Compliance Analyst (GRC/RMF Focused)
Quzara LLC
Compliance Analyst (GRC/RMF Focused)
The Compliance Analyst (GRC/RMF Focused) supports governance, risk, and compliance (GRC) initiatives by developing, maintaining, and managing security documentation and compliance artifacts aligned with federal standards. This role plays a key part in supporting Risk Management Framework (RMF) activities, continuous monitoring, and authorization efforts across federal and regulated environments. This role requires strong expertise in NIST SP 800-53, FISMA, and related guidance, with the ability to translate technical system configurations into clear, audit-ready documentation. The ideal candidate is detail-oriented, organized, and capable of managing multiple compliance workstreams while engaging effectively with both technical and non-technical stakeholders.
Essential Functions of the Job
- Experience authoring and maintaining security documentation, including System Security Plans (SSPs), control implementation statements, policies, and procedures
- Strong knowledge of NIST SP 800-53 Moderate and High baselines and FISMA requirements
- Ability to develop documentation in accordance with Agency-specific security and compliance requirements
- Experience supporting FedRAMP and/or CMMC compliance efforts
- Working understanding of SOC 2 principles and control structures
- Hands-on experience with GRC tools
- Ability to translate technical system configurations into clear, audit-ready documentation
- Experience developing and managing POA&Ms and supporting continuous monitoring activities
- Strong understanding of NIST standards and supporting guidance (e.g., 800-60, 800-37, 800-171, 800-137)
- Ability to engage directly with customers, lead discussions, and clearly communicate requirements to both technical and non-technical stakeholders
- Strong written and verbal communication skills with a focus on clarity and professionalism
- Proven ability to manage multiple priorities and meet strict deadlines in a fast-paced environment
- High attention to detail with strong organizational and documentation management skills
- Proficiency with standard business tools (e.g., Microsoft Word, Excel, SharePoint, Teams)
- Technical proficiency with On Prem environments, Cloud environments, and associated security concepts
- Basic understanding of AI tools and ability to leverage them for documentation development (including effective prompting techniques)
- Ability to work independently while coordinating effectively across internal teams and stakeholders.
Marginal Functions of the Job
- Other duties as assigned
This is a full-time position. Standard business hours are Monday through Friday 8:30 AM to 5:30 PM. Additional time outside of these hours may be needed to complete the essential functions of the job.
Education, Training, and Experience
- Bachelor's degree in Cybersecurity, Information Technology, Information Systems, or a related field.
- 36+ years of experience in GRC, RMF, or cybersecurity compliance roles within federal or regulated environments.
- Strong knowledge of NIST SP 800-53, FISMA, and supporting NIST guidance (e.g., 800-37, 800-60, 800-171, 800-137).
- Experience supporting FedRAMP, CMMC, and/or SOC 2 compliance efforts.
- Hands-on experience with GRC platforms and compliance tracking tools.
- Technical understanding of on-premise and cloud environments and associated security concepts.
- Proven ability to produce audit-ready documentation and manage compliance artifacts.
- Strong written and verbal communication skills with the ability to clearly convey complex information.
- Demonstrated ability to manage multiple projects and deadlines with strong organizational skills.
- Experience working independently while coordinating across cross-functional teams.
- Must be a U.S. Citizen and eligible to support federal contracting environments.
Preferred Certifications
- CISA (Certified Information Systems Auditor)
- Security+, CISSP, or similar cybersecurity certification
- FedRAMP or RMF-related training or certifications are a plus
EEO Statement
The Company is an Equal Employment Opportunity (EEO) employer and does not discriminate based on race, color, religion, sex, sexual orientation, national origin, age, marital status, disability, veteran's status, or any other basis protected by applicable discrimination laws.
