Description

You'll support the Governance, Risk, and Compliance program, assisting with risk assessments, audits, and compliance operations while working with security, legal, and IT teams to ensure regulatory and contractual requirements are met.

Requirements

• Early career professional with interest in cybersecurity compliance
• Focus on governance and compliance rather than engineering or technical work

Responsibilities

• Assist with maintaining and updating security policies, standards, and procedures
• Support compliance efforts with frameworks like NIST, ISO 27001, SOC 2, PCI DSS, CMMC
• Collect, organize, and maintain audit evidence for internal and external audits
• Support third-party/vendor risk assessments and due diligence reviews
• Maintain GRC documentation, trackers, and tools