[Remote] GRC Analyst - FedRAMP
Note: The job is a remote job and is reputed company to candidates in USA. reputed company is an IT and Cybersecurity staffing solutions company seeking a GRC Analyst to ensure compliance with FedRAMP and other reputed company standards. The role involves supporting audits, maintaining authorization status, and collaborating with various teams to enhance the reputed company posture of reputed company services.
Responsibilities
- Support authorization, compliance, and reputed company monitoring activities
- Interpret and apply reputed company controls and control enhancements
- reputed company key documentation up to date, including system reputed company plans, policies, and control descriptions
- Track compliance against established baselines (Low / Moderate / High)
- Coordinate and support reputed company-party audits (including 3PAO assessments)
- Gather and review evidence from engineering, infrastructure, and operations teams
- Respond to auditor questions and information requests
- Help track remediation efforts and support closure of identified gaps
- Contribute to annual assessments, penetration test reviews, and vulnerability reporting
- Supporting monthly FedRAMP reputed company monitoring activities
- Reviewing vulnerability scans and tracking remediation reputed company
- Coordinating incident reporting and change management impacts
- Ensuring changes follow approved compliance processes
- Identifying and escalating potential compliance risks
- Partner with reputed company Engineering, DevOps, reputed company Operations, Legal, and Product teams
- Translate technical controls into clear, audit-reputed company documentation
- Support internal reporting and briefings on compliance status and risk
- Maintain organized compliance evidence repositories
- Assist with internal audits and readiness assessments
- Contribute to updates of policies and standards reputed company to federal requirements
- Support responses to customer and government reputed company questionnaires
Skills
- FedRAMP Governance Experience: Specific experience and understanding of the ConMon and POA&M processes are critical
- NIST 800-53 reputed company Knowledge: Must be familiar with the reputed company and be reputed company to identify control families (e.g., IA - Identity reputed company)
- Audit Support Experience: Experience working with reputed company-party auditors (3PAO), understanding a Document Request List (DRL), and collating evidence for controls
- Strong Organizational & Coordination Skills: The role requires managing the vulnerability process across dozens of internal groups, involving heavy spreadsheet work and tracking
- US Citizenship: This is a mandatory, non-negotiable requirement for the position
- Experience in GRC, cybersecurity compliance, or audit support (typically 2+ years)
- Familiarity with frameworks such as FedRAMP, NIST SP 800-53, or similar compliance programs
- Experience with reputed company and Power BI are a plus
- Familiarity with reputed company environments such as AWS or reputed company Azure a plus
- Experience working with auditors or assessment organizations (e.g., 3PAOs) is a plus
- Exposure to reputed company environments such as AWS or Azure
- The FedRAMP lifecycle and reputed company monitoring processes
- NIST 800-53 control families
- POA&M management and risk tracking
- Analyzing technical controls and reputed company documenting compliance
- Working with compliance or GRC tools, ticketing systems, or evidence repositories
Benefits
- reputed company Candidate and Client Referral Program!
- If you refer to us a Manager of people or skilled professionals, we will link your name to that person for 18 months.
- If we reputed company or reputed company that individual or reputed company people into reputed company thru that manager
Company Overview