Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Cybersecurity Analyst (GRC)

$89.5k - $130k
Full-time

BMC Software

POSITION SUMMARY: The Senior Cybersecurity Analyst (Governance, Risk, and Compliance) plays an important role in building and maturing Boston Medical Center Health System’s GRC program. This role will be key to developing and improving human-driven processes before enterprise tooling is in place, and will make that work visible, auditable, and ready to scale. Position: Senior Cybersecurity Analyst Department: Information Security Schedule: Full Time ESSENTIAL RESPONSIBILITIES / DUTIES: Lead execution of GRC program initiatives, contributing design input on processes, workflows, and work products as the program matures toward enterprise tooling adoption. Maintain and operationalize risk registers, control frameworks, and maturity assessments aligned to NIST CSF 2.0, HIPAA/HITECH, and applicable federal and state security and privacy regulations. Drive compliance monitoring activities and recommend updates to security policies, standards, and procedures that balance regulatory rigor with operational practicality. Coordinate the third-party risk management process, including vendor risk assessments and ongoing vendor risk workflows. Apply risk scoring methodologies to support framework maturity tracking and quantified risk metrics, incorporating business continuity and disaster recovery considerations. Manage structured GRC work products in spreadsheet and document-based environments (e.g., Excel, SharePoint), keeping them accurate, accessible, and audit-ready on an ongoing basis. Translate technical findings into clear, actionable written and verbal reporting for executive and non-technical audiences. Partner with stakeholders across IT and non-IT business functions to advance new standards and workflows, influencing adoption without direct authority. Prioritize multiple concurrent workstreams to deliver accurate results on schedule in a fast-paced, evolving environment. (The above statements in this job description are intended to depict the general nature and level of work assigned to the employee(s) in this job. The above is not intended to represent an exhaustive list of accountable duties and responsibilities required) JOB REQUIREMENTS REQUIRED EDUCATION AND EXPERIENCE: Bachelor's degree in Cybersecurity, Computer Science, Information Management, or a related field preferred A minimum of six years of experience in information security or related discipline, with a strong focus on governance, risk, and compliance programs in complex or regulated environments. Or equivalent combination of education and experience. PREFERRED EDUCATION AND EXPERIENCE: Demonstrated experience building or significantly maturing a GRC function, including the design of processes and workflows prior to enterprise tooling adoption. CERTIFICATIONS, LICENSES, REGISTRATIONS PREFERRED: Professional certifications such as CISA, CRISC, CISSP, or equivalent are highly desirable. KNOWLEDGE, SKILLS & ABILITIES (KSAs): Demonstrated experience in data mining, analysis and report development required. Strong knowledge of information systems security concepts and current information security/privacy trends and practices. Knowledge of Federal and State security and privacy-related regulatory requirements. Excellent written and oral communication skills, interpersonal skills, and effective leadership skills to support privacy programs. Must be able to prepare formal reports and presentations as needed. Must be detailed oriented and possess the ability to prioritize tasks so work is completed in an accurate, timely manner. Strong business and technical skills in the planning, administration, and management of information systems, operational and technical security controls; and security risk analysis and management. Self-starter with the ability to work independently, prioritize, multi-task, and maintain flexibility in fast-paced, changing environment. Ability to confront conflict and difficult issues in a professional, assertive, and proactive manner. Ability to build strong working relationships at all levels, internal and/or external to the organization. Knowledge about medical records and other medical information, patient privacy and confidentiality, and release of information. Academic medical center and/or health care consulting experience preferred. Compensation Range: $89,500.00- $130,000.00 This range offers an estimate based on the minimum job qualifications. However, our approach to determining base pay is comprehensive, and a broad range of factors is considered when making an offer. This includes education, experience, skills, and certifications/licensures as they directly relate to position requirements; as well as business/organizational needs, internal equity, and market-competitiveness. In addition, BMCHS offers generous total compensation that includes, but is not limited to, benefits (medical, dental, vision, pharmacy), discretionary annual bonuses and merit increases, Flexible Spending Accounts, 403(b) savings matches, paid time off, career advancement opportunities, and resources to support employee and family well-being. NOTE: This range is based on Boston-area data, and is subject to modification based on geographic location. Equal Opportunity Employer/Disabled/Veterans According to the FTC, there has been a rise in employment offer scams. Our current job openings are listed on our website and applications are received only through our website. We do not ask or require downloads of any applications, or “apps” job offers are not extended over text messages or social media platforms. We do not ask individuals to purchase equipment for or prior to employment. Working at Boston Medical Center is more than a job. It’s a chance to make a difference as part of our mission to provide exceptional and equitable care to all. As a nationally-recognized leader in health equity, nursing, initiatives to combat climate change, and many other areas, BMC is dedicated to improving the health of our community in Boston and beyond. BMC’s mission to provide exceptional care without exception extends to our employees, and we have been recognized as a top employer and best place to work. A strong sense of teamwork and support for our staff are the bedrock of BMC, as we know that we can only provide exceptional care to patients when our staff are cared for too. Boston Medical Center is an equal employment/affirmative action employer. We ensure equal employment opportunities for all, without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity and/or expression or any other non-job-related characteristic. If you need accommodation for any part of the application process because of a medical condition or disability, please send an e-mail to View email address on click.appcast.io or call View phone number on click.appcast.io to let us know the nature of your request. Boston Medical Center participates in the Electronic Employment Verification Program. As an E-Verify employer, prospective employees of BMC must complete a background check before beginning their employment at the hospital. BMC requires all staff to be vaccinated against COVID-19 and flu, as well as receive a booster dose of the COVID-19 vaccine. According to the FTC, there has been a rise in employment offer scams. Our current job openings are listed on our website and applications are received only through our website. We do not ask or require downloads of any applications, or “apps” job offers are not extended over text messages or social media platforms. We do not ask individuals to purchase equipment for or prior to employment. To avoid becoming a victim of an employment offer scam, please follow these tips from the FTC: FTC Tips