- ...Governance, Risk, & Compliance (GRC) Analyst Washington, DC Remote Full-Time About This Role As a GRC Analyst, you will help organizations navigate the complex landscape of cybersecurity compliance and risk management. You will work directly with clients to assess their...SuggestedFull timeRemote work
$130k - $180k
...’ll help build a cutting edge security compliance program aligned with FedRAMP, SOC 2, PCI... ...secure and performant service. As a GRC Analyst at Virtru, you will be the primary... ...annual Learning & Development Stipend focused on providing you the resources to continually...SuggestedRemote jobLocal areaFlexible hoursShift work- ...Apogee Global RMS is seeking a GRC / NIST RMF Specialist to support federal programs requiring disciplined governance, risk, and compliance execution. This role is built for practitioners who understand the full lifecycle of NIST RMF, can translate controls into actionable...Suggested
- ...Analysis, Risk Register functional application via Service Now IRM/GRC environment. Significant experience with Service Now... ...including cross-functional deployments, processes creation and integrations. Nice to have: Privacy (HIPAA) and PCI Compliance experience....Suggested
- ...A cybersecurity compliance consulting firm is looking for a GRC Analyst to help organizations manage cybersecurity compliance and risk. This fully remote position involves conducting assessments, developing security policies, supporting compliance audits, and collaborating...SuggestedRemote work
- ...Security Compliance Support Role Provides direct support to the Director Security Governance, Risk and Compliance and security shared... ...and various security solutions. ~ Experience in working with GRC systems/modules. ~ Experience in working across enterprises with...
$84k - $100k
...GRC Analyst Uplight is creating a new category of energy. We make software that manages energy resources in homes and businesses—including... ...sales and operations functions by managing security and compliance-related tasks such as completing Request for Proposals and...Local areaFlexible hoursShift work$78.9k - $123.3k
...seeking a detail-oriented cybersecurity compliance professional to support system authorization... ...will have experience working with NIST RMF, NIST SP 800-53 controls, security authorization... ..., and governance, risk, and compliance (GRC) platforms. Knowledge of cloud...Permanent employmentFull timeContract workPart timeWork at officeLocal areaRemote work- ...LIS Solutions is seeking a Junior Compliance Officer to join their team in Arlington, VA. This role focuses on supporting federal law enforcement by handling sensitive data and conducting audits related to Employment Eligibility Verification Forms (I-9). The ideal candidate...Work at office
$28.5 per hour
...COMPLIANCE ANALYST Summary This position will support the Foundation's conservation award-making activities by focusing on the areas of compliance and risk analysis relating to the Foundation and its subrecipients and for programmatically funded contractors...Hourly payFull timeContract workFor contractorsLocal area$86k - $126k
# Compliance AnalystARGO Cyber SystemsContractmidArlington, Virginia, USPosted 7 days ago## Role... ...Systems is hiring a mid-level Compliance Analyst. This is a contract role in Arlington.... ...CISSP, CISM, Security+.* Experience with GRC tools and federal compliance programs.* Ability...Contract workFor contractors- ...Compliance Data Analyst ProSidian is a Management And Operations Consulting Services firm that focuses on providing value to clients through tailored solutions based on industry-leading practices. ProSidian provides enterprise services/solutions for Risk Management...Contract workH1bWork at office
- ...The Compliance Analyst serves as the project compliance expert on a wide portfolio of Clark's government-funded construction projects. The... ...Responsibilities We value candidates who are highly motivated, customer-focused and open-minded team players ready to dig into a highly...Full timeFor contractorsWork experience placementFor subcontractorLocal area
- ...Native American Tribal 8(a) and multi-certified organizations focused on delivering Information Technology, Management Consulting,... ...with the Commercial Sector. We are actively seeking a Compliance Analyst to support a Department of Education (ED) program responsible...Full timeContract workWork at officeRemote work
- ...Records Management & Compliance Analyst ProSidian is a Management And Operations Consulting Services firm that focuses on providing value to clients through tailored solutions based on industry-leading practices. ProSidian provides enterprise services/solutions for...Contract workH1bWork at office
$125k - $290k
...employees and encourage them to pursue their ambitions. Weaver focuses on helping people lead balanced, integrated lives, supported... ...Commercial Tax Manager or Senior Manager provides federal tax compliance and planning services to large middle market and public companies...Flexible hours$90k - $115k
