GRC Analyst
$110k - $135kEase Inc
GRC Analyst
Ease is hiring a GRC Analyst to support our governance, risk, and compliance program as we mature our security posture and expand into new compliance frameworks. This is a hands-on role at the intersection of security, engineering, and the business — you'll be the operational engine behind how Ease maintains its compliance commitments and earns customer trust. You'll work closely with our security engineers and an external CMMC consultant to keep our SOC 2 program healthy, advance our CMMC Level 2 readiness, and bring rigor to how we assess applications, AI tools, and vendors before they enter the environment.
Position Summary
You will be the day-to-day driver of compliance work at Ease. You'll support our SOC 2 Type II cycle, conduct security and privacy reviews of new applications and AI tools, run our vendor risk intake, and partner with our CMMC consultant on Level 2 implementation tasks. As we adopt a GRC platform, you'll help drive the rollout and become its primary administrator. You are organized, methodical, and a strong written communicator. You can pick up technical concepts quickly, work alongside security engineers without getting lost in the details and turn the messy reality of compliance work into clean process and clear evidence. You enjoy the mix of audit work, project management, and stakeholder communication that comes with GRC.
Position Location
Hybrid – 3 days in Irvine office
Annual Salary Range
$110,000 - $135,000
What You'll Do
- Support the SOC 2 program . Drive day-to-day execution of the annual Type II cycle, including evidence collection, control walkthroughs, gap remediation tracking, and auditor support.
- Partner on CMMC Level 2 implementation . Work alongside our external CMMC consultant and security engineers on System Security Plan (SSP) development, CUI scoping, evidence collection, and C3PAO assessment readiness.
- Assess applications and AI tools . Conduct security and privacy reviews on new applications, AI/ML services, and other tools before they enter the environment. Maintain an inventory of AI tools and contribute to our AI governance work.
- Run vendor and third-party risk intake . Own the vendor security review process, complete questionnaires, and maintain the vendor risk register.
- Maintain policy and procedure . Help author and maintain our security policy library so it stays aligned with SOC 2, CMMC, and how we actually operate.
- Support the risk register . Contribute to formal risk assessments and keep the enterprise risk register current.
- Coordinate audit and assessment logistics . Manage evidence requests during audits, schedule walkthroughs, run quarterly access reviews, and track remediation items through closure.
- Administer our GRC platform . Help select and roll out our GRC platform then own day-to-day administration including integrations, control mapping, and evidence automation.
- Drive compliance through Jira . Create, route, and monitor security and compliance tickets and partner with engineering on remediation timelines.
- Audit change management hygiene . Monitor engineering Jira queues to ensure tickets meet our compliance formatting and content standards, verify that pull requests are properly linked to Jira tickets, and confirm required notes and documentation are captured for each change.
- Support customer trust . Respond to customer security questionnaires and help maintain our trust center content.
- Run security awareness . Manage the employee security awareness program, including training assignments, phishing simulations, and completion tracking.
Required Qualifications & Skills
- 3+ years of experience in a GRC, security compliance, IT audit, or closely related role.
- Hands-on experience contributing to SOC 2, ISO 27001, HIPAA, or similar compliance program work.
- Working knowledge of cloud and SaaS security concepts (AWS, Azure, or GCP, plus the common SaaS stack).
- Experience completing vendor security assessments and customer security questionnaires.
- Comfortable working in Jira and other engineering tooling.
- Strong written communication, with the ability to write clearly for both engineering and non-technical audiences.
- Strong attention to detail and a methodical approach to evidence, documentation, and follow-through.
- Must be authorized to access Controlled Unclassified Information (CUI), which generally requires U.S. citizenship or permanent residency.
Preferred Qualifications
- Exposure to NIST 800-171, DFARS View phone number on click.appcast.io, CMMC, FedRAMP, or similar federal compliance work.
- Hands-on experience with a GRC platform such as Drata, Vanta, Hyperproof, or Secureframe.
- Familiarity with AI/ML security and governance concepts, including NIST AI RMF.
- Familiarity with California privacy law (CCPA/CPRA).
- Industry certifications such as CompTIA Security+, CySA+, CISA (or in pursuit), ISO 27001 Foundation, or similar.
About Ease
Ease.io digitally transforms plant floor audits around the world with EASE, our enterprise-grade mobile platform for quality, safety, and operational audits. The platform combines simplicity and efficiency with powerful performance insights, helping drive quality and safety on the plant floor. Industry leaders including Aston Martin, Dana, 3M, Tenneco, and Samsung trust EASE to facilitate and analyze millions of plant floor audits every year. With deployments in more than 40 countries and support for more than 25 languages, EASE has established itself as a category leader in quality management. Headquartered in Irvine, California, Ease.io is a dynamic company that continues to grow as it expands its product offerings and market presence.
