GRC Analyst (Public Sector)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
GRC Analyst (Public Sector): Executing and enhancing governance, risk, and compliance operations for the public sector with an accent on FedRAMP and GovRAMP certifications. Focus on managing vulnerability remediation, continuous monitoring, and automating compliance workflows using AI tools.
Location: Must be a U.S. Person (U.S. Citizen or Permanent Resident) residing in the United States
Salary: $95K – $115K
Company
is building the identity trust infrastructure for the digital economy to verify identities in real time and stop fraud.
What you will do
- Coordinate external 3PAO assessments and manage FedRAMP/GovRAMP controls and System Security Plans (SSP).
- Lead the continuous monitoring process and vulnerability management lifecycle across Security, Engineering, and DevOps teams.
- Oversee access controls, role-based access validation, and quarterly access certifications.
- Design and implement AI-enabled compliance workflows and machine-readable documentation using OSCAL.
- Serve as a security subject matter expert for public sector sales, RFPs, and contract negotiations.
- Perform gap analyses on evolving NIST standards and government requirements.
Requirements
- 5+ years of cybersecurity or identity management experience, including 1+ year in the public sector.
- Direct experience with FedRAMP, GovRAMP, and NIST frameworks (800-53, 800-63, 800-171).
- Experience using AI tools (e.g., ChatGPT, Gemini) and OSCAL formats to automate compliance.
- Must be a U.S. Person residing in the United States.
- Ability to obtain a U.S. OPM NACI clearance.
Nice to have
- Experience in regulated industries like financial services or healthcare with GDPR/CCPA knowledge.
- Professional certifications such as CISSP, CISM, CISA, or IAPP.
- Proven success leading certification initiatives for FedRAMP and GovRAMP.
Culture & Benefits
- Market competitive salary, equity, and annual discretionary performance bonus.
- Comprehensive benefits package for full-time roles.
- High-responsibility environment for those who think critically and act like owners.
- Remote-first work arrangement for US-based employees.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Похожие вакансии
Senior GRC Engineer (Cybersecurity)
Senior Security GRC Analyst (Fintech)
Manager, GRC – SOX Digital Transformation (IT Compliance)
Senior Security Engineer (GRC Fintech)
Senior Cloud Security Engineer (GenAI)