GRC Analyst (Governance, Risk & Compliance)
Tasks
- Administer policy attestation program
- Conduct SaaS application security assessment
- Conduct vendor security assessments
- Coordinate ISO 27001 internal audit evidence collection
- Coordinate information security policy review cycle
- Coordinate phishing simulation campaigns
- Deliver new hire security onboarding briefings
- Maintain AI risk log
- Maintain approved SaaS application catalog
- Maintain corrective action plan tracker
- Maintain data processing agreement inventory
- Maintain enterprise security risk register
- Maintain shadow IT risk log
- Maintain vendor risk register and reporting
- Manage SOC 2 Type II evidence collection
- Manage policy exception log
- Manage vendor re assessment cycle
- Monitor GDPR HIPAA CCPA compliance obligations
- Own security awareness training program
- Prepare security dashboard for security risk committee
- Support risk acceptance memos
- Update shadow IT risk log
Perks/Benefits
- N/A
Skills/Tech-stack
Action tracking | Awareness Training | CCPA | Corrective Action | Corrective Action Tracking | Data Classification | Data Processing | Data processing agreement | Encryption | Evidence collection | GDPR | GRC platforms | HIPAA | ISO 27001 | NIST | NIST CSF | NIST RMF | Phishing Simulations | Policy Management | ROPA | Risk Assessment | Risk Management | Risk register | SAML | SIG Lite | SOC 2 | SSO | Security Awareness Training | Security awareness | Third-Party Risk | Third-party risk management | Vendor Risk | Vendor Risk Assessment
Education
N/A
Roles
Analyst | Compliance Analyst | GRC Analyst | Security | Security Compliance Analyst
Related jobs
-
Information Security: Compliance Analyst I USD 80K-126KCompliance reporting | Evidence collection | FISMA | FedRAMP | Gap AnalysisMid-level Full TimeBurlingame, California19h ago
-
Senior Cyber Security Analyst USD 110K-149KCause analysis | Control monitoring | Dashboard Reporting | Enterprise Risk | Enterprise Risk Management401k company match | Career growth support | Flex work weeks | Hybrid work schedule | Paid time offSenior-level Full TimeUSA VA Falls Church - 3150 …21h ago
-
Cyber Security Entrepreneur in Residence USD 260K-330KAI Agent | AI agent security | AWS | Access Management | Adversarial TestingFast-paced startup environment | Opportunity to commercialize products | Public speaking opportunities | Remote work flexibilityMid-level Full TimeNew York City1d ago
-
Cyber Security Entrepreneur in Residence USD 260K-330KAI Governance | AI Safety | AWS | Access Management | Adversarial TestingFlexible schedule | Remote workSenior-level Full TimeChicago1d ago
-
Staff IAM Engineer USD 170K-190KAccess Control | Active Directory | Azure | Endpoint Security | Entra ID401k match | Commuter benefits | Compassionate leave | Health coverage | Hybrid work stipendSenior-level Full TimeSan Francisco1d ago
-
Cloud Security | Endpoint protection | Firewall Rules | ISO 27001 | Identity Management401k match | Digital wellness tools | Employee assistance program | Medical, dental, and vision coverage | Paid HolidaysSenior-level Full TimeRemote, United States R1d ago
-
Sr. Associate, Information Security USD 125K-174KAWS | Access Management | Access reviews | Azure | Cloud SecuritySenior-level Full TimeChicago, IL1d ago
-
SAP Application Security Analyst USD 70K-136KAccess Control | Access Management | Access reviews | Agile | Audit ReportingAgile team environment | Secret Clearance Preparation | Travel up to 25 percentMid-level Full TimeWashington, DC1d ago
-
Identity and Access Management, Consultant USD 91K-125KAccess Control | Access Management | Active Directory | Ansible | Audit and complianceHybrid work environment | In-office two days per weekMid-level Full TimeEl Dorado Hills, CA, United States1d ago
-
Sr. Manager, Security Analytics USD 135K-198K800-53 | Application Architecture | Audit management | Awareness Training | Cloud HostingSenior-level Full TimeRaleigh, NC1d ago
-
Sr. Manager, Security Analytics USD 135K-198K800-53 | Audit management | Awareness Training | Device Management | FedRAMPSenior-level Full TimeSalt Lake City, UT1d ago
-
Senior IRM Analyst USD 97K-189K800-53 | Control Assessment | DORA | FedRAMP | GDPR401k plan | Employee accommodations | Employee stock purchase program | Fertility and adoption assistance | Flexible paid time offSenior-level Full TimeUnited States R1d ago
-
Enterprise Risk Management Analyst USD 75K-103KData analytics | Enterprise Risk | Enterprise Risk Management | Governance | Microsoft ExcelHybrid work scheduleEntry-level Full TimeAtlanta, GA, United States1d ago
-
Senior Information Security Analyst USD 100K-154KAudit Readiness | CIS Controls | CSPM | Cause analysis | DLP401k matching | Dental insurance | Employee referral program | FSA | Generous paid time offSenior-level Full TimeOverland Park, KS1d ago
-
Manager, Security Posture Validation - USDS USD 114K-170KAdversary Emulation | Amazon Web Services | Application Security Testing | Archer GRC | Cloud infrastructureMid-level Full TimeWashington D.C., District of Columbia, United …1d ago
-
Manager, Security & Privacy Testing - USDS USD 110K-189KAndroid security | Application Security | Blue Team | CCPA | COPPAMid-level Full TimeWashington D.C., District of Columbia, United …1d ago
-
Technical Program Manager, Security USD 147K-208KAbuse prevention | Audit Readiness | Compliance | Cross-Functional Collaboration | Cross-functionalSenior-level Full TimeAustin, TX | Washington, DC | …1d ago
-
Investigator, WhatsApp Integrity Investigations USD 110K-196KBehavioral Analysis | Data Science | False positive reduction | Fraud Detection | Generative AIMid-level Full TimeMenlo Park, CA1d ago
-
AWS | Access Control | Access Management | Access Security | Active DirectoryContract employment | Remote work optionSenior-level Full TimePittsburgh, PA, United States R1d ago
-
Test Engineer - Embedded SW USD 130K-160KAccess Control | Continuous authorization | DOD | FISMA | Incident ResponseSenior-level Full TimeNew London, CT, United States1d ago
-
Security Control Assessor USD 135K-216KACAS | Assessment and Authorization | Assessment tools | Authentication | AvailabilitySenior-level Full TimeLinthicum, MD, United States1d ago
-
Incident Handler/Security Analyst - 3rd shift USD 81K-110KComputer forensics | Cyber Threat | Cyber Threat Intelligence | Data Recovery | EncryptionCorporate discounts | Employee assistance program | Enhanced Biometrics ID Verification Screening | Flexible work environment | Internal mobility programMid-level Full TimeWashington, D.C., DC, United States1d ago
-
Security Analyst USD 81K-110KComputer forensics | Cyber Threat | Cyber threat analysis | Cybersecurity | Data RecoveryCorporate discounts | Employee Assistance Program (EAP) | Flexible work environment | Internal mobility program | Learning and development platformMid-level Full TimeWashington, D.C., DC, United States1d ago
-
Systems Analyst III USD 115K-191KCross domain | Cross-Domain Solutions | Cybersecurity | DISA compliance | Desktop infrastructureSenior-level Full TimeNorth Charleston, SC, United States1d ago
-
Activity monitoring | Confluence | Database activity monitoring | Detection engineering | Event management401k match | Commuter benefits | Disability benefits | Health benefits | Life insuranceSenior-level Full Time102462-AZ-B Building, Chandler Campus, United States1d ago