What We Offer
At Ease, we foster a culture built on respect, humility, and collaboration. We value work-life balance as a core principle, helping ensure you can thrive both professionally and personally. And yes—we believe work should be fun, too. Growth and development are part of our DNA. We are committed to investing in your career through ongoing training, mentorship, and a clearly defined path forward. Whether you are sharpening existing skills or exploring new ones, you will have opportunities to learn and advance. We prioritize the well-being and happiness of our team. In addition to a competitive compensation package, we offer a generous and comprehensive suite of benefits designed to support your health and peace of mind.
Here's a look at what you can expect:
- Health Coverage: Comprehensive medical, dental, and vision plans
- Life & AD&D Insurance: Financial protection for you and your loved ones
- Unlimited Paid Time Off: Time to recharge and rest when you need it
- 401(k) with Employer Match: Plan for your future with confidence through our matched retirement savings program
At Ease, we believe that when our employees are supported, inspired, and empowered, everyone wins. #LI-Hybrid
- ...: Mechanics Bank is currently searching for a GRC Analyst to join our team in Irvine, California. Here at Mechanics Bank, we value connection, partnership, long term relationships and working together in person. This role will be working on-site at our Irvine or Walnut...SuggestedFull timeWork experience placementWork at office
$90k - $135k
...opportunities, and inclusive programs that enable you to perform at your best. Together we win! THE OPPORTUNITY The Senior GRC Information Security Analyst role will be part of the Information Security Governance, Risk, & Compliance (GRC) team at Banc of California. The...SuggestedLocal areaImmediate startFlexible hours$99.1k - $163.4k
Who Are We? Taking care of our customers, our communities and each other. That's the Travelers Promise. By honoring this commitment, we have maintained our reputation as one of the best property casualty insurers in the industry for over 170 years. Join us to discover...SuggestedLocal areaLong distanceNight shift$80k - $100k
Company Overview Our company is a leading national healthcare REIT with over $20 billion of owned real estate concentrated in laboratory, outpatient medical, and entrance-fee senior housing communities. As an innovative real estate owner at the forefront of the healthcare...Suggested- .... You will prepare, edit, assemble, and oversee document preparation and regulatory compliance and are supported by environmental analysts and technical experts. The position also entails guiding CEQA and NEPA compliance strategy, budget oversight, schedule management,...SuggestedFull timeWork at officeRemote work
- About Mischler Financial Group, Inc.: Established in 1994, Mischler Financial Group, Inc. (MFG) is the securities industry’s oldest diversity-certified broker‑dealer that is owned and operated by service‑disabled veterans (SDV). Our core competencies encompass investment...Local area
- This role is responsible for the development, management and implementation of compliance processes, procedures and system interfaces with Ingram Micro’s ERP and WMS. This position also manages day to day operations and projects, ensuring programs adhere to all US export...
$80k - $90k
Personal Risk Specialist The Personal Risk Specialist is an outside sales position focused on serving the unique insurance needs of affluent/high net worth clients. In addition to cross selling, as a primary focus for business development, this role is also expected...Local area- On-Site role Job Description: Fusion TPCR team is responsible for analysis and triaging of cyber intelligence pertaining to Firm's third-party events / incidents and vulnerabilities. This includes determining required response actions, evaluating potential...
- ...Nano Banc is seeking a Senior BSA/AML Analyst responsible for monitoring suspicious activities and ensuring compliance with BSA/AML regulations. The ideal candidate will have a Bachelor's degree and three to five years of banking experience. This role entails analyzing...Work at office
- Job Title Responsibilities: Support the Senior Director in developing and executing regional regulatory strategies for QOL initiatives within specific regions. Contribute to providing strategic oversight and leadership to the regulatory team, ensuring alignment...
- Portfolio Manager In Real Estate Banking Bring your expertise to JPMorgan Chase. As part of Risk Management and Compliance, you are at the center of keeping JPMorgan Chase strong and resilient. You help the firm grow its business in a responsible way by anticipating...Work at office
$70k - $75k
...Fcb Analyst I The FCB Risk Analyst I plays a key role within Sunwest Bank's Foreign Correspondent Banking (FCB) Risk division, supporting the broader Financial Crimes Risk Management function. This position focuses on ensuring compliance with Bank Secrecy Act (BSA),...Work at officeMonday to Friday- Job Summary The Regulatory Affairs Specialist (FDA, DEA) will ensure BaRupOn’s pharmacy, manufacturing, and healthcare operations meet all applicable regulatory requirements. This position is responsible for preparing submissions, maintaining licenses, coordinating audits...
