | Security Management System | Security plan | Supply Chain | Supply chain risk | System Security Plan | System security | Technical writing | Third Party | Third-Party Risk | Third-party risk management | Traceability matrix
Education
Roles
Related jobs
-
Coso | Cybersecurity | ISO 27001 | Information Risk | Information TechnologyEntry-level Full TimeBuffalo, New York, United States; Rochester, …18h ago
-
Customer Due Diligence | Data Protection | Dealership Portfolio Administration | Document Control | Due Diligence401k match | Dental insurance | Employee assistance program | Health insurance | Paid HolidaysEntry-level Full Time2000 Westinghouse, PA R19h ago
-
ATO Support | Assessment and Authorization | Catalog management | Confluence | Content ManagementSenior-level Full TimeUS-CA-EL SEGUNDO-E07 ~ 2012 E El …1d ago
-
ATO | Assessment and Authorization | Compliance | Content Management | Continuous MonitoringOnsite work environment | Security clearance sponsorshipSenior-level Full TimeUS-MA-TEWKSBURY-TB3 ~ 50 Apple Hill Dr …1d ago
-
Cloud Security | Compliance | Control Frameworks | Crisis management | Cyber Security401 k retirement plan | Dental insurance | Disability insurance | Health insurance | Life insuranceMid-level Full TimeHouston, TX (HO) - Digital & …1d ago
-
Vulnerability Analyst USD 99K-225KCVSS | CWE | Compliance Monitoring | Cybersecurity reporting | Exploitability assessmentMid-level Full TimeUSA, DC, Washington (400 7th St …1d ago
-
Cybersecurity Risk Analyst USD 82K-220K800-171 | 800-53 | AWS | Azure | CMMCDiscounts to local museums and cultural activities | Employee clubs | Finance workshops | Health workshops | Off-site social eventsMid-level Full TimeMA - Cambridge, United States1d ago
-
ISSO (Information System Security Officer) USD 97K-131K800-53 | AWS | Access Control | Authority to Operate | AzureMid-level Full TimeCambridge, MA1d ago
-
2012 R2 | Account Management | Authorization Package | Authorization package review | COMSEC401k match | Accidental death and dismemberment insurance | Critical illness insurance | Dental insurance options | Flex work weeksMid-level Full TimeUSA CO Colorado Springs - - …1d ago
-
Information Security - IT Information Security USD 72K-97KAccess Control | Audit | Audit Logging | Information security | Microsoft WindowsMid-level Full TimeDededo, GU, 96929, USA1d ago
-
Information Security GRC Analyst USD 85K-114K800-53 | Audit compliance | Automation | CCPA | CCS Critical Security Controls401k match | Company holidays | Dental insurance | Employee stock purchase program | Health insuranceMid-level Full TimeMerriam, KS, United States2d ago
-
Sr. Cybersecurity Analyst III USD 180K-200KAccess Controls | Data encryption | Firewall | Forensic analysis | Incident Handling401k match | Dental insurance | Dependent care | Employee Assistance and Wellness Programs | Flexible work arrangementsSenior-level Full TimeWashington, DC3d ago
-
Senior Cybersecurity Analyst USD 110K-148KCertification and accreditation | Continuous Monitoring | Cybersecurity | EMASS | Information AssuranceCompetitive salary | Comprehensive benefits package | Hybrid work environmentSenior-level Full TimeColorado Springs, Colorado, United States3d ago
-
Awareness Training | Compliance | Data Classification | Incident Response | Information securityOnsite workMid-level ContractRichmond, United States3d ago
-
Event Analyst II, Third Party Risk Management USD 55K-95KAudit Readiness | Cybersecurity | Data Analysis | Documentation | FFIEC401k matching | Employee assistance program | Paid Holidays | Paid time off | Tuition reimbursementEntry-level Full Time601 S. Tryon Street, NC R3d ago
-
Cyber Security Analyst-Level 2 USD 72K-74K800-53 | Access Control | Access Management | Azure Sentinel | CIS ControlsEntry-level Full TimeNew York City, NY, United States3d ago
-
Digital Network Exploitation Analyst-Mid USD 104K-166KComputer forensics | Cyber Security | IP Networking | Information Assurance | Information securityCareer progression | Employee-focused culture | World-class benefitsSenior-level Full TimeAnnapolis Junction, Maryland, United States4d ago
-
Active Directory | Activity monitoring | Alert Tuning | Azure AD | Behavioral BaselinesMid-level Full TimeArlington, VA, United States4d ago
-
Active Directory | Activity monitoring | Azure Active Directory | Behavior analytics | Behavioral analyticsMid-level Full TimeArlington, VA, United States4d ago
-
Risk Management Support Task Lead USD 107K-165K800-37 | ACAS | ATO | AV | Apache401k match | Long-term disability | Medical/Dental/Vision insurance | Paid Holidays | Paid time offSenior-level Full TimeScott Air Force Base, IL, US4d ago
-
ISSO, Journeyman USD 143K-175KAccess Management | Authorization and Accreditation | Configuration Management | Contingency Planning | CybersecuritySenior-level Full TimeOgden, Utah4d ago
-
Information Security Analyst II USD 76K-100KApplication Firewall | Compliance Auditing | Data Loss Prevention | Data loss | Event managementMid-level Full TimeColumbus, Georgia, USA, United States4d ago
-
Sr Technical Lead-Cybersecurity USD 113K-160KAWS | Access Management | Active Directory | Application whitelisting | AzureSenior-level Full TimeUS - NEW JERSEY CLIENT SITE, …4d ago
-
GRC Analyst – Enterprise & Third Party Risk USD 80K-100KAWS | Access Management | Audit Evidence Collection | Audit evidence | AzureMid-level Full TimeIrving - Royal 10, United States4d ago
-
Senior Analyst, GRC USD 126K-214KAudit Support | Automation | CISSP | CMMC | CRISC401k match | AD D Insurance | Adoption reimbursement | Credit union | Disability insuranceSenior-level Full TimeOverland Park, KS, US4d ago