Governance, Risk and Compliance Analyst

The Governance, Risk, and Compliance (GRC) Analyst supports compliance and governance initiatives for both government and higher education environments. Core responsibilities include implementing and maintaining National Institute of Standards and Technology (NIST)-compliant frameworks, supporting Cybersecurity Maturity Model Certification (CMMC) requirements, and ensuring adherence to security controls across diverse environments. The GRC Analyst will collaborate with teams to assess risk, manage compliance documentation, and ensure that security frameworks and controls are implemented effectively and efficiently. This position requires occasional availability outside of traditional working hours to address urgent business needs, including responding to security incidents, supporting software deployments, resolving software issues or system breaks, and addressing other critical operational requirements. The GRC Analyst mitigates disruption to business operations by promptly addressing issues as they arise. This is a hybrid role requiring a minimum of three days per week in the Boston office to facilitate collaboration, direct engagement with staff and students, and contribute to a dynamic on-campus work environment. Applicants must be authorized to work in the United States. The University is unable to sponsor this role, now or in the future.