Vacancy posted 5 hours ago
Similar jobs that could be interesting for youBased on the Senior Cybersecurity Analyst (GRC) in United States vacancy
  • A federal services provider is seeking a Cybersecurity Analyst in Alexandria, VA, focused on governance, risk, and compliance (GRC) activities. The ideal candidate should have...  ...minimum of 10 years of relevant experience and senior-level cybersecurity certifications. You... 
    Senior

    Medium

    Alexandria, VA
    12 hours ago
  • Georgia Tech Research Institute (GTRI) is seeking a GRC Cybersecurity Analyst in Atlanta, GA. This role is focused on risk management and compliance to protect sensitive information. Responsibilities include monitoring security incidents, conducting risk assessments, and... 
    Senior

    Georgia Tech Research Institute

    Atlanta, GA
    12 hours ago
  • A leading utility provider in Pennsylvania seeks a GRC Cybersecurity Senior Analyst to ensure compliance with regulatory obligations. This role involves collaboration with various departments to implement governance and risk management processes. The ideal candidate has... 
    Senior

    UGI Utilities, Inc.

    New York, NY
    4 days ago
  • A leading federal services provider is seeking a Cybersecurity Analyst in Alexandria, VA. This role includes managing governance, risk, and compliance activities to ensure compliance with DoD requirements. The ideal candidate will have at least 10 years of relevant experience... 
    Senior

    PingWind Inc

    Alexandria, VA
    4 days ago
  • $10k

     ...Cybersecurity Senior Data Analyst ONLY PERMANENT EMPLOYEES IN THE TITLE AND THOSE THAT ARE REACHABLE ON THE CYBER SECURITY ANALYST CIVIL SERVICE LIST...  ...technology (IT) Governance, Risk and Compliance (GRC) best practices, methodologies and tools. - Conduct research... 
    Senior
    Permanent employment
    Work at office
    Work from home
    2 days per week

    New York City | Jobs

    Long Island City, NY
    3 days ago
  • $170k - $200k

    Job Title: Senior Security Engineer (Security Operations & GRC) Role Overview Join a fast-growing technology company where security is a strategic business function, not just a support role. As a Senior Security Engineer, you'll own key areas across Security Operations... 
    Senior
    Full time

    HIRECLOUT

    Glendale, CA
    1 day ago
  •  ...J Cybersecurity & GRC Analyst We are CirrusLabs. Our vision is to become the world's most sought-after niche digital transformation company that helps customers realize value through innovation. Our mission is to co-create success with our customers, partners, and community... 

    CirrusLabs

    Atlanta, GA
    12 hours ago
  •  ...This position is located within the GRC Team and will serve as a subject-matter expert and for governance, risk, and compliance activities...  ...security audits to identify weaknesses in the institution's cybersecurity posture and recommend remediation measures. • Develop and... 

    Insight Global

    Atlanta, GA
    12 hours ago
  •  ...them with exceptional professionals for this role. MANTECH seeks a motivated, career and customer-oriented Senior Incident Response Cybersecurity Analyst to join our team in Doral, FL. This position uses a Panama schedule which includes 12 hour shifts work... 
    Senior
    Work at office
    Shift work
    Night shift

    MANTECH

    Doral, FL
    6 days ago
  • $130k - $160k

     ...Senior Cybersecurity Risk Analyst At Danaher, our work saves lives. And each of us plays a part. Fueled by our culture of continuous improvement,...  ...including country-of-origin scrutiny. Familiarity with GRC platforms (e.g., OneTrust, ServiceNow IRM, RSA Archer) and... 
    Senior
    Remote job
    Work from home
    Flexible hours

    Danaher

    Denver, CO
    1 day ago
  •  ...America LLC is seeking an experienced Advisor, Information Security GRC to lead Governance, Risk, and Compliance programs. The role...  ...will implement security frameworks while leveraging AI for cybersecurity improvement. The position offers the opportunity to work in a dynamic... 
    Senior

    Daimler Trucks North America LLC

    Atlanta, GA
    4 days ago
  • $153.6k - $192k

    Brex is seeking a Senior GRC Engineer in Seattle to drive critical Governance, Risk, and Compliance processes. This role involves automating security controls and building integrations to maintain compliance as Brex expands. Candidates should have over 5 years of experience... 
    Senior

    Brex

    Seattle, WA
    1 day ago
  • A growing manufacturing organisation supporting highly regulated government-related programmes is seeking a Cybersecurity GRC & Incident Response Analyst to join its security team. This is an opportunity to play a critical role in advancing cybersecurity maturity, supporting... 
    Immediate start

    Opus Recruitment Solutions

    Houston, TX
    12 hours ago
  • $94.8k - $148.2k

     ...A leading defense contractor is seeking a Cybersecurity Analyst to support a complex software system for emergency response. This role involves collaboration with teams, managing compliance with cybersecurity standards, and ensuring secure data sharing. The ideal candidate... 
    Senior
    For contractors
    Remote work

    Naval Nuclear Laboratory (FMP)

    Idaho Falls, ID
    1 day ago
  •  ...A veteran-owned engineering firm is seeking a Cybersecurity Analyst V in San Diego, CA to support IT, cybersecurity, and operational activities. This role involves ensuring compliance with DoD cybersecurity policies, supporting system monitoring, and collaborating with... 
    Senior
    Flexible hours

    Saalex

    San Diego, CA
    1 day ago
  •  ...which cloud tools and how many years): Annual Audits: CompTIA Security+ Cert (Y/N): Details Position: Senior CyberSecurity Analyst Location: Norwalk, CT area - 4 days onsite - no relocation, need local to the CT and NYC area. Duration: W2,... 
    Senior
    Full time
    Local area
    Relocation

    3B Staffing LLC

    Norwalk, CT
    3 days ago
  • $57 - $67 per hour

    Apex Systems is hiring a Cybersecurity Analyst in Atlanta, GA. This role will focus on governance, risk management, and compliance, ensuring that...  ...'s degree and at least 5 years of progressive experience in GRC. Responsibilities include risk assessment and the development... 
    Hourly pay
    Contract work

    Apex Systems

    Atlanta, GA
    1 day ago
  • $130k

     ...Overview Senior Cybersecurity Analyst LOCATION: Washington DC - Navy Yard JOB STATUS: Full-time CLEARANCE: Secret CERTIFICATION: DoD 8140 IAT Level II TRAVEL: As Needed SALARY RANGE: Estimated $130,000+ USD Annually* *depending on experience... 
    Senior
    Full time
    Flexible hours

    ASTRION, INC.

