Governance, Risk, and Compliance (GRC) Analyst
About The Position
As the Governance, Risk, and Compliance (GRC) Analyst, you will support and help mature Strider’s compliance program with a primary focus on U.S. government and defense-related frameworks, including CMMC, FedRAMP, and DoD Impact Levels (IL4/IL5). You will serve as a key partner to engineering, IT, product, legal, and leadership teams to help ensure Strider meets regulatory obligations while enabling business growth. This role blends hands-on execution with opportunities to grow program ownership skills in a fast-moving, mission-driven environment. Our security team operates with transparency, accountability, and collaboration to continuously strengthen Strider’s security and compliance posture.
Requirements
- 2–5 years of experience in governance, risk, and compliance, information security, or a related field.
- Exposure to or working knowledge of CMMC, FedRAMP, and/or DoD Impact Level environments (IL4/IL5).
- Working knowledge of NIST 800-53, NIST 800-171, RMF, and related standards.
- Experience operating in cloud environments (AWS, Azure, or GCP), preferably in regulated SaaS contexts.
- Experience participating in or supporting audits, assessments, and remediation tracking efforts.
- Excellent written and verbal communication skills with the ability to influence across teams.
Nice To Haves
- Familiarity with compliance automation or GRC tooling.
- Experience in startup or high-growth environments.
- Background supporting government, defense, or intelligence community clients.
- Relevant certifications (e.g., CISSP, CISM, CRISC, CISA).
Responsibilities
- Support and contribute to Strider’s GRC program with emphasis on CMMC, FedRAMP, and IL-5 compliance.
- Assist with readiness, assessment, and continuous monitoring activities for government compliance frameworks.
- Develop, maintain, and improve security policies, standards, and procedures aligned to NIST 800-53, NIST 800-171, and related frameworks.
- Partner with engineering, IT, and cloud teams to implement and validate technical and administrative controls.
- Support internal and external audits, including coordination with third-party assessors and government stakeholders.
- Contribute to risk management activities across corporate systems, cloud infrastructure, products, vendors, and partners.
- Assist with vendor and third-party risk management efforts, including security reviews and contract requirements.
- Provide compliance reporting and support to leadership, contributing to strategic security planning as you grow in the role.
- Support employee security awareness and compliance training initiatives.
Benefits
- Competitive Compensation
- Company Equity Options
- Flexible PTO
- Wellness Reimbursement
- US Holidays (Office Closed)
- Paid Parental Leave
- Comprehensive Medical, Dental, and Vision Insurance
- 401(k) Plan
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
101-250 employees
