Job Description GRC Analyst This opportunity is remote, but may require occasional meetings onsite. Only candidates in the National Capitol Region. Job Summary: We are seeking a proactive and detail-oriented Cybersecurity Information Assurance Engineer (Junior) / GRC Analyst (Junior) to support the development of information systems assurance programs and enhance the organization’s governance, risk, and compliance (GRC) processes. Under general supervision, the GRC Analyst will assist in implementing security control guidelines, resolving technical issues, and supporting the development of new dashboards, metrics, and automated functionality. The successful candidate will also contribute to federal compliance initiatives, conduct market research, and help streamline cybersecurity operations through automation and policy adherence. Key Responsibilities: Assist in developing and implementing information systems assurance programs and security control guidelines to ensure compliance with cybersecurity best practices. Support the resolution of technical issues, prioritization of tasks, and development of methods to enhance cybersecurity operations. Prepare activity and progress reports related to information systems audits, ensuring accurate documentation of cybersecurity efforts. Develop new dashboard views to support the Cybersecurity Framework (CSF) and establish performance metrics for improved reporting and decision-making. Define processes for leveraging data from the Continuous Diagnostics and Mitigation (CDM) dashboard and provide support for stakeholder training on its usage. Assist in the automation of existing processes using Power Apps or similar tools to improve operational efficiency. Analyze and review emerging federal information security and privacy policies, directives, and mandates, ensuring timely compliance with specified requirements. Track the ownership of policies and procedures, ensuring the associated implementation timelines are adhered to and compliance requirements are met. Conduct market research and assist in establishing a roadmap for modernizing the organization’s Governance, Risk, and Compliance (GRC) tool, identifying key requirements for improvement. Support agency-led High Value Asset (HVA) assessments in compliance with the Cybersecurity and Infrastructure Security Agency (CISA) Assessment Evaluation and Standardization (AES) Program. Update and enhance the organization’s Entity-Wise Business Impact Analysis (EWBIA) to align with evolving business and cybersecurity needs. Qualifications: Bachelor’s degree in Cybersecurity, Information Technology, or a related field. Minimum 2 years of experience in cybersecurity or related fields, with exposure to governance, risk, and compliance processes. Possesses IAT Level II certification (e.g., CompTIA Security+, GIAC, or equivalent). Familiarity with the Cybersecurity Framework (CSF) and Continuous Diagnostics and Mitigation (CDM) dashboard concepts. Basic understanding of automation tools like Power Apps and experience with process automation is a plus. Knowledge of federal cybersecurity and privacy mandates, with the ability to analyze and assist in the implementation of new policies. Strong attention to detail and the ability to manage multiple tasks effectively. Excellent communication skills, with the ability to prepare reports and documentation for various audiences. Preferred Skills: Exposure to High Value Asset (HVA) assessments and familiarity with CISA’s Assessment Evaluation and Standardization (AES) Program. Experience in conducting Entity-Wise Business Impact Analysis (EWBIA) or similar processes. Basic understanding of API development to support automation and data integration efforts. #J-18808-Ljbffr PKH Enterprises
...care organizations. What we need: Were currently seeking Registered Nurses to join our team at Baylor Scott & White Memorial Hospital in Temple, Texas; The #1 one city in the nation for Nursing opportunities and advancement! Baylor Scott & White Memorial Hospital...
...CellXperts has a full-time and part time position available for experienced cell phone repair technicians. You must have work experience repairing cell phones and tablets. Preferred experience includes repairing screens, charge ports, batteries on iPhones, iPads, Samsung...
...Job Title: Commercial Lines Underwriter Location: Stamford, CT (Hybrid: 2 days in-office, 3 days remote) Experience Level: 2+ years of experience About the Company: Our client is a leading insurance carrier known for its commitment to excellence and innovation...
...mortgage and title subsidiaries. Please visit our website at for more information. D.R. Horton, Inc. is currently looking for a Purchasing Assistant for their Purchasing Department. The right candidate will support thepurchasing department with a variety of clerical...
Jewelry Designer - Need Korean DesignerAbout usHS, one of the earliest companies in the domestic diamond industry, was established in 1999 and has engaged itself in the design an asles of high-end jewelry products with the spirit of pursuing perfection and constant innovation...