    Washington DC
    4 days ago
  • $112k - $142k

    Overview: GovCIO is seeking a Senior Cybersecurity Analyst to support a critical government computer system for the U.S. Coast Guard (USCG) Software Yard– Capability Development Branch. This role is primarily responsible for ensuring that all mission software, applications... 
    Senior

    Govcio LLC

    Kearneysville, WV
    2 days ago
  •  ...specialist for a hybrid on-site role in Dearborn, MI. The candidate will design, develop, implement, and support SAP S/4HANA Security and SAP GRC environments, covering security administration, role design, governance, risk and compliance, production support, and ongoing... 
    Senior

    Apex Systems

    Dearborn, MI
    3 days ago
  •  ...clients across the Federal government, from senior level policy makers to program managers,...  ...of a mix of junior and mid-level analysts who will look to you for technical acumen...  ...Arlington, VA. Role & Responsibilities Provide cybersecurity expertise to surface combat system... 
    Senior
    Work at office

    Technomics

    Arlington, VA
    2 days ago
  •  ...Senior Cybersecurity Analyst Trident Technologies and Consulting - Global, LLC (d.b.a. T2C-Global) is currently seeking motivated and talented individuals who can offer the knowledge, skills, and experience to support the United States Navy, NAVSEA HQ in administrating... 
    Senior
    Contract work
    For contractors
    Work at office
    Flexible hours

    Navstar

    Alexandria, VA
    3 days ago
  •  ...intelligence platforms integrate with broader enterprise systems and processes Collaborate effectively with network, infrastructure, cybersecurity, and platform teams to align asset data with business and operational needs Communicate technical findings clearly and... 
    Senior
    Work experience placement
    Work at office
    Local area
    Remote work

    UnitedHealth Group

    United States
    2 days ago
  • HIRECLOUT is seeking a Senior Security Engineer to own Security Operations, GRC, and incident response in a fast-growing tech environment. You will lead investigations, develop detections, and guide Zero Trust initiatives while partnering across engineering and leadership... 
    Senior

    HIRECLOUT

    Glendale, CA
    1 day ago
  •  ...Overview: Senior Cybersecurity Consultant Location: Montgomery County, PA (Hybrid / On-Site) Employment Type: Full-Time / Contract...  ...posture. Key Responsibilities Governance, Risk & Compliance (GRC) Conduct enterprise and system-level cybersecurity risk... 
    Senior
    Full time
    Contract work

    Guru Schools

    Montgomery, Lycoming County, PA
    3 days ago
  •  ...Senior CyberSecurity Analyst We're recruiting a Senior CyberSecurity Analyst for our client in Vancouver, Washington. This is a fulltime career opportunity. This person serves as a senior expert in cybersecurity defense, engineering and planning, along the following... 
    Senior
    Full time

    LABINE AND ASSOCIATES, INC.

    Vancouver, WA
    3 days ago
  • $110k - $148k

     ...information systems that connect these domains. Learn more about ENSCO. Position Description We are seeking an experienced Senior Cybersecurity Analyst to provide advisory & assistance services (A&AS) to support a major defense program, focusing on the acquisition and... 
    Senior
    Full time
    Contract work
    For contractors
    Local area
    Worldwide

    ENSCO

    Colorado Springs, CO
    12 hours ago
  •  ...Flywheel Energy is seeking an experienced and driven Senior Cybersecurity Analyst to protect the data, infrastructure, and operational systems that power our ~1,000-person upstream oil and gas business. The Senior Cybersecurity Analyst will serve as a primary defender... 
    Senior
    For contractors
    Remote work

    Flywheel Energy LLC

    Oklahoma City, OK
    1 day ago
  •  ...California is seeking a VP, Lead Security Risk Analyst in Los Angeles. This role leads...  ...successful candidate will work closely with senior management, conducting complex risk assessments...  ...in cloud security, risk management, and GRC frameworks. Banc of California offers a... 
    Senior

    Banc of California

    Los Angeles, CA
    12 hours ago
  •  ...Senior Cybersecurity Analyst Location: Anywhere Type: Contract-to-Hire Category: Security Industry: Government Workplace Type: Remote Reference ID: JN-062026-107364 Applicants must be United States citizens or permanent residents with an active Public Trust clearance.... 
    Senior
    Hourly pay
    Permanent employment
    Full time
    Contract work
    Remote work

    Eliassen Group

    Salem, OR
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Cybersecurity Analyst (GRC). Be the first to apply!