GRC Program Lead
Tasks
- Align policies to SOC 2 CMMC NIST and FedRAMP requirements
- Assess security risks across systems services projects and vendors
- Conduct root cause analysis and track improvements
- Conduct vendor security and compliance reviews
- Coordinate CMMC SOC 2 client audits and FedRAMP readiness reviews
- Define and track KPIs KRIs and control effectiveness
- Define and track security baselines
- Define governance for enterprise AI usage
- Develop SOC 2 Type II program
- Develop and enforce security privacy and access policies
- Enforce AI policies and monitor misuse or data leakage
- Establish IT governance risk compliance program
- Establish incident response governance and documentation
- Lead CMMC Level 2 implementation
- Maintain enterprise risk register
- Manage evidence collection audit responses remediation and closure
- Manage exceptions and risk acceptance
- Operationalize compliance functions
- Oversee business continuity and disaster recovery planning and testing
- Oversee vulnerability management and endpoint device compliance
- Own and manage Vanta platform
- Support FedRAMP readiness
- Track trends and report risks to leadership
- Validate control effectiveness through evidence based assessments
Perks/Benefits
- 401k match
- Career development opportunities
- Dental insurance
- Disability insurance
- Employee resource groups
- Health insurance
- Life insurance
- Paid Holidays
- Paid parental leave
- Paid time off
- Tuition reimbursement
- Vision insurance
- Wellness programs
Skills/Tech-stack
800-171 | Audit management | Business Continuity | CMMC Level 2 | Disaster Recovery | Endpoint Security | Evidence collection | FedRAMP | Governance Risk | Governance risk compliance | Incident Response | KPIs | KRIs | Level 2 | NIST Frameworks | NIST SP | NIST SP 800 | NIST SP 800-171 | Policy Management | Risk Management | Risk compliance | Risk register | SOC 2 | SOC 2 Type II | SP 800-171 | Security controls | Vanta | Vendor Risk | Vendor risk management | Vulnerability Management
Education
N/A
Roles
Related jobs
-
Manager, Enterprise Security Engineering USD 166K-220KAWS | AWS CDK | Azure | CI/CD | Cloud SecurityMid-level Full TimeWashington, District of Columbia, United States20h ago
-
ARNG Cyber Security Team Lead - M2 USD 103K-218KACAS | Blackduck | Checkmarx | Cloud Security | Container OrchestrationFlexible time off | Learning resourcesSenior-level Full Time405 ASHBURN VA (ASHBURN CACI/CLIENT REIMB … R1d ago
-
Lead Cyber Security – Edge Security Engineering (Akamai WAF, DDoS Defense & Security Analytics) USD 141K-211KAkamai CDN | Akamai WAF | Analytics | Anomaly Detection | Automation401k plan | Adoption reimbursement | Disability benefits | Employee assistance program | Employee discountsSenior-level Full TimeAlpharetta, Georgia1d ago
-
Application Security | Audit management | Compliance Management | Cybersecurity | Cybersecurity frameworksSenior-level Full TimeUS-NC-REMOTE, United States R1d ago
-
Principal, GRC Automation and Cyber Risk USD 167K-250K800-53 | API Keys | Agent systems | Agentic AI | AutogenSenior-level Full TimeF5 Tower, United States1d ago
-
Azure DevOps | CMMC | Chain of Custody | Counterfeit Part Assurance | Cyber Risk401k | Dental & vision coverage | Educational assistance | Employee assistance programs | Employee discountsSenior-level Full TimeUTRO03, United States1d ago
-
Lead Security Engineer - Software Engineer USD 135K-181KAI | AWS | Application Security | Azure | BashSenior-level Full TimeUSA - FL - Kirkman Point …1d ago
-
Senior Staff Security Incident Commander | Security Org USD 165K-289KCause analysis | Cybersecurity frameworks | Incident Management | Incident Response | Incident review401k plan with company match | ESPP | Family leave programs | Flexible spending accounts | Flexible time away planSenior-level Full TimeSanta Clara, California, United States3d ago
