GRC Analyst, Federal Programs
Tasks
- Collect evidence for CMMC assessments
- Define and maintain CMMC assessment boundary
- Develop and maintain System Security Plan
- Develop and maintain plan of action and milestones
- Drive FedRAMP readiness and continuous monitoring
- Own end to end CMMC journey
- Perform NIST SP 800 171 gap analysis
- Support C3PAO and assessors during CMMC assessments
- Support SOC 2 and HITRUST audits
- Translate gaps into remediation tasks with ownership
Perks/Benefits
- 401k
- Comprehensive health, dental, & vision insurance
- Discretionary PTO plan
- Financial advisory services
- Flexible working hours
- Free digital therapist
- Health savings account
- Life and AD and D insurance
- Paid Company Holidays
- Parental leave
- Remote-first company
- Supplemental insurance benefits
Skills/Tech-stack
800-171 | Audit Support | CMMC | CUI | Continuous Monitoring | Control documentation | Evidence collection | FedRAMP | GRC platforms | Gap Analysis | HITRUST | ISO 27001 | NIST SP | NIST SP 800 | NIST SP 800-171 | Plan of action and milestones | SOC 2 | SP 800-171 | Security plan | System Security Plan | System security
Education
N/A
Roles
Related jobs
-
Cyber Security Analyst (Intern) USD 46K-79KAssessment Reports | Atlassian Jira | Best practices | Cybersecurity Best Practices | Implementation guidesRemote workEntry-level Internship Part TimeFAIRFAX, VA, United States10h ago
-
Information Security Analyst USD 69K-98KAudit Control Gap Analysis | Audit control | COBIT | Control gap analysis | Evidence analysisMid-level Full Time1 First American Way, Santa Ana, …1d ago
-
Information Security Analyst I USD 58K-70K800-171 | Atlassian Jira | Compliance gap assessment | Contract Security | Contract Security Language ReviewDental insurance | Employee assistance program | Flexible spending accounts | Flexible work/life benefits | Health insuranceNone Full TimeDURHAM - Charles W. Durham and …1d ago
-
ACAS | Assessment and Authorization | CISSP | Certification testing | Continuous Monitoring401k matching | 9/80 work schedule | Company-Paid Holidays | Health insurance | Life and disability insuranceSenior-level Full TimeCOAU01, United States1d ago
-
Principal Classified Cybersecurity Analyst - Secret USD 103K-155KACAS | Assessment and Authorization | Continuous Monitoring | Information security | Management Framework401k matching | 9/80 work schedule | Company-Paid Holidays | Disability insurance | Health insuranceSenior-level Full TimeCOCO01, United States1d ago
-
Senior Cyber Security Analyst USD 137K-244K800-37 | 800-53 | Cybersecurity Framework | DoD Knowledge Service | EMASSSenior-level Full TimeUSA-VA-Stafford2d ago
-
Risk Management Framework Analyst USD 125K-140KAssessment & Authorization | Continuous Monitoring | Control Assessment | Cybersecurity | EMASS401k matching | Dental insurance | Disability insurance | Educational reimbursement | Employee stock purchase planMid-level Full TimeUS-VA-Norfolk-NIWDC (VA164), United States4d ago
-
Third Party Risk Management (TPRM) Analyst (Remote) USD 85K-120K800-53 | Access Management | BitSight | Business Continuity | Business Continuity PlanningPaid adoption leave | Paid parental leave | Professional development opportunities | Remote work | Vacation and holidaysEntry-level Full TimeUSA CA Remote, United States R4d ago
-
ACAS | Assessment and Authorization | Audit Reduction | Configuration Management | Continuous MonitoringEntry-level Full TimeUSA - Hazelwood, MO, United States4d ago
-
Cybersecurity Analyst Associate USD 64K-80KAgile Scrum | Assured compliance assessment solution | Cloud Security | Continuous Improvement | Cybersecurity Risk AssessmentPaid time off | Remote workMid-level Full TimeUSA VA Home Office (VAHOME), United … R4d ago
