Pncpl GRC Analyst

27-May-2026

Principal GRC Analyst

US (Remote)

11016BR

Company Summary

Deltekis the intelligent, industry-tuned platform that powers the project lifecycle - from ERP and accounting to delivery and analysis. Trusted by 30,000 organizations,Deltekdelivers speed, clarity, and control. Deltek brings everything project-based businesses need into one unified platform. Built on our Deltek Native Architecture (DNA) - the secure engine for data, compliance, and control - it connects every stage of the project lifecycle seamlessly. Modular, cloud-based, and powered by AI, Deltek helps teams work smarter, make faster decisions, and deliver with confidence.

Every capability in the Deltek platform is shaped by deep industry knowledge and refined through decades of helping organizations win, plan, execute, and analyze their most critical work. Unified by a single data model and orchestrated intelligently, Deltek ensures information flows seamlessly across the project lifecycle. With built-in governance, control, and insight, it creates a connected ecosystem for confident delivery. Turn pursuit into performance - connect market intelligence, CRM, pricing, and proposals so your teams can identify the right pursuits - and win more of them. Plan - unite planning, forecasting, and collaboration across finance and delivery teams - so every project is built on insight, not instinct, and stays on track from day one. Deliver with speed, clarity, and control - orchestrate execution with connected financials, time, and resource management - giving you real-time visibility and built-in governance to deliver with confidence. Turn insight into advantage - gain trusted insight from project and financial data - helping you audit performance, prove compliance, and continuously improve results. Learn more about Delek at

Position Responsibilities

Information security risk management and compliance are critical parts of Deltek's business and product strategy. The Principal Governance, Risk, & Compliance (GRC) Analyst is an Individual contributor (IC) role that reports to the Manager of GRC. This role is within the team responsible for implementing and maintaining compliance framework controls and assessing controls within multi-cloud environments. This role supports comprehensive assessments of the management, operational, and technical security controls deployed within Deltek cloud environments. Determines the effectiveness of the controls - the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements.

Responsibilities:
As a Principal GRC Analyst you will be part of the team responsible for audits of cloud environments, information systems , risk management and security tools to ensure adherence to applicable frameworks, laws, and regulations. You will assist with documenting control objectives and procedures in areas such as cloud security, cloud governance and compliance, DevOps, cloud data protection, cloud monitoring, incident response, enterprise security architecture, cyber security, and technology risk management. As part of a team of cloud security experts within GRC team you will drive compliance within Deltek Cloud Operations.

• Lead and execute audits and assessments related to NIST 800-53, FedRAMP, CMMC, ISO27001, PCI DSS, SOC 1, SOC 2, and other information security regulations.
• Must have experience leading audit engagements as a principal auditor, understand requirements for completing internal and external audit engagements.
• Lead the gathering, reviewing, assembling, maintaining, and presenting of internal and external audit evidence and related documentation.
• Create and maintain compliance documents such as policies, standards, procedures. Prepare metrics and reporting.
• Effectively communicate with Deltek technical and business stakeholders through written and verbal communication during the process of evidence collection, validation, testing and presentation of results.
• Maintain proficiency with applicable laws, regulations, and standards.
• Identify and communicate risk management, control gaps and process inefficiencies to key stakeholders.
• Actively participate in initiatives aimed at enhancing Cloud Security Compliance team processes and procedures.
• Support internal risk and compliance meetings as a subject matter expert.
• Draft and maintain, and mature GRC services as primary or backup service owner (e.g., Policy Management, Risk Management, Customer Security Due Diligence, Business Continuity Planning, etc.)
• Lead efforts and provide support for any activity that helps maintain Deltek's compliance and security standards.

Qualifications

Technical Requirements:

• US Citizenship is required for this position.
• Minimum 3 years of leading implementing and/or assessing: Information technology audit, Information Technology General Controls (ITGC), Information security operations, cloud security and compliance, internal audit function, IT risk management, public accounting firm, or a related field.
• B.S. degree (Information Security, Computer Science, MIS, or equivalent program preferred) from an accredited college/university.
• Must have experience with ITAR/FedRAMP assessments within technological environments
• Possess, or working toward, baseline security certifications such as CISA/CompTIA/cloud certification for Microsoft Azure/AWS/Google Cloud Platform.

Core Competencies:

• Excellent self-management and work with minimal direction.
• Excellent time management skills for handling multiple competing priorities and simultaneous projects.
• Excellent business and technical aptitude and problem-solving skills.
• Excellent critical thinking, analytical, communication (written and verbal) and interpersonal skills.
• Ability to work in a team environment collaboratively and take direction from senior level staff.
• Enthusiasm to learn through a combination of structured, on-the-job, and self-directed training

Preferences:

• CCAK/CCSK, CISSP, CISA, or other related information security certification desired.
• FedRAMP, NIST 800-171, CSA CCM, CIS Security Framework experience desired.
• Experience with software development in a cloud environment desired.

Job Categories: Technology audit / Security / Cloud Ops / GRC

Career Interests

Legal

Compensation Info

The U.S. salary range for this position is $91,000.00-$160,750.00. This range is subject to change as Deltek takes a number of factors into consideration when determining individual base pay, such as location, job-related knowledge, skills and experience. Certain roles are eligible for additional rewards, including incentive compensation and equity.

Benefits and perks listed here may vary depending on the nature of employment with Deltek. Employees have access to healthcare benefits, a 401(k) plan and company match, paid vacation time and holidays, well-living programs, short-term and long-term disability coverage, basic life insurance and tuition reimbursement.

Position Type

FT

Travel Requirements

10%

Compliance Requirements

Certain roles may have additional privacy, security and compliance requirements to the extent they support Costpoint GCCM or similar product offerings.

EEO Statement

Deltek, Inc. is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.

E-Verify Statement

Deltek, Inc., utilizes the E-Verify program with every potential new hire. This makes it possible for us to make certain that every employee who works for Deltek is eligible to work in the United States. To learn more about E-Verify you can call View phone number on click.appcast.io or visit their website by clicking the logo below. E-Verify is a registered trademark of the United States Department of Homeland Security.

Applicant Privacy Notice

Deltek is committed to the protection and promotion of your privacy. In connection with your application for employment with us at Deltek, it is necessary for us to collect, store and use information about you ("Personal Data") to administer and evaluate your application. We are the "controller" of the Personal Data you provide us and will process any such Personal Data in accordance with applicable law and the statements contained in this Employment Candidate Privacy Notice. Additionally, we have not sold and do not sell Personal Data you provide to us through the job application process.

Job Expires

27-May-2027