Senior Cybersecurity GRC Analyst

BLUE ORIGIN•Seattle, WA

About The Position

At Blue Origin, we envision millions of people living and working in space for the benefit of Earth. We’re working to develop reusable, safe, and low-cost space vehicles and systems within a culture of safety, collaboration, and inclusion. Join our team of problem solvers as we add new chapters to the history of spaceflight! This role is part of Enterprise Technology (ET), where we’re developing the digital infrastructure needed to build the road to space, with an emphasis on digital capabilities required to advance Blue Origin’s mission. Enterprise Technology is the center of excellence for digital technology at Blue Origin, providing oversight and governance to align technology and business strategies. As part of a passionate and accomplished team of Cyber Security experts, you will protect and secure the infrastructure supporting various corporate and spaceflight systems. We are looking for someone to apply their technical expertise, leadership skills, and commitment to quality to positively impact safe human spaceflight. Passion for our mission and vision is required!

Requirements

Bachelor's degree or certification in cybersecurity, or equivalent industry experience
Experience with cybersecurity standards including NIST, ISO 27001, ISO 28000, SOC, and privacy frameworks
Experience with 3rd party information security audits including CMMC and ISO
10+ years experience in information security risk management
Experience with security compliance and vulnerability scanning technologies
Experienced in cloud security
Knowledgeable of security strategies and practices within the manufacturing industry
Ability to earn trust, maintain positive and professional relationships, and contribute to a culture of inclusion

Nice To Haves

Experience in the aerospace and/or manufacturing industries
Experience with AI security

Responsibilities

Use automation for various GRC tasks including scorecard creation, roadmap updates, and compliance evidence gathering.
Use outcome-driven metrics and key performance indicators to measure cybersecurity effectiveness and drive improvements and efficiencies.
Assess compliance using monitoring technologies and regular audits and reviews, identifying areas of non-compliance and recommending corrective actions.
Generate reports on risk assessments, compliance status, and control effectiveness to communicate findings to stakeholders at various levels within the organization.
Support internal and external audits by providing documentation and supporting evidence of compliance.
Support policies and procedures maintenance aligned with in-scope security frameworks, regulations, and internal standards to manage identified risks effectively.
Conduct regular risk assessments to identify potential threats and vulnerabilities across the organization, analyzing their impact and likelihood of occurrence.

Benefits

Medical, dental, vision, basic and supplemental life insurance, paid parental leave, short and long-term disability, 401(k) with a company match of up to 5%, and an Education Support Program.
Up to four (4) weeks per year based on weekly scheduled hours, and up to 14 company-paid holidays.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume