Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior GRC Analyst

Deltek

Senior GRC Analyst | Deltek, Inc

You will be part of the GRC team responsible for assessment, audits of cloud environments, information systems, risk management, and security tools to ensure adherence to applicable frameworks, laws, and regulations. As a Senior GRC Analyst, you will help maintain audit readiness and customer trust by ensuring our SaaS/cloud controls are well-documented, measurable, and aligned to applicable frameworks and regulatory expectations. Our goal is to help customers deliver successful projects with strong financial visibility, risk management, and on-time delivery—supported by secure, compliant products. Priorities: (1) Audit readiness and evidence delivery, (2) Control documentation, continuous monitoring, and (3) Risk/PoA&M reporting, assigned deliverables end-to-end and coordinating inputs from Engineering, Product, and IT. Core Role Requirements

  • As a senior analyst: lead cloud SaaS application through various audit frameworks and assessments such as SOC 1, SOC 2, NIST 800-53, NIST 800-171, CMMC, ISO, FedRAMP, PCI DSS, CIS, CSA CSM, or other information security regulations.
  • Lead and/or support end-to-end audit engagements (internal and external), including scoping, evidence requests, control testing, issue tracking, and final report support.
  • Assess and communicate administrative, technical, and security controls across major cloud platforms, including Oracle Cloud Infrastructure (OCI), Amazon Web Services (AWS), and Microsoft Azure.
  • Demonstrate the ability to apply project management practices to plan, track, and deliver security assessments, including hands-on use of Jira for epics/stories, backlog grooming, and stakeholder reporting.
  • Use automation and AI responsibly to streamline evidence collection, control mapping, and recurring reporting while maintaining appropriate human review.

Reporting & continuous improvement

  • Define, build, and maintain recurring GRC metrics and dashboards (monthly/quarterly), and present trends, risks, and remediation status to senior leadership.
  • Draft, maintain, and socialize security policies/standards and System Security Plans (SSPs), including control narratives, implementation details, and evidence references.
  • Communicate clearly with engineering, product, and auditors, and produce high-quality audit deliverables (e.g., narratives, evidence packages, and status reporting).
  • Manage risk register items and PoA&Ms end-to-end—identify control gaps, partner with stakeholders on remediation plans, and track progress through continuous monitoring.

Program ownership & documentation

  • Own (or serve as backup owner for) key GRC programs by maintaining procedures, SLAs, and artifacts for audits and customer requests (e.g., policy management and security due diligence questionnaires to support RFIs and RFPs).
  • Actively participate in initiatives aimed at enhancing team processes and procedures.
  • Help maintain and curate annual compliance training content and improve training process.
  • Interpret control requirements and regulatory obligations accurately, and translate them into clear, testable expectations for technical teams.
  • Participate in incident response reviews and RCAs by documenting control failures, corrective actions, and follow-up evidence for closure.

Qualifications

Technical Requirements Senior-level expectation includes independently leading audit workstreams, driving stakeholder follow-through, and owning evidence/control documentation through completion (years of experience are a guideline, but demonstrated scope and impact are key).

  • B.S. degree (Information Security, Computer Science, MIS, or equivalent program preferred) from an accredited college/university or equivalent experience.
  • Demonstrated experience supporting audits and compliance work across common frameworks (see framework list above), with demonstrated evidence collection, control testing, and remediation tracking.
  • Relevant combined experience with implementing and/or assessing: IT audit, IT risk management, Cloud security and compliance, internal audit function, Information Technology General Controls (ITGC), Information security operations.
  • Experience supporting government-related compliance efforts (e.g., FedRAMP- or DoD-aligned expectations) within cloud environments, including evidence packaging and stakeholder coordination.

Core Competencies

  • Works independently, exercises good judgment, and seeks guidance as needed.
  • Manages time effectively across multiple priorities and concurrent projects.
  • Demonstrates strong analytical and critical-thinking skills with solid business and technical acumen.
  • Collaborates effectively with diverse stakeholders, leveraging clear written & verbal communication.
  • Thrives in a fast-paced, collaborative environment and contributes to shared outcomes.
  • Follows directions from senior staff and supports peers to deliver high-quality, time-bound work.
  • Continuously learns through structured, on-the-job, and self-directed development.

Preferences

  • Hold (or be actively pursuing) relevant certifications such as CISA, CISSP, CCSK/CCAK, or major cloud security certifications (Azure/AWS/GCP), with active status preferred.
  • Demonstrable FedRAMP, ISO and SOC Security Framework experience desired.
  • Experience with effective AI usage, data analysis, report preparation, automation, and templating of repeat processes.
Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Senior GRC Analyst in United States vacancy
  •  ...be a US Citizen or Green Card holder NO THIRD PARTIES Only local candidates will be contacted We are seeking a highly motivated GRC Analyst to support the modernization and transformation of our Governance, Risk, and Compliance (GRC) program. This role is ideal for someone... 
    Senior
    Contract work
    Local area

    Liberty Personnel Services, Inc.

