The Governance, Risk & Compliance (GRC) Analyst is responsible for supporting and maintaining the organization's cybersecurity governance, risk management, and compliance programs. This role works across Information Security, Engineering, Product, IT, and business stakeholders to ensure compliance with applicable regulatory, contractual, and industry security requirements. The GRC Analyst will assist in maintaining compliance with the NIST Cybersecurity Framework (NIST CSF), Cybersecurity Maturity Model Certification (CMMC), Cyber Essentials Plus, SOC 2, and ISO/IEC 27001 requirements through evidence collection, control monitoring, risk assessments, audit support, policy management, and remediation tracking.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Mid Level