Security Compliance Analyst

Job Summary

A company is looking for a Security Governance Risk & Compliance (GRC) Analyst.

Key Responsibilities

• Manage and implement complex controls frameworks for large systems, including Cloud infrastructure and SaaS services
• Conduct risk assessments and recommend remediation and risk mitigation strategies
• Facilitate third-party vendor onboarding and annual review processes

Required Qualifications

• Minimum of 5+ years of experience in information security, IT audit, or IT Risk Management
• Deep understanding of compliance frameworks such as CMMC, NIST, FedRAMP, SOC 2, and PCI
• Strong technical knowledge of modern cloud technologies and familiarity with GRC and SIEM tools
• Experience in training and coaching teams on security and privacy practices
• Hands-on experience with vulnerability scanning and cloud security posture management tools