GRC Analyst - Cybersecurity (Remote - US)

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a GRC Analyst – Cybersecurity in the United States.

We are seeking a skilled GRC Analyst to drive governance, risk, and compliance initiatives for critical multi-domain systems in both classified and unclassified environments. In this role, you will ensure cybersecurity standards are met, manage risk assessments, and provide actionable guidance to strengthen system security and authorization. You will collaborate closely with mission teams, development groups, and assessors to maintain compliance and support certification efforts. This is a hybrid position offering a dynamic, fast-paced environment with opportunities to advance through technical and leadership pathways. The ideal candidate brings deep understanding of RMF, NIST frameworks, and security control implementation while maintaining meticulous attention to documentation and compliance processes.

Accountabilities:

·        Lead systems through the Risk Management Framework (RMF) Assessment and Authorization process.

·        Implement, assess, and validate NIST 800-53 security controls; maintain comprehensive documentation including SSPs, POA&Ms, SCTMs, and other artifacts.

·        Support CMMC certification preparation and execution, ensuring systems meet all regulatory requirements.

·        Conduct security control assessments, track vulnerabilities, and coordinate remediation with development teams.

·        Collaborate with security assessors, authorizing officials, and cross-functional teams to ensure compliance and alignment.

·        Maintain and report evidence of compliance using tools such as eMASS, Xacta, and Excel.

·        Active Top Secret security clearance required; eligibility for TS is mandatory if not currently held.

·        Deep knowledge of RMF process, NIST frameworks, and security control implementation.

·        Strong technical writing, documentation, and reporting skills.

·        Experience conducting security assessments and guiding system authorizations, including classified systems.

·        Familiarity with CMMC requirements and compliance strategies.

·        Ability to translate complex requirements into actionable controls and maintain meticulous records.

·        U.S. citizenship is required to meet security clearance eligibility.