Compliance Analyst (GRC/RMF Focused)

Job Description

• This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Compliance Analyst (GRC/RMF Focused) in United States. In this role, you will support critical governance, risk, and compliance initiatives within highly regulated and federal-focused environments. You will play a central role in developing, maintaining, and managing security documentation aligned with frameworks such as NIST, FISMA, FedRAMP, and RMF standards. The position combines technical cybersecurity knowledge with strong analytical and documentation expertise to ensure audit readiness and continuous compliance. Working closely with cross-functional teams, you will help translate complex technical configurations into clear and actionable compliance artifacts for both technical and non-technical stakeholders. This opportunity is ideal for a detail-oriented compliance professional who thrives in fast-paced environments and enjoys balancing multiple initiatives simultaneously. You will contribute directly to strengthening security posture, supporting authorization efforts, and maintaining compliance across cloud and on-premise infrastructures. The role also offers exposure to evolving technologies, including AI-supported documentation and compliance workflows.
• Accountabilities: Develop, maintain, and update security documentation including System Security Plans (SSPs), policies, procedures, and control implementation statements. Support governance, risk, and compliance initiatives aligned with NIST SP 800-53, FISMA, RMF, and related federal standards. Manage compliance artifacts and ensure documentation remains audit-ready and aligned with regulatory requirements. Support FedRAMP, CMMC, SOC 2, and continuous monitoring activities across regulated environments. Develop and manage Plans of Action and Milestones (POA&Ms) and track remediation activities. Translate technical system configurations and security controls into clear, understandable compliance documentation. Collaborate with technical teams, customers, and stakeholders to communicate compliance requirements and support authorization efforts. Utilize GRC platforms and compliance tracking tools to manage workflows, risks, and documentation processes. Participate in ongoing risk assessments, control evaluations, and compliance reporting activities. Support process improvement initiatives and leverage AI tools to enhance documentation development and operational efficiency. Requirements: Bachelor’s degree in Cybersecurity, Information Technology, Information Systems, or a related field. 3–6+ years of experience in governance, risk, and compliance (GRC), RMF, or cybersecurity compliance roles. Strong knowledge of NIST SP 800-53, FISMA, RMF, and related NIST guidance including 800-37, 800-60, 800-171, and 800-137. Experience supporting FedRAMP, CMMC, and/or SOC 2 compliance initiatives. Hands-on experience with GRC platforms and compliance management tools. Strong understanding of cloud, on-premise, and cybersecurity infrastructure concepts. Proven ability to produce high-quality, audit-ready documentation and manage multiple compliance workstreams. Excellent written and verbal communication skills with the ability to explain complex concepts clearly. Strong organizational skills with exceptional attention to detail and deadline