Senior GRC Analyst

Delinea•Redwood City, CA

2d•Remote

About The Position

Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence, Delinea’s leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle – across cloud and traditional infrastructure, data, SaaS applications, and AI. It is the only platform that enables you to discover all identities – including workforce, IT administrator, developers, and machines – assign appropriate access levels, detect irregularities, and respond to threats in real-time. With deployment in weeks, not months, 90% fewer resources to manage than the nearest competitor, and a 99.995% uptime, Delinea delivers robust security and operational efficiency without compromise. Learn more about Delinea on Delinea.com, LinkedIn, X, and YouTube. Join our passionate, global team at Delinea and help us make the world a safer and more secure place. Our success is driven by world-class product leadership, outstanding engineers, and strategic investment from TPG. We value diversity, innovation, and a culture of respect and fairness. If you're ready to push boundaries and challenge the status quo in security, we want to hear from you. Apply today to help us achieve our mission. Delinea’s Cybersecurity organization is seeking a skilled Senior GRC Analyst to play a key role in ensuring Delinea’s alignment and adherence with policies, practice and maintaining the company’s cybersecurity risk management framework across both commercial and regulated public sector environments. This role requires strong cross‑functional partnership to ensure compliance and drive continuous improvement, including alignment with U.S. public sector standards such as FedRAMP and GovRAMP, as well as broader risk‑management and improvement initiatives. This is a remote position based in the U.S. and reports to the Director of Governance, Risk, and Compliance.

Requirements

Bachelor’s degree in computer science, Information Technology, Business Administration, or a related field.
7+ years of relevant work experience.
Working knowledge of FedRAMP requirements, including:
NIST SP 800-53 Rev. 5 or FedRAMP 20x security controls
FedRAMP Moderate or High Baseline
FedRAMP PMO processes (Readiness Assessment, 3PAO interactions, ATO phases)
Understanding of federal cybersecurity frameworks (NIST 800-37 RMF, FIPS 199/200, etc.)
Experience in creating or maintaining System Security Plans (SSPs), Policies, procedures, and SOPs, Control implementation statements, and POA&M (Plan of Action & Milestones)
Experience supporting SOC 1, SOC 2 and PCI-DSS audits for cloud based services
Strong verbal and written communication, analytical and people skills.

Nice To Haves

Familiarity with Common Criteria concepts, including Security Targets and evaluation artifacts.
Familiarity with Cybersecurity Maturity Model Certification (CMMC)
Cybersecurity certifications (e.g. CISSP, CISA, CRISC, CIPP, etc.).
Familiarity with OneTrust or other GRC tools.
Familiarity with Jira and Confluence

Responsibilities

Enforce cybersecurity Process Risk and Control frameworks that are rationalized against applicable laws and standards.
Support FedRAMP Moderate and/or High authorization and ongoing compliance
Coordinate with 3PAOs, sponsoring agencies, and internal stakeholders during initial assessment.
Assist in developing and maintaining FedRAMP-required documentation.
Coordinate evidence collection for RAR, SAR, and continuous monitoring.
Track security control implementation with engineering and IT teams.
Maintain and update the POA&M and remediation timelines.
Help manage ongoing FedRAMP continuous monitoring activities (e.g., monthly scans, annual assessments).
Perform cybersecurity risk assessments and maturity assessments.
Conduct control readiness assessments to evaluate design, implementation, and effectiveness.
Execute strategy for improving efficiency and ensuring organizational procedure alignment to maintain compliance with industry standards.
Lead continuous control monitoring activities using GRC and compliance automation platforms.
Function as a trusted advisor for business partners on the design and effective operation of controls.

Benefits

We offer competitive salaries, a meaningful bonus program, and excellent benefits, including healthcare insurance, as well as pension/retirement matching, comprehensive life insurance, an employee assistance program, time off plans, and paid company holidays.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume