Grc Analyst

• Monitor and track the implementation of security controls, ensuring compliance with NIST 800-171 and associated frameworks
• Assist in developing and enforcing security baselines, configurations, and standards in collaboration with IT teams
• Evaluate system changes to ensure alignment with organizational policies and compliance requirements
• Work with technical teams to uphold principles such as least privilege and deny-by-default using tools like Microsoft Entra ID, Intune, and Tanium
• Conduct periodic risk assessments for contracts, software, and privileged account requests
• Support internal audits and readiness reviews by preparing and maintaining documentation related to secure enclave operations
• Enhance and maintain organizational policies, procedures, standards, and audit trails to align with compliance frameworks
• Participate in vendor evaluations, risk assessments, and reviews of control effectiveness
• Ensure timely resolution of findings from audits and compliance assessments

• 1–3 years of experience in a GRC, cybersecurity, compliance, or audit-related role
• Knowledge of NIST 800-171, FedRAMP, or similar regulatory frameworks
• Familiarity with tools like Microsoft Entra ID (Azure AD), Intune, Tanium, and SharePoint
• Strong understanding of change management, access control, and configuration management processes
• Excellent skills in communication, documentation, and team collaboration
• Ability to interpret technical information and create compliance-focused deliverables
• Certifications such as CompTIA Security+ or other related credentials are a plus

Certifications such as CompTIA Security+ or other related credentials

• medical, vision, dental, and life and disability insurance
• eligible to enroll in our company 401(k) plan