Cyber Security Analyst IV (Governance, Risk and Compliance)

OSC Global
81d$110,275 - $198,468
Match Resume

About The Position

The Cyber Security Analyst IV serves as a senior subject matter expert and program lead for the Governance, Risk, and Compliance (GRC) function supporting federal information systems. This position is responsible for defining RMF strategies, managing risk posture across multiple authorization boundaries and integrating privacy and cloud compliance into enterprise governance frameworks. The analyst provides executive-level insights on compliance performance and authorization readiness.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Assurance, or a related technical discipline.
  • At least eight (8) years of progressive experience in cybersecurity, including experience leading RMF and FISMA compliance in a federal or contractor environment.
  • Ability to pass a background and drug screening.
  • Must have identification compliant with the Real ID Act at time of hire.
  • Must be able to obtain Department of Energy access badge.
  • Must be able to obtain and maintain a U.S. government security clearance.

Nice To Haves

  • Experience with enterprise GRC solutions (e.g., RegScale, ServiceNow GRC, Archer, eMASS, or similar).
  • Expertise in FedRAMP, supply chain risk and vendor assurance.
  • Demonstrated leadership in cross-domain governance (cyber, privacy and mission systems).
  • Experience with privacy program implementation and integration.
  • Relevant certifications such as CISSP, CISM, CRISC, CAP/CGRC, CIPP/US or similar.

Responsibilities

  • Oversee enterprise GRC and RMF programs, ensuring consistency across multiple system authorizations and enclaves.
  • Direct the risk management process, ensuring risk identification, quantification and treatment strategies align with federal and agency guidance.
  • Lead assurance activities, validating that control implementations meet the intent of NIST 800-53 Rev.5 requirements.
  • Govern SSP and POA&M quality, establishing standards, templates and review checkpoints across systems.
  • Oversee cloud service provider assessments, ensuring proper inheritance of FedRAMP controls and shared responsibilities.
  • Provide leadership for privacy and data governance, ensuring integration of PIA activities into RMF documentation.
  • Develop and track Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) to measure compliance and risk health.
  • Drive adoption of GRC automation, Continuous Controls Monitoring (CCM) and compliance analytics.
  • Serve as primary point of contact during audits, IG reviews and authorization package evaluations.
  • Mentor analysts and guide cross-functional teams on risk-informed decision-making and RMF optimization.
  • Perform other duties as appropriate and as assigned.

Benefits

  • Paid holidays
  • Paid time off
  • 401k with employer match
  • Dental insurance
  • Vision insurance
  • Health insurance plans through the Federal Employee Health Benefits (FEHB) program
  • Life and disability benefits

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Senior

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service