- Regulatory Affairs Specialist Responsibilities Regulatory Affairs is responsible for planning, coordinating and implementing regulatory submissions for products that require government approval. Demonstrates working knowledge of healthcare-related regulations. Demonstrates...Contract work
$84k - $85k
Overview Avanath is proud to be named one of the top communities management companies to provide affordable housing for the workforce. Cultivating the American Dream is the purpose that binds the Avanath team. At Avanath, every day is an opportunity to make a difference...Contract workLocal areaImmediate startFlexible hours$38.46 - $40.87 per hour
Job Title: Compliance Specialist Location: Irvine, CA 92612 Salary Range: $38.46 - $40.87 Hourly Position Type: Full Time Description Position Overview *THIS POSITION WILL Be LOCATED IN WILIMINGTON, CA 90744* Ensure compliance with LIHTC,...Hourly payFull timeWork at officeFlexible hours- Avanath Capital, LLC in Irvine, California is seeking a dedicated compliance manager to oversee the re-qualification process for existing residents and assist in qualifying prospective residents. The role involves conducting interviews, managing documentation compliance...
$84k - $85k
Communitymanager is seeking a professional to manage the re-qualifying of existing residents for continued occupancy in Irvine, California. This role includes conducting interviews, processing paperwork, and ensuring compliance with housing regulations. Ideal candidates...$135.5k - $195.49k
Get AI-powered advice on this job and more exclusive features. This range is provided by Kia America. Your actual pay will be based on your skills and experience—talk with your recruiter to learn more. Base pay range $135,501.00/yr - $195,490.00/yr Additional compensation...Local areaRelocation- Regulatory Affairs Specialist – Medical Device Industry Position Summary The Regulatory Affairs Specialist is responsible for supporting regulatory activities to ensure medical devices comply with applicable global regulatory requirements and standards. This role collaborates...Work at office
$84k - $85k
Avanath Capital Management, LLC is seeking a dedicated professional to manage the re-qualification of existing residents and assist in qualifying prospective residents. This role encompasses compliance management, conducting interviews, processing paperwork, and working...Local area- Job Title The Baldwin Group is an award-winning entrepreneur-led and inspired insurance brokerage firm delivering expertly crafted Commercial Insurance and Risk Management, Private Insurance and Risk Management, Employee Benefits and Benefit Administration, Asset and...Contract workWork at office
$146k - $215k
Eaton’s Global Aerospace group is seeking a Sr. Manager of Compliance, Global Repair Stations. This position can be based remotely within the US. Relocation assistance is not available. Travel is expected to be around 50% on average. The expected annual salary range...Permanent employmentLocal areaRemote workRelocation package$30 - $45 per hour
We are seeking a skilled Labor Compliance Coordinator to join our team. In this role, your aim is to ensure employees are compensated accurately and promptly. Your responsibilities will include processing timesheets, updating records, overseeing payroll payments, and answering...Hourly pay$33 - $36 per hour
Base pay range $33.00/hr - $36.00/hr Overview We are seeking a detail-oriented Labor Compliance Specialist to join their team and play a key role in ensuring compliance with state and federal labor regulations across multiple projects. The Labor Compliance Specialist will...Full timeFor contractorsFor subcontractorWork at officeLocal area- Location Remote or Hybrid Job Type Full-time Key Responsibilities Assist in maintaining, reviewing, enhancing and operationalizing PatientFi’s compliance program Provide support to prepare, maintain and renew US state licensing and corporate registration filings, and engage...Full timeLocal areaRemote workWork visa
- YOUR ROLE Responsible for the ECCN and HTS classification determination of technology products and services, resulting in the license determination of export, re-export an in‑country transfer orders in compliance with all U.S. Export Control Laws and regulations. This ...Immediate startFlexible hours
$23 - $25 per hour
...Compliance Analyst The Compliance Analyst is responsible for strengthening and maintaining the company’s compliance management system within the debt settlement industry. The role supports ongoing monitoring, testing, and improvement of compliance with applicable federal...Hourly payFull timeFixed term contractWork at officeLocal areaMonday to FridayShift work- ...Job Summary The Compliance Analyst's role is to support the BSA & Compliance Officer and assist in the implementation and maintenance of the bank's compliance program. You will be responsible for monitoring and analyzing regulatory requirements, internal policies, and...Work at office
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to GRC Analyst. Be the first to apply!