    Wilmington, DE
    1 day ago
  •  ...Role Hotman Group is a boutique cybersecurity and GRC consulting firm doing meaningful work for clients who need GRC...  .... What You Will Do As an Experienced or Senior GRC Analyst at Hotman Group you will work directly with clients to help them... 
    Senior
    Permanent employment
    Full time
    Contract work
    Remote work

    Hotman Group LLC

    United States
    23 hours ago
  •  ...Senior GRC Analyst - Toyota - 75 CTC -- Plano TX Responsibilities: Need auto experience Conduct compliance audits to ensure adherence to automotive cybersecurity standards and regulations. Project management - develop, maintain, and... 
    Senior

    3B Staffing LLC

    Plano, TX
    3 days ago
  •  ...About the role We’re hiring a Senior GRC Analyst to help scale Radar’s security and compliance programs, with a focus on third‑party risk and modern SaaS governance. You’ll partner with Engineering, Product, IT, Legal, Sales, and Security teams to evaluate vendors, manage... 
    Senior
    Work at office
    Remote work

    RADAR

    New York, NY
    1 day ago
  • ## Senior GRC AnalystApplylocations: Westerville, OHtime type: Full timeposted on: Posted Yesterdayjob requisition id: R-101927Kokosing...  ...looking for a Security Governance, Risk, and Compliance (GRC) Analyst to support and mature our security and compliance programs across... 
    Senior
    For contractors

    Kokosing Materials Inc

    Westerville, OH
    1 day ago
  •  ...Oura is seeking a Senior Governance, Risk, Compliance (GRC) Analyst to join the Security Team in New York City. This role involves leading GRC initiatives, managing compliance policies, and performing risk assessments. Candidates should have over 6 years of experience... 
    Senior
    Remote work
    Flexible hours

    Itlearn360

    New York, NY
    5 days ago
  • $110k - $130k

     ...Senior GRC Analyst Blue J is the leading generative AI solution for tax professionals. As a B2B SaaS company, our customers are accountants and tax experts who rely on our market-leading software to deliver fast, accurate, and defensible answers to complex tax questions... 
    Senior
    Work at office
    Immediate start
    Remote work

    Blue J.

    United States
    4 days ago
  •  ...Senior GRC Analyst Orlando, Florida, United States At Morgan & Morgan, the work we do matters. For millions of Americans, we're their last line of defense against insurance companies, large corporations or defective goods. From attorneys in all 50 states, to client... 
    Senior
    Full time
    Local area

    Morgan & Morgan

    Orlando, FL
    3 days ago
  • $130k - $150k

     ...come build with us at Crusoe. About This Role We’re seeking a GRC Analyst to support the day-to-day execution of our Governance, Risk, and...  ...questionnaires and due diligence requests with guidance from senior team members Maintaining and updating audit and compliance... 
    Senior
    Temporary work

    Crusoe Energy Systems LLC

    San Francisco, CA
    1 day ago
  •  ...Sr. GRC Analyst, Risk Management Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk Register. This role is responsible for ensuring all identified... 
    Senior
    For contractors
    Immediate start
    Flexible hours

    CRG

    Saint Louis, MO
    4 days ago
  • $132k - $165k

     ...Senior GRC Analyst Remote Garner's mission is to transform the healthcare economy, delivering high-quality and affordable care for all. We are fundamentally reimagining how healthcare works in the U.S. by partnering with employers to redesign healthcare benefits... 
    Senior
    Work at office
    Remote work
    Flexible hours

    Garner Health

    United States
    6 hours ago
  •  ...The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a risk-focused, highly analytical role that ensures all Human and Third-Party risk to Clayco is identified, quantified... 
    Senior
    Immediate start
    Flexible hours

    Gilder Search Group

    Phoenix, AZ
    1 day ago
  • $140k - $165k

     ...Senior GRC Analyst Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and... 
    Senior
    Local area
    Remote work
    Worldwide
    Flexible hours

    DigitalOcean

    United States
    3 days ago
  • $161.6k - $202k

     ...— and that responsibility demands a security and compliance program that scales with the business. We're building out our dedicated GRC team to improve and mature our program! You'll join the Security team and work across four pillars: security certifications (HITRUST... 
    Senior
    Work from home
    Flexible hours

    Headway - Design & Development

    Seattle, WA
    3 days ago
  • Siritech Solutions Corp is seeking an experienced RSA Archer GRC Security Analyst in Austin, Texas. This role involves supporting enterprise governance, risk, and compliance initiatives through RSA Archer's administration and configuration. The ideal candidate will work... 
    Senior

    Siritech Solutions Corp

    Austin, TX
    5 days ago
  • A staffing agency based in Dallas, Texas is seeking a Senior Security Analyst to identify and mitigate security risks within the IT environment....  ...Information Security or IT and at least 3 years of experience in GRC/risk management. Competitive compensation and benefits... 
    Senior

    Liberty Personnel Services, Inc.

    Dallas, TX
    4 days ago
  • Itlearn360 is seeking an experienced Third Party Governance, Risk and Compliance (GRC) Analyst in Los Angeles, CA. The ideal candidate should have at least three years of experience, preferably with Big 4 consulting or in regulated industries. This role involves executing... 
    Senior

    Itlearn360

    Los Angeles, CA
    5 days ago
  • Dormont Manufacturing Co is seeking a Senior Risk & Governance Analyst to join our GRC team in Dallas, Texas. This hybrid role involves maintaining our risk register, advancing AI risk governance, and supporting HIPAA compliance programs. The ideal candidate will have... 
    Senior

    Dormont Manufacturing Co

    Dallas, TX
    5 days ago
  • Crunchyroll is seeking an experienced Risk Analyst to support our Information Security GRC team. This role emphasizes governance, risk, and compliance, ensuring technology evolution aligns with employee needs and strategic goals. Successful candidates will have over 8 years... 
    Senior
    Flexible hours

    Crunchyroll

    Dallas, TX
    3 days ago
  • Gilder Search Group is looking for a Sr. GRC Analyst focusing on Third-Party & Human Risk Management in Atlanta, Georgia. This role involves risk analysis, compliance assessments, vendor management, and developing security awareness training. The ideal candidate has 6-8... 
    Senior

    Gilder Search Group

    Atlanta, GA
    4 days ago
  • Forrester Research, based in Cambridge, MA, is seeking a Senior Analyst to deliver strategic advice and conduct research for risk management leaders. The ideal candidate will possess strong knowledge of risk practices, cyber risk quantification, and excellent communication... 
    Senior

    Forrester

    Cambridge, MA
    4 days ago
  • $119k - $193k

    Phase2 Technology is seeking a Senior Analyst to conduct research and provide strategic advice to risk management leaders. The ideal candidate will possess a deep understanding of risk management trends, practices, and compliance management. This role involves producing... 
    Senior

    Phase2 Technology

    Chicago, IL
    2 days ago
  • A global beverage solutions provider is seeking a Sr IT Governance Risk and Controls Analyst in Tampa, Florida. This role focuses on maintaining and improving the IT governance, risk, and compliance program, particularly in SOX compliance. Responsibilities include conducting... 
    Senior

    Refresco

    Tampa, FL
    4 days ago
  • Amynta Group in Fort Worth is seeking a Senior GRC Analyst to enhance its risk management and compliance program. This hybrid role requires an individual to assess information security risks and support audits across operations. The ideal candidate should possess a Bachelor... 
    Senior

    Amynta Group

    Fort Worth, TX
    1 day ago
  • $150k

    Crusoe Energy Systems LLC is looking for a GRC Analyst in San Francisco, CA to support their Governance, Risk, and Compliance program. The role includes managing user access reviews, supporting audits, and leveraging AI tools for process improvements. Ideal candidates will... 
    Senior

    Crusoe Energy Systems LLC

    San Francisco, CA
    1 day ago
  • Gilder Search Group is looking for a Sr. GRC Analyst focused on Third-Party & Human Risk Management in St. Louis, Missouri. The role ensures all human and third-party risks to Clayco are identified and treated appropriately. Key responsibilities include owning the TPRM... 
    Senior

    Gilder Search Group

    Saint Louis, MO
    4 days ago
  • Forrester is seeking a Senior Analyst in Seattle, WA, to provide strategic advice and conduct research for risk management leaders. Candidates should possess strong knowledge of risk management practices and expertise in cyber risk quantification, along with superior presentation... 
    Senior

    Phase2 Technology

    Seattle, WA
    2 days ago
  • $105k - $130k

    MISO Default Brand is seeking a Senior GRC Risk Analyst to safeguard the power grid through cybersecurity risk management. In this role, you will work closely with various teams to identify, assess, and mitigate cybersecurity risks while ensuring compliance with industry... 
    Senior

    MISO Default Brand

    Carmel, IN
    4 days ago
  • Sky Mavis seeks a Sr. GRC Analyst in Phoenix, AZ, to manage Third-Party and Human Risk Management. This analytical role involves vendor risk assessment, security awareness training, and compliance evaluation, ensuring holistic risk management. Candidates should have significant... 
    Senior

    Sky Mavis

    Phoenix, AZ
    1 day ago
  • Sky Mavis is seeking a Senior GRC Analyst focused on Third-Party and Human Risk Management in St. Louis, Missouri. This role requires 6-8+ years of experience in Risk Assessment and Information Security, with strong analytical skills. You will lead the Vendor Risk Management... 
    Senior

    Sky Mavis

    Saint Louis, MO
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior GRC Analyst. Be the first to apply!