...Job Summary IT Risk and Compliance Analyst position is a highly visible, client‑facing role that works closely with Legal and Business Unit... ...is a plus. Familiarity with GDPR and CCPA. Familiarity using GRC tools. Knowledge of application and network security, information...Work experience placementLocal area- ...Job Description ProSidian Seeks a Contract Compliance Analyst | Compliance / Risk / Regulatory: Risk, Compliance & Independent Certification... ...program exposure preferred. Skills Required Primarily focused on Management and Financial Consulting, Acquisition and...Full timeContract workTemporary workFor contractorsWork at officeRemote workFlexible hours
$85k - $95k
...Engineering is seeking a qualified candidate for a role at the Naval Surface Warfare Center in Maryland, focusing on data evaluation and environmental compliance. Responsibilities include assessing liquid discharges from Armed Forces vessels, drafting technical reports...$205.9k - $270.3k
...every community we're in. As a company, we focus on creating positive change to build a... ...protect guest and company data, and ensure compliance with global regulatory requirements while... ...Director, Governance Risk & Compliance (GRC), you own end-to-end delivery for the GRC...Permanent employmentPart timeWork visa- ...LIS Solutions is looking for a Junior Compliance Officer to support the Department of Homeland Security's worksite enforcement unit. The role involves inputting and evaluating data, conducting database queries, and supporting compliance review activities. Candidates must...Work at office
$50k - $60k
...about important issues affecting their lives. Position Summary The Compliance Associate will support the Money product team by ensuring... ...mission‑driven culture with core values of quality and integrity. Focus on fostering personal and professional growth. Competitive...Work at office$140k - $180k
...cutting-edge research and technology in the cyber arena, CPMG focuses on using business drivers to guide cybersecurity... ...including architectural designs, technical reports, RCAs, RMF artifacts, and compliance deliverables (CDRLs) Manage system upgrade, patching, testing...For contractorsFlexible hours$65k - $80k
...The Information Assurance (IA) Analyst will be responsible for... ...governance, risk management, compliance, and information assurance. This... ...Familiarity with the usage of modern GRC tooling (i.e., Drata, Vanta,... ...including (ISO 27001, NIST CSF, NIST RMF, FAIR, COBIT, NIST SP 800‑53,...Immediate startFlexible hours- ...This role involves developing and implementing compliance strategies, ensuring adherence to federal regulations, and mitigating compliance risks. The Senior Consultant will be instrumental in helping our clients achieve compliance excellence while aligning with governmental...
$50k - $60k
...Overview The Compliance Associate will support the Money product team, ensuring compliance requests are published on time and that financial... ...work environment. Entrepreneurial, mission‑driven culture focused on personal and professional growth. Potential hybrid schedule...$112.7k - $193.2k
.... Connecting. Growing together. This District of Columbia Compliance Officer will serve in a role providing direct support to UnitedHealthcare... ...national compliance teams and various compliance program focus areas as needed Evaluate compliance program functions and...Minimum wageFull timeWork experience placementWork at officeLocal areaRemote workFlexible hoursShift work- ...Customs Compliance Specialist For over 70 years Buckland has been working to help companies across the world experience global trade... ...way. Buckland employs a unique approach to global trade that focuses on combining trusted technologies and talented people that know...Work at office
$60k - $90k
...corporations and financial institutions operating in key markets and sectors. Norton Rose Fulbright is seeking an experienced Compliance (Conflicts) Analyst with conflicts review experience to join our US team. Compliance Analysts conduct conflict‑of‑interest research and...Full timeFor contractorsWork at officeRemote workWorldwideFlexible hours$260k - $390k
...companies, private equity sponsors, investors, and healthcare-focused businesses on complex regulatory and transactional matters.... ...regulatory landscape while supporting sophisticated transactions and compliance initiatives. Responsibilities Advise healthcare...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Compliance Analyst (GRC/RMF Focused). Be the first to apply!
- senior regulatory affairs specialist Washington DC
- regulatory affairs consultant Washington DC
- regulatory compliance specialist Washington DC
- trade compliance specialist Washington DC
- legal compliance analyst Washington DC
- research compliance officer Washington DC
- regulatory specialist Washington DC
- coding compliance specialist Washington DC
- information security compliance analyst Washington DC
- junior compliance officer Washington DC

