Governance, Risk, and Compliance (GRC) Analyst

Company: Jun CyberJob Type: ContractLocation: Fully remote – Open to applicants based in the Philippines onlyDepartment: Cybersecurity / ComplianceAbout Jun CyberJun Cyber is a cybersecurity and compliance-focused organization dedicated to helping businesses navigate complex regulatory environments, strengthen their security posture, and achieve certifications such as CMMC, SOC 2, and ISO 27001. Our mission is to deliver practical, scalable, and effective cybersecurity solutions that empower organizations to operate securely and confidently.Position OverviewJun Cyber is seeking a detail-oriented and motivated GRC Analyst to support our growing compliance and risk management initiatives. The ideal candidate will assist in implementing, maintaining, and improving governance, risk, and compliance programs across multiple frameworks, with a strong focus on CMMC, NIST, SOC 2, and ISO 27001.This role requires strong analytical skills, excellent documentation capabilities, and the ability to collaborate with cross-functional teams to ensure compliance requirements are met.Key ResponsibilitiesSupport the development, implementation, and maintenance of GRC programs and policiesAssist in preparing for and managing compliance audits (CMMC, SOC 2, ISO 27001, NIST 800-171)Conduct risk assessments and document findings, including risk mitigation strategiesDevelop, review, and maintain security policies, procedures, and documentationTrack compliance status and remediation efforts across projectsWork with internal teams and clients to gather evidence for audits and assessmentsMonitor regulatory changes and ensure organizational alignment with new requirementsAssist in vendor risk assessments and third-party compliance reviewsMaintain GRC tools, dashboards, and reporting metricsRequired QualificationsBachelor's degree in Cybersecurity, Information Technology, or related field (or equivalent experience)1–3 years of experience in GRC, cybersecurity, or compliance-related rolesFamiliarity with frameworks such as CMMC, NIST 800-171, NIST CSF, SOC 2, and ISO 27001Strong understanding of risk management principlesExcellent written and verbal communication skillsStrong organizational and documentation skillsAbility to manage multiple tasks and meet deadlines in a remote environmentPreferred QualificationsExperience supporting CMMC assessments or readiness programsKnowledge of tools such as (put the tools needed)Relevant certifications (or working toward), such as:CompTIA Security+(add more certifications if needed)Experience working with Managed Service Providers (MSPs) or consulting environmentsKey CompetenciesAttention to detail and accuracyAnalytical and critical thinkingProactive and self-motivatedStrong collaboration and communication skillsAdaptability in a fast-paced environmentWhat We OfferCompetitive compensation (based on experience)Opportunity to work on high-impact cybersecurity compliance projectsProfessional development and certification supportCareer growth within a rapidly expanding cybersecurity firmHow to ApplyInterested candidates should submit their resume along with a brief cover letter outlining their experience with GRC frameworks and compliance initiatives.#J-18808-Ljbffr