-
ACAS | Assessment and Authorization | Audit Reduction | Configuration Management | Continuous MonitoringDisability insurance | Flexible spending accounts | Health insurance | Health savings accounts | Life insuranceEntry-level Full TimeUSA - Hazelwood, MO, United States4d ago
-
Risk Management Analyst (Mid-Level or Senior) USD 105K-189KAI | Audit Support | Automation | Cybersecurity | Cybersecurity complianceMid-level Full TimeUSA - North Charleston, SC, United …4d ago
-
Senior Governance, Risk, Compliance (GRC) Analyst USD 161K-202KAwareness Training | Control remediation | Evidence collection | GRC platforms | HIPAAEmployee Assistance Program (EAP) | Flexible PTO | HSA/FSA | Medical, dental & vision coverage | Parental leaveSenior-level Full TimeNew York, New York, United States; …4d ago
-
Senior GRC Analyst USD 90K-110KAccess Controls | Audit Readiness | Compliance Management | ConMon | Control mappingFlexible healthcare options | Paid time off | Retirement savings programSenior-level Full TimeBoston, MA, US4d ago
-
Cybersecurity Analyst II USD 80KAccess Management | Automation | By Design | CASB | CIS Controls401k match | Corporate mobile phone plan | Dental insurance | Employer Paid Long Term Disability Insurance | Employer paid short term disability insuranceMid-level Full TimeLafayette, LA, US4d ago
-
Cybersecurity Analyst II USD 105K-126KACAS | Capability Maturity | Compliance Assessment | Cybersecurity | EMASSActive DoD clearance support | Onsite work | Up to 10 percent travelMid-level Full TimeColorado Springs, CO, US4d ago
-
Principal Information Security Analyst USD 104K-165KAccess reviews | Audit Support | Cause analysis | Compliance Management | Continuous ImprovementComprehensive benefit plans | Continuing education | FSA | HSA | Retirement packageSenior-level Full TimeRochester, MN, United States4d ago
-
Systems Security Analyst USD 110K-128KAandA | Configuration Management | Cybersecurity | DOD STIGs | Information AssuranceMid-level Full TimeColorado Springs, Colorado, United States4d ago
-
800-37 | 800-53 | Agile | Control selection | IT project management401k | Dental insurance | Medical insurance | Paid professional development reimbursement | Paid time offSenior-level Full TimeWashington, DC4d ago
-
800-37 | 800-53 | Cybersecurity | JCAM | NIST SP401k | Dental insurance | Medical insurance | Paid professional development reimbursement | Paid time offSenior-level Full TimeWashington, DC4d ago
-
800-53A | Control Assessment | Cybersecurity | Governance Risk | Governance Risk and Compliance401k | Dental insurance | Medical insurance | Paid time off | Professional development reimbursementSenior-level Full TimeWashington, DC4d ago
-
Senior Information Security Analyst USD 117K-156K800-53 | AWS | Active Directory | Anti-Malware | Application ControlsOn-call rotationSenior-level Full TimeVictor, NY, United States4d ago
-
Cybersecurity Analyst - SSB / Active Secret USD 86K-138K800-53 | AI tools | Active Directory | Active Directory Federation Services | Active Directory federationMid-level Full TimeArlington, VA, United States4d ago
-
Principal Classified Cybersecurity Analyst USD 108K-163KACAS | Assessment and Authorization | Continuous Monitoring | Management Framework | NIST401k matching | 9/80 work schedule | Company-Paid Holidays | Healthcare benefits | Paid time offSenior-level Full TimeMDLI05, United States5d ago
-
Aruba | Backup | CMMC | Cisco | Cybersecurity Framework401k match | Employee stock purchase plan | Medical/Dental/Vision | Paid Holidays | Paid parental leaveMid-level Full TimeSalt Lake City, UT (UT17), United …5d ago