Cybersecurity GRC Analyst

Dragonfli GroupBoston, MA
Match Resume

About The Position

Dragonfli Group is sourcing a Cybersecurity GRC Analyst for a client facing engagement. This is a pure-play GRC role supporting an active information security program. The right candidate brings deep compliance execution experience, strong written communication skills, and the ability to operate independently in a complex, high-standards environment.

Requirements

  • 2-5+ years supporting information security in large, complex environments
  • Strong working knowledge of ISO 27001, NIST CSF, and related compliance frameworks
  • Excellent written and interpersonal communication skills; able to produce client-ready deliverables
  • Bachelor's degree in computer science, information security, or related field; equivalent experience considered
  • Preferred certifications: CISSP, CISA, CompTIA Security+
  • Trust center platform experience (Vanta, SafeBase, etc.) a plus
  • Law firm or professional services environment experience a plus
  • GRC platform experience (OneTrust, Archer, ServiceNow GRC)
  • Security questionnaire automation tools (Whistic, Responsive, Loopio)
  • Third-party risk management (TPRM) fundamentals
  • SOC 2 Type I/II audit support experience
  • GDPR, CCPA, or other privacy regulation familiarity
  • Evidence collection and audit artifact management
  • Policy lifecycle management
  • Risk register development and maintenance
  • Business continuity and disaster recovery documentation support
  • Strong proficiency in Microsoft 365 (SharePoint, Teams, Word, Excel) for documentation and collaboration
  • Ability to interface directly with client legal, compliance, and IT stakeholders
  • Experience working in a ticketing or GRC workflow environment (Jira, ServiceNow)

Responsibilities

  • Complete client security questionnaires and audit responses using established firm precedent; maintain organized submission records
  • Support compliance monitoring and enforcement against ISO 27001, ISO 42001, NIST, and organizational policies
  • Conduct and document risk assessments, policy reviews, and audit evidence gathering
  • Develop and maintain cybersecurity policies and procedures aligned to regulatory requirements
  • Deliver and track compliance training and awareness initiatives; report outcomes to leadership
  • Support implementation of trust center platforms (Vanta, SafeBase, or equivalent)
  • Assist with AI/ML-enabled GRC monitoring, compliance gap identification, and policy violation detection

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Number of Employees

1-10 employees

Job Search Resources

Similar Cybersecurity GRC Analyst job opportunities

🔥 New JobCybersecurity GRC Analyst
Dragonfli Group
Dragonfli Group • Dayton, OH13h
🔥 New JobCybersecurity GRC Analyst
Dragonfli Group
Dragonfli Group • Washington, DC14h
Cybersecurity Senior Analyst GRC
CenterPoint Energy
CenterPoint Energy • Houston, TX2d
Cybersecurity Analyst, IT GRC
Aprio
Aprio • Atlanta, GA12d • $80,000 - $120,000 • Hybrid
🔥 New JobCybersecurity GRC Lead
Glaukos
Glaukos • Burlington, MA3d
GRC Analyst
Direct Travel
Direct Travel11d • Remote
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service