Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Cybersecurity Analyst (GRC)

$89.5k - $130k
Full-time

Boston Medical Center

POSITION SUMMARY:


The Senior Cybersecurity Analyst (Governance, Risk, and Compliance) plays an important role in building and maturing Boston Medical Center Health System’s GRC program. This role will be key to developing and improving human-driven processes before enterprise tooling is in place, and will  make that work visible, auditable, and ready to scale.

Position : Senior Cybersecurity Analyst

Department : Information Security

Schedule : Full Time

ESSENTIAL RESPONSIBILITIES / DUTIES:

  • Lead execution of GRC program initiatives, contributing design input on processes, workflows, and work products as the program matures toward enterprise tooling adoption.

  • Maintain and operationalize risk registers, control frameworks, and maturity assessments aligned to NIST CSF 2.0, HIPAA/HITECH, and applicable federal and state security and privacy regulations.

  • Drive compliance monitoring activities and recommend updates to security policies, standards, and procedures that balance regulatory rigor with operational practicality.

  • Coordinate the third-party risk management process, including vendor risk assessments and ongoing vendor risk workflows.

  • Apply risk scoring methodologies to support framework maturity tracking and quantified risk metrics, incorporating business continuity and disaster recovery considerations.

  • Manage structured GRC work products in spreadsheet and document-based environments (e.g., Excel, SharePoint), keeping them accurate, accessible, and audit-ready on an ongoing basis.

  • Translate technical findings into clear, actionable written and verbal reporting for executive and non-technical audiences.

  • Partner with stakeholders across IT and non-IT business functions to advance new standards and workflows, influencing adoption without direct authority.

  • Prioritize multiple concurrent workstreams to deliver accurate results on schedule in a fast-paced, evolving environment.

(The above statements in this job description are intended to depict the general nature and level of work assigned to the employee(s) in this job. The above is not intended to represent an exhaustive list of accountable duties and responsibilities required)

JOB REQUIREMENTS

REQUIRED EDUCATION AND EXPERIENCE:

  • Bachelor's degree in Cybersecurity, Computer Science, Information Management, or a related field preferred

  • A minimum of six years of experience in information security or related discipline, with a strong focus on governance, risk, and compliance programs in complex or regulated environments.

  • Or equivalent combination of education and experience.

PREFERRED EDUCATION AND EXPERIENCE:

  • Demonstrated experience building or significantly maturing a GRC function, including the design of processes and workflows prior to enterprise tooling adoption.

CERTIFICATIONS, LICENSES, REGISTRATIONS PREFERRED:

  • Professional certifications such as CISA, CRISC, CISSP, or equivalent are highly desirable.

KNOWLEDGE, SKILLS & ABILITIES (KSAs):

  • Demonstrated experience in data mining, analysis and report development required.

  • Strong knowledge of information systems security concepts and current information security/privacy trends and practices.

  • Knowledge of Federal and State security and privacy-related regulatory requirements.

  • Excellent written and oral communication skills, interpersonal skills, and effective leadership skills to support privacy programs.

  • Must be able to prepare formal reports and presentations as needed.

  • Must be detailed oriented and possess the ability to prioritize tasks so work is completed in an accurate, timely manner.

  • Strong business and technical skills in the planning, administration, and management of information systems, operational and technical security controls; and security risk analysis and management.

  • Self-starter with the ability to work independently, prioritize, multi-task, and maintain flexibility in fast-paced, changing environment.

  • Ability to confront conflict and difficult issues in a professional, assertive, and proactive manner.

  • Ability to build strong working relationships at all levels, internal and/or external to the organization.

  • Knowledge about medical records and other medical information, patient privacy and confidentiality, and release of information. Academic medical center and/or health care consulting experience preferred.