-
Security Risk Management Lead USD 146K-225K800-53 | AWS | Cloud Security | Control Validation | Cybersecurity FrameworkESPP | Flexible spending wallets | Health care coverage | Time offSenior-level Full TimeRemote US R4d ago
-
Risk Management Support Task Lead USD 90K-165K800-37 | ACAS | AV | Apache | Application Scanning401k match | Dental insurance | Health insurance | Long-term disability | Paid HolidaysSenior-level Full TimeScott Air Force Base, IL, US4d ago
-
Lead Information Security Engineer USD 119K-224KAI (responsible use) | AI Responsible | APIs | AWS | Artificial IntelligenceHybrid work scheduleSenior-level Full Time142019-NC-300 South Brevard, Charlotte, United States4d ago
-
Cyber Security Engineering Team Lead USD 86K-181KATO Lifecycle | ATO lifecycle management | Agile | Automation | Continuous ATOContinuing education | Family support | Flexible time off | Healthcare | Learning and development resourcesSenior-level Full Time405 ASHBURN VA (ASHBURN CACI/CLIENT REIMB … R4d ago
-
SOC Analyst Shift Lead USD 92K-153KAlert Tuning | CIS Controls | Endpoint Security | Incident Response | Log AnalysisSenior-level Full TimeGH Office: San Antonio, TX (9903 …4d ago
-
Lead Threat Hunter USD 126K-149KAI | APIs | AWS | Automation | AzureAdoption Assistance | Disability insurance | Healthcare benefits | Life insurance | Paid HolidaysSenior-level Full TimeCincinnati, OH, United States4d ago
-
Cybersecurity Specialist Lead USD 85K-100KACAS | Authority to Operate | Cisco | Cisco IOS | DOD401k matching | Dental insurance | Disability insurance | Educational reimbursement | Employee stock purchase planSenior-level Full TimeUS-FL-Patrick AFB-1 Spacelift (FL110), United States4d ago
-
Lead Cybersecurity Analyst USD 128K-170KAccess Control | Access Management | Application Security | Cybersecurity | DevSecOpsSenior-level Full TimeMadison General Office, United States4d ago
-
Lead Engineer, Network Security Operations USD 36K-38KApplication Security | Application Security Groups | Azure Firewall | Cisco | Cloud Armor401k matching | Employee discount | Employee stock purchase plan | Paid parental leave | Tuition reimbursementSenior-level Full TimeLowe's Charlotte Technology Hub 3505, United …4d ago
-
Senior-level Full TimeCalifornia, California, United States4d ago
-
Senior Security Engineer USD 145K-165KAccess Control | Access Management | Configuration Management | Continuity of Operations | CryptographySenior-level Full TimeWASHINGTON, DC, United States5d ago
-
Cybersecurity Lead USD 120K-195KACAS | Continuous Monitoring | DAST | EMASS | RMFDental insurance | Disability insurance | Health insurance | Life insurance | Paid time offSenior-level Full TimeMontgomery, Alabama, United States5d ago
-
Lead, Information Risk and GRC USD 104K-159KAutomated risk scoring | Continuous Monitoring | Control Validation | Cyber Risk | Cyber Risk AssessmentSenior-level Full TimeMiramar, FL, US, 331325d ago
-
Unmanned Platforms Cybersecurity Engineer, Lead USD 86K-198KCOMSEC | Cybersecurity Risk Management | Cybersecurity risk | Federal regulations | Infrastructure SecurityDependent care | Paid leave | Professional development | Tuition assistance | Work Model FlexibilitySenior-level Full TimeUSA, DC, Washington (20 M St …5d ago
-
Information Assurance Lead USD 131K-237K800-53 | ACAS | Audit Log | Audit Log Review | Configuration ManagementSenior-level Full Time5783 San Antonio TX, United States5d ago
-
Cyber Deputy Program Manager/PMO Lead USD 116K-210KBudgeting | Contract Management | Cybersecurity | ITIL | Knowledge ManagementSenior-level Full Time9614 Arlington VA Non-specific Customer Site, …5d ago
-
Sr Lead, Cloud Security Engineering USD 114K-194K800-53 | AWS | Access Management | Azure | Azure Entra401k | Caregiver leave | Dental insurance | Disability insurance | Flexible workSenior-level Full TimeChicago, IL, United States5d ago