- UpvoteDownvoteShare Job
- Suggest Revision
Provide configuration compliance and design, service aware risk scoring, integration with controls baselines from GRC controls universe; setup views of configuration tests, security baselines, CIS benchmarks for servers and other assets, Remediation Status reporting, tracking against individual configuration tests, risk scoring calculations, remediation, and remediation status of failed test results.
ExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
Experience with Governance, Risk, & Compliance (GRC) tools (i.e. RiskVision, CSAM, RSA Archer). The contract’s support functions are IA Management, Federal Information Security Management Act (FISMA) coordination and reporting, Risk Management Framework (RMF) application, IA compliance measurements and metrics, Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support.
Full-timeExpandUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
Leveraging the existing Governance, Risk, and Compliance (GRC) tool, Telos Xacta (or an alternate like CSAM or RSA Archer), to track and reconcile findings from assessments, audits, and vulnerability scans.
Full-timeExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
Demonstrate high proficiency in areas like Governance Risk & Compliance (GRC), Orchestration & Integration, and other ServiceNow modules. Create and manage workflows for various business units, including Accounts Payable, Accounts Receivable, Internal Audit, Operations, Sales, Marketing, and all core IT functions (PMO, Service Desk, Engineering, Compliance, Security, etc.
Full-timeExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
Experience with a Governance, Risk and Compliance tool (e.g., Xacta, RSA Archer, CSAM or eMASS). The candidate will serve as a subject matter expert with regards to the Risk Management Framework (RMF) and all associated information security policies and procedures and should possess in-depth knowledge of applying, selecting and testing the NIST family of security controls.
Full-timeExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
The Workday Cybersecurity Governance, Risk, Compliance & Trust (cGRCT) team enables business agility while maintaining a strong security posture via intelligent risk-taking, optimized controls management, and iterative security governance.
$261,600 a yearFull-timeExpandApply NowActive JobUpdated Today - UpvoteDownvoteShare Job
- Suggest Revision
Lead the development and implementation of the corporate-wide IT risk management program to ensure information security risks are identified and continuously monitored. Recruit, train, support, and retain talented IT GRC analysts.
ExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
Tanium is looking for a Governance, Risk, and Compliance (GRC) Director to join the information security team. The GRC Director is a leader with strong knowledge of security frameworks, controls, and audit techniques who seeks to improve how compliance programs are implemented and maintained.
$390,000 a yearFull-timeExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
These efficiency gains are achieved through extreme automation powered by CCM engines to bridge security, risk, and compliance activities. Our CCM automation engines and AI tools operate independently but are tightly coupled, eliminating the manual corrosion that grinds current GRC programs to a halt.
Full-timeExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation. Conduct risk analyses from vulnerability, compliance scans, pen testing results, or other audit activity; Writes including but not limited to Plan of Action and Milestones, System Security Plans, Security Control Traceability Matrices, Configuration Management Plans, Contingency Plans and Test Results, Business Impact Analyses, and Security Impact Analyses.
Full-timeExpandUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
You will liaise with Legal, Compliance, Human Resources, Finance, and Information Technology business partners on Cyber Risk and the governance of controls at Hilton. As a Senior Director of the GRC organization, you will partner and liaison with team members across Information Technology, Legal, Compliance, Human Resources, Business Development including our hotel owners, operators, and their staff in the delivery of Global Information Security services.
Full-timeExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
As an Analyst on the Information Security Trust team, you will support the implementation of a continuously evolving governance, risk, and compliance program (GRC) supporting our enterprise and products.
Full-timeExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
Work with emerging growth companies and established enterprises (both publicly traded and privately held) on a wide variety of projects including Sarbanes-Oxley ("SOX") readiness and compliance, internal audit, and enterprise risk management ("ERM.
Full-timeExpandUpdated 2 months ago - UpvoteDownvoteShare Job
- Suggest Revision
The IT Risk and Compliance Analyst will carry out IT security assessment activities including IT risk assessments and security reviews for university departments, as well as evaluations of third-party technology solutions, to ensure alignment with university policies, standards, and external compliance regulations wherever applicable.
Full-timeExpandApply NowActive JobUpdated 1 month ago - UpvoteDownvoteShare Job
- Suggest Revision
The Contractor Analyst will be experienced in risk management, issue management, risk and control self-assessments (RCSA), and have an understanding of security standards, and familiarity with risk and compliance (GRC) tool operations.
ExpandUpdated 1 month ago
grc risk compliance jobs in Fairfax, VA
FEATURED BLOG POSTS
10 Reasons HR is Important to an Organization
"Nothing we do is more important than hiring and developing people."
How to Build a Candidate Persona
A candidate persona is a semi-fictional representation of your ideal candidate. Building a candidate persona is one of the best methods employers use to ensure their sourcing, recruiting, and hiring processes are focused. Knowing exactly what you're looking for streamlines everything and helps increase hiring confidence. So here's how to create a candidate persona and how to use it.
How to Get Into The Trades: Step-by-Step Guide
Getting a trade job can be a great career move if you like variety and prefer to learn on the job instead of in an academic setting. A trade job can offer security and be a lucrative career path as the demand for skilled trade workers continues to grow.
How do Good Interviewers Prepare for Interviews?
Just like candidates take the time to research you and your company, you should take the time to prepare for the interview. Preparing for the interview doesn't just reflect well on your employer brand and create a better candidate experience. Preparation also helps prevent bad hiring decisions. Bad hiring decisions are usually a result of poor execution during the hiring process. However, going into an interview fully prepared and ready to evaluate candidates will help avoid bad hires. So, here are 6 interview preparation tips for employers.
How to Get a Union Job? A Step-by-Step Guide
A union job can significantly impact your job security, pay, and employment benefits. Whether this is your first job or you have years of experience, a union job can offer much-needed protection in a labor market where employees are hired and fired at will.
Should I Hire for Potential Over Experience?
The workforce is shifting every day. In fact, research from the World Economic Forum (WEF) shows over half of employees around the world will need to upskill or reskill by 2025. The rapid rise of digital literacy, automation, and new technologies will quickly supersede businesses that don't train ahead of the curve. With the dire need to invest in training, it's evident that hiring someone with experience isn't that much different than hiring someone without it.
How to Decide Between Two Job Offers: 10 Practical Tips
It’s arguably a good predicament to have. You’ve applied to many jobs, interviewed multiple times, and now find yourself with two legit job offers. Nice! But although this is a feel-good validation of everything you have to offer, a daunting choice lies ahead. How do you decide which job will be the best fit for you?