Compensation Range:

$89,500.00- $130,000.00

This range offers an estimate based on the minimum job qualifications. However, our approach to determining base pay is comprehensive, and a broad range of factors is considered when making an offer. This includes education, experience, skills, and certifications/licensures as they directly relate to position requirements; as well as business/organizational needs, internal equity, and market-competitiveness. In addition, BMCHS offers generous total compensation that includes, but is not limited to, benefits (medical, dental, vision, pharmacy), discretionary annual bonuses and merit increases, Flexible Spending Accounts, 403(b) savings matches, paid time off, career advancement opportunities, and resources to support employee and family well-being. 

NOTE : This range is based on Boston-area data, and is subject to modification based on geographic location.

Equal Opportunity Employer/Disabled/Veterans

According to the FTC, there has been a rise in employment offer scams. Our current job openings are listed on our website and applications are received only through our website. We do not ask or require downloads of any applications, or “apps” job offers are not extended over text messages or social media platforms. We do not ask individuals to purchase equipment for or prior to employment. 

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Senior Cybersecurity Analyst (GRC) in Remote vacancy
  • $10k

     ...Cybersecurity Senior Data Analyst ONLY PERMANENT EMPLOYEES IN THE TITLE AND THOSE THAT ARE REACHABLE ON THE CYBER SECURITY ANALYST CIVIL SERVICE LIST...  ...technology (IT) Governance, Risk and Compliance (GRC) best practices, methodologies and tools. - Conduct research... 
    Senior
    Permanent employment
    Work at office
    Work from home
    2 days per week

    New York City | Jobs

    Long Island City, NY
    3 days ago
  • $130k - $160k

     ...Senior Cybersecurity Risk Analyst At Danaher, our work saves lives. And each of us plays a part. Fueled by our culture of continuous improvement,...  ...including country-of-origin scrutiny. Familiarity with GRC platforms (e.g., OneTrust, ServiceNow IRM, RSA Archer) and... 
    Senior
    Remote job
    Work from home
    Flexible hours

    Danaher

    Denver, CO
    1 day ago
  • $94.8k - $148.2k

     ...A leading defense contractor is seeking a Cybersecurity Analyst to support a complex software system for emergency response. This role involves collaboration with teams, managing compliance with cybersecurity standards, and ensuring secure data sharing. The ideal candidate... 
    Senior
    For contractors
    Remote work

    Naval Nuclear Laboratory (FMP)

    Idaho Falls, ID
    1 day ago
  •  ...intelligence platforms integrate with broader enterprise systems and processes Collaborate effectively with network, infrastructure, cybersecurity, and platform teams to align asset data with business and operational needs Communicate technical findings clearly and... 
    Senior
    Work experience placement
    Work at office
    Local area
    Remote work

    UnitedHealth Group

    United States
    2 days ago
  •  ...Flywheel Energy is seeking an experienced and driven Senior Cybersecurity Analyst to protect the data, infrastructure, and operational systems that power our ~1,000-person upstream oil and gas business. The Senior Cybersecurity Analyst will serve as a primary defender... 
    Senior
    For contractors
    Remote work

    Flywheel Energy LLC

    Oklahoma City, OK
    1 day ago
  • $91.7k - $163.7k

     ...Senior Cybersecurity Analyst Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits... 
    Senior
    Minimum wage
    Full time
    Work experience placement
    Local area
    Remote work

    divvyDOSE

    United States
    4 days ago
  • $135k - $143k

     ...information systems. You will provide expert-level guidance on cybersecurity operations, risk mitigation, incident response, and security...  ...best practices. Collaboration & Communication Collaborate with senior management, IT teams, and business stakeholders to communicate... 
    Senior
    Casual work
    Remote work
    Flexible hours

    Gunnison, CO

    Seattle, WA
    1 day ago
  •  ...Senior Cybersecurity Analyst Location: Anywhere Type: Contract-to-Hire Category: Security Industry: Government Workplace Type: Remote Reference ID: JN-062026-107364 Applicants must be United States citizens or permanent residents with an active Public Trust clearance.... 
    Senior
    Hourly pay
    Permanent employment
    Full time
    Contract work
    Remote work

    Eliassen Group

    Salem, OR
    3 days ago
  • $91.7k - $163.7k

     ...you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together. The Insider Senior Cybersecurity Analyst is responsible for detecting, analyzing, and investigating potential insider‑driven risks to UnitedHealth Group’s people... 
    Senior
    Minimum wage
    Full time
    Work experience placement
    Local area
    Remote work

    Optum

    Eden Prairie, MN
    12 hours ago
  •  ...Senior Cyber Security Analyst Huntsville, AL preferred (Hybrid with ability to be fully remote) We are seeking a highly capable Senior...  ...Bachelor's degree in Computer Science, Information Security, Cybersecurity, or 7 years equivalent relevant experience (or relevant... 
    Senior
    Remote work

    Marathon TS

    United States
    4 days ago
  • $86.5k - $129.9k

    Role Description We are hiring a senior engineer to maintain and extend a large full-stack Governance, Risk, and Compliance platform. The...  ...rather than direct calls to providers. ~Work across GRC workflows including findings, evidence, SSPs, POA&Ms, RMF, FedRAMP... 
    Senior
    Full time
    Temporary work
    Local area
    Flexible hours

    Guidehouse

    Remote
    5 days ago
  • A technical organization supporting national security is looking for a Cybersecurity Analyst to oversee compliance in the development of a dual-environment software system. The role involves collaborating with teams, driving compliance efforts, ensuring secure data-sharing... 
    Senior
    Remote job

    Naval Nuclear Laboratory (FMP)

    Schenectady, NY
    16 hours ago
  • Children's Hospital Corporation dba Boston Children's Hospital in Boston, MA is seeking a Cyber Security Analyst IV to develop solutions for security operations and lead investigations of security events. The position allows for remote work within the US and requires a... 
    Senior
    Remote job

    Children's Hospital Corporation dba Boston Children's Hosp

    Boston, MA
    16 hours ago
  • $94.8k - $148.2k

     ...carrier Fleets. Looking for a lifetime career? Apply today! Job Description We are seeking an accomplished and innovative Cybersecurity Analyst to support the design, implementation, and compliance oversight of a highly complex, first-of-its-kind software system for Naval... 
    Senior
    For contractors
    Local area
    Flexible hours

    Naval Nuclear Laboratory (FMP)

    Schenectady, NY
    3 days ago
  • $91.7k - $163.7k

     ...technologies for reports of security incidents Perform analysis on cybersecurity alerts in both On-Premises or Cloud environments Provide...  ...incident reports and security recommendations Mentor analysts, providing training and guidance through complex incidents Lead... 
    Senior
    Remote job
    Minimum wage
    Full time
    Work experience placement
    Local area
    Shift work
    Night shift
    Weekend work

    UnitedHealth Group

    Eden Prairie, MN
    4 days ago
  • $91.7k - $163.7k

    UnitedHealth Group in Eden Prairie, Minnesota, is looking for a Senior Cybersecurity Analyst. This role involves applying expertise in ARMIS to enhance asset visibility and support enterprise risk management. You'll join a culture of inclusion while enjoying the flexibility... 
    Senior
    Remote job

    UnitedHealth-Grou

    Eden Prairie, MN
    2 days ago
  •  ...Security Office at The University of Texas at Austin. This role is crucial for supporting governance, risk, and compliance programs in cybersecurity. You'll work with an intelligent and dedicated team focused on making a tangible impact through effective security practices.... 
    Work at office
    Remote work

    Gravity Engineering Services Pvt Ltd.

    Austin, TX
    1 day ago
  •  ...A leading consulting firm seeks a Governance, Risk, and Compliance (GRC) leader to advance their programs. This remote role requires 5–7 years of experience in GRC with relevant certifications like CISSP or CISM. The successful candidate will lead policy development, perform... 
    Senior
    Remote work

    Franklin Fitch

    New York, NY
    4 days ago
  • $99k - $225k

    Cybersecurity Operations Center Analyst, Senior The Opportunity Are you ready to take a strategic role in cyber defense? Are you looking for an opportunity to protect critical infrastructure from the constant onslaught of cyber‑attacks? If you want to sharpen your skills... 
    Senior
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    Booz Allen Hamilton

    Fort Belvoir, VA
    2 days ago
  •  ...Oura is seeking a Senior Governance, Risk, Compliance (GRC) Analyst to join the Security Team in New York City. This role involves leading GRC initiatives, managing compliance policies, and performing risk assessments. Candidates should have over 6 years of experience... 
    Senior
    Remote work
    Flexible hours

    Itlearn360

    New York, NY
    16 hours ago
  •  ...Product Marketing Director for Governance, Risk, and Compliance (GRC) solutions. In this strategic role, you will own the go-to-...  ...translating complex product features into compelling narratives for senior leaders. The ideal candidate has over 10 years in B2B product marketing... 
    Senior
    Remote job

    Workiva Inc.

    New York, NY
    3 days ago
  • Ellenco Estágios e Treinamentos is seeking a Senior Information Security GRC Analyst to manage security audits and compliance efforts. The role requires over 10 years of experience in information security and a strong understanding of NIST standards. This position allows... 
    Senior
    Remote job

    Ellenco Estágios e Treinamentos

    New York, NY
    4 days ago
  • Dormont Manufacturing Co is seeking a Senior GRC Engineer to enhance compliance efforts and automate processes. You'll bring your expertise in frameworks like SOC 2 and PCI DSS to drive critical Governance, Risk, and Compliance functions. This role incorporates both technical... 
    Senior
    Work at office
    Remote work

    Dormont Manufacturing Co

    New York, NY
    1 day ago
  •  ...Texas Health and Human Services Commission (HHSC) Job Title: Cybersecurity Analyst II Benefits: Our comprehensive benefits package includes 100%...  ...compliance and risk artifacts in a Governance, Risk, and Compliance (GRC) platform, supports Authorization to Operate (ATO) activities... 
    Full time
    Work at office
    Remote work

    Texas Health and Human Services

    Austin, TX
    3 days ago
  • $77.5k - $140.9k

     ...Government & Public Sector – Service Delivery Center - Cybersecurity - Strategy, Risk, Compliance & Resiliency Senior Analyst From strategy to execution, the Government...  ...and implementation (e.g. SNOW IRM, Archer GRC, RiskLens, Azure Security Center, etc.) Federal... 
    Senior
    Work experience placement
    Summer holiday
    Local area
    Flexible hours

    Ernst & Young

    San Antonio, TX
    27 days ago
  •  ...your CCP expertise and make an impact where cybersecurity meets strategy. Job Summary: Alluvionic is seeking a Cybersecurity Analyst II with active Certified CMMC...  ...or compliance programs Familiarity with GRC tools and compliance platforms Demonstrated... 
    Internship
    Remote work

    Alluvionic Inc.

    United States
    3 days ago
  •  ...The contractor/cybersecurity analyst would have the following credentials, organizational capability, and/or experience: A bachelor...  ...assessment methodologies. Governance, Risk, and Compliance (GRC) and vendor risk management technical IT expertise in... 
    For contractors
    Remote work

    3B Staffing LLC

    New York, NY
    3 days ago
  • Brex is looking for a Senior GRC Engineer to enhance its Governance, Risk, and Compliance function. This role is pivotal in automating compliance workflows, ensuring security and regulatory adherence, and advancing our Trust program. You will work cross-functionally to... 
    Senior
    Remote work

    Brex

    New York, NY
    4 days ago
  • Pleo is seeking a Senior GRC Analyst / GRC Engineer to join our Information Security team in the United States. This pivotal role involves building compliance systems and collaborating with teams across the organization to ensure success. The ideal candidate will have... 
    Senior
    Remote job

    Pleo

    New York, NY
    4 days ago
  • Dormont Manufacturing Co is seeking a Senior GRC Engineer to join our Seattle team. You will bridge compliance expertise with technical execution, driving GRC processes to mitigate risk and ensure compliance. You’ll build automated systems to support security frameworks... 
    Senior
    Remote work
    Flexible hours

    Dormont Manufacturing Company

    Seattle, WA
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Cybersecurity Analyst (GRC). Be the first to apply!