Senior GRC Analyst
Career Team
About Career TEAM: Founded in 1996, Career TEAM is a socially conscious organization dedicated to closing the opportunity divide through government-funded workforce development programs. Our award-winning portal, Career EDGE, leverages cutting-edge software to transform lives across the U.S. Behind every secure, compliant experience on our platform is a robust governance framework trusted by state agencies nationwide.
Position Overview
We are seeking a highly autonomous Senior GRC Analyst to take ownership of core elements within our security and compliance program. Operating entirely remotely from the Philippines, you will mature the documentation backbone that powers our GovRAMP, FedRAMP, and state-level authorizations. This is a senior, self-directed role designed for an expert who treats compliance documentation as a craft rather than a checkbox, partnering directly with security leadership and engineering to drive continuous improvement.
Key Responsibilities
- Compliance Program Ownership: Maintain and continuously improve the System Security Plan (SSP), policies, procedures, and standards aligned to NIST 800-53 and SOC 2 frameworks.
- POA&M & Evidence Lifecycle: Manage the Plan of Action and Milestones (POA&M) lifecycle, track remediation evidence, and coordinate monthly continuous monitoring deliverables with the U.S. security team and 3PAOs.
- Third-Party Risk Management: Run the vendor risk program end-to-end, evaluating security questionnaires, conducting due diligence, and enforcing subcontractor flow-down obligations.
- Enterprise Risk Maintenance: Maintain the enterprise risk register, facilitate risk acceptance decisions, and translate technical cyber risks into business impact for executive stakeholders.
- Policy & Awareness Administration: Version-control the policy library, administer security awareness training, conduct phishing simulations, and author tabletop exercise scenarios.
Required Skills & Qualifications
- 7+ years of hands-on GRC experience, with a strict minimum of 3 years dedicated to FedRAMP, GovRAMP, StateRAMP, TX-RAMP, or CMMC programs within a SaaS environment.
- Demonstrated track record of independently authoring SSPs, POA&Ms, and continuous monitoring deliverables for successful authorizations.
- Deep working knowledge of NIST 800-53, NIST 800-171, FIPS 199/200, and SOC 2 (Type II) frameworks.
- Exceptional written English proficiency, ensuring documents meet the rigorous standards of state auditors, executives, and 3PAOs.
- Location & Shift Context: Must be permanently located in the Philippines and fully available to work a dedicated night shift to maintain overlap with the U.S. team.
Preferred Strategic Indicators (Nice to Have)
- Bachelor’s degree in Cybersecurity, Information Systems, or a related field.
- Relevant industry certifications such as CISSP, CISA, CRISC, CGRC/CAP, or ISO 27001 Lead Implementer.
- Hands-on experience with modern GRC tooling (Drata, Vanta, Hyperproof, ServiceNow GRC) and prior work dealing with U.S. state government customers.
What We Offer
- The opportunity to act as a senior individual contributor with real, unlayered ownership over a defined portion of a high-stakes GRC program.
- A fully remote work environment built on trust, continuous improvement, and high accountability.
- Direct impact on a product that actively helps thousands of individuals access crucial workforce and educational services.
- Direct partnership with executive leadership and engineering—no micromanagement, no excessive layers.
- ...Role Hotman Group is a boutique cybersecurity and GRC consulting firm doing meaningful work for clients who need GRC... .... What You Will Do As an Experienced or Senior GRC Analyst at Hotman Group you will work directly with clients to help them...SeniorPermanent employmentFull timeContract workRemote work
- ...About the role We’re hiring a Senior GRC Analyst to help scale Radar’s security and compliance programs, with a focus on third‑party risk and modern SaaS governance. You’ll partner with Engineering, Product, IT, Legal, Sales, and Security teams to evaluate vendors, manage...SeniorWork at officeRemote work
- ...Oura is seeking a Senior Governance, Risk, Compliance (GRC) Analyst to join the Security Team in New York City. This role involves leading GRC initiatives, managing compliance policies, and performing risk assessments. Candidates should have over 6 years of experience...SeniorRemote workFlexible hours
$140k - $165k
...Senior GRC Analyst Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and...SeniorLocal areaRemote workWorldwideFlexible hours$110k - $130k
...Senior GRC Analyst This is a unique opportunity to be the hands-on GRC analyst at a high-growth SaaS company that already operates at a strong external standard (SOC 2 Type 2) and sells to discerning legal, tax, and public-sector clients. You'll unblock deals, strengthen...SeniorWork at officeImmediate startRemote work- ...Senior GRC Analyst | Deltek, Inc You will be part of the GRC team responsible for assessment, audits of cloud environments, information systems, risk management, and security tools to ensure adherence to applicable frameworks, laws, and regulations. As a Senior GRC...SeniorRemote work
$161.6k - $202k
...- and that responsibility demands a security and compliance program that scales with the business. We're building out our dedicated GRC team to improve and mature our program! You'll join the Security team and work across four pillars: security certifications (HITRUST...SeniorWork from homeFlexible hours- Inceed is seeking a skilled Senior GRC Analyst to support DoD and federal compliance programs in a fully remote role. The candidate will join a dynamic team, ensuring compliance for government and defense-related systems while working on CMMC 2.0 Level 2 implementation...SeniorRemote job
- Ellenco Estágios e Treinamentos is seeking a Senior Information Security GRC Analyst to manage security audits and compliance efforts. The role requires over 10 years of experience in information security and a strong understanding of NIST standards. This position allows...SeniorRemote job
- AlixPartners in Southfield, MI is looking for an IS GRC Senior Analyst - Risk & Compliance responsible for understanding security risks and compliance requirements. This position offers a hybrid work environment, combining in-office and remote work to support work-life...SeniorWork at officeRemote work
- ...ROLE, NOW OR IN THE FUTURE. (e.g., H-1B, STEM OPT, TN, etc.)About the RoleAs a member of the Information Security team, the IS GRC Senior Analyst - Risk & Compliance will be responsible for understanding the firm's security risk and compliance requirements. You will...SeniorFull timeContract workWork experience placementH1bRemote workVisa sponsorshipRelocation packageMonday to Friday
$110k - $120k
...fandom. Ready to reimagine the DFS industry together? Overview: PrizePicks is seeking an experienced and detail-oriented Senior GRC Analyst to join our expanding governance programs. This role will help drive the continued development and maturation of the organization...SeniorFull timeRemote workWork visaFlexible hours- ...Senior Governance, Risk and Compliance (GRC) Analyst Bamboo Health is the leader in Real-Time Care Intelligence™ solutions aimed at improving lives for everyone experiencing physical and behavioral health challenges. We are driven by our mission to empower clients...SeniorContract workLocal areaRemote work
$95k - $105k
...Job Description Job Description Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven... ...dues and subscription spend under budget. About the Role The Senior GRC Analyst acts as a strategic lead to advance security and...SeniorTemporary workCurrently hiringRemote workRelocation$143k - $165k
...driven individuals who are motivated to make a meaningful impact on healthcare at scale. About the role: We are looking for a Senior GRC Analyst to join our Technical Compliance team to ensure Garner's compliance posture across security frameworks such as ISO 27001, SOC...SeniorWork at officeRemote workFlexible hours- ...Job Description Job Description C2 Labs is hiring a Senior FedRAMP Consultant (GRC Analyst III equivalent) to act as a lead technical writer for FedRAMP authorization packages and ongoing ConMon operations. If you can translate real-world cloud security implementations...SeniorFor contractorsRemote work
- ...Trustmark in Ridgeland, MS is seeking an IT GRC Analyst to oversee governance, risk, and compliance activities. The role includes coordinating compliance efforts, executing IT assessments, and developing policies. The ideal candidate will hold a Bachelor's in information...Remote work
$30 - $55 per hour
...Governance, Risk & Compliance (GRC) Analyst $30-55/hr Remote Freelance CODING About the Role We're looking for experienced GRC professionals to help train and evaluate cutting-edge AI systems. At Alignerr, we partner with the world's leading AI research labs —...Ongoing contractFreelanceRemote workFlexible hours- ...Governance, Risk & Compliance (GRC) Analyst (AI Training) About the Role We're looking for experienced GRC professionals to help evaluate and improve AI systems being trained on real-world security, compliance, and risk scenarios. Your practitioner knowledge...Hourly payOngoing contractContract workFreelanceRemote workFlexible hours
- ...Governance, Risk, & Compliance (GRC) Analyst Washington, DC Remote Full-Time About This Role As a GRC Analyst, you will help organizations navigate the complex landscape of cybersecurity compliance and risk management. You will work directly with clients to assess their...Full timeRemote work
- ...Overview The IT GRC Analyst operates within the enterprise Cybersecurity Operations function and supports the Information Technology, Information Systems, and other technology teams aligned under the Chief Information Officer. This role executes governance, risk, and compliance...Work at officeRemote work
- ...Location : Remote Reports to : GRC Manager Time commitment : minimum 20 hours weekly Headcount: 2 people Summary: The GRC analyst with a legal background is a critical hire for our rapid team. You will be responsible for building and maintaining the...Remote work
- ...Governance, Risk & Compliance (GRC) Analyst (AI Training) About the Role We're partnering with the world's leading AI research labs to build smarter, more trustworthy AI - and we need practitioners who know how GRC actually works in the real world. Your expertise...Hourly payOngoing contractContract workFreelanceRemote workFlexible hours
- ...A cybersecurity compliance consulting firm is looking for a GRC Analyst to help organizations manage cybersecurity compliance and risk. This fully remote position involves conducting assessments, developing security policies, supporting compliance audits, and collaborating...Remote work
$134k - $202k
...customers, growing our community, or shaping our story, you’ll help define what comes next. About the role: We are looking for a GRC Analyst to join our Governance, Risk & Compliance (GRC) team. You will have the opportunity to manage and maintain ongoing compliance with...Work at officeRemote workWork from homeWorldwideMonday to FridayFlexible hours- ...rapidly growing boutique firm as a full-time, remote Entry-Level GRC Analyst. This is a contract-to-hire position with top performers... ...cybersecurity and compliance programs. You’ll work side‑by‑side with senior team members and partners to: Assess and improve client...Permanent employmentFull timeContract workRemote work
- A cybersecurity firm is seeking an Entry-Level GRC Analyst in Fort Worth, Texas. This remote position focuses on helping clients strengthen their cybersecurity and compliance programs through various assessments and processes. Ideal candidates should have a relevant degree...Permanent employmentRemote work
- ...Alignerr is seeking a Governance, Risk & Compliance (GRC) Analyst to work on innovative AI systems. This fully remote role allows for 10–40 hours per week. Candidates will analyze security policies and evaluate compliance scenarios using major frameworks. The ideal candidate...Remote work10 hours per week
$130k - $175k
...GRC Analyst United States - Remote At Mesh, our mission is to enable consumers to pay and be paid with any asset. Today, trillions of dollars in tokenized assets exist but remain largely unusable for everyday commerce. Mesh is bridging this gap by making crypto payments...Work at officeRemote work2 days per week- ...Join our team as a GRC Analyst and play a key role in regulatory compliance, IT risk management, and security. You'll assess risks, support audits, and develop policies that align with industry standards. If you have a solid IT security background, experience in regulated...Casual workWork at officeWork from homeNight shiftWeekend work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior GRC Analyst. Be the first to apply!
- grc analyst Remote
- senior game producer Remote
- senior electronic design engineer Remote
- senior robotics software engineer Remote
- senior java software engineer Remote
- senior specialist Remote
- senior director corporate development Remote
- senior software test engineer Remote
- sr project engineer Remote
- sr. hr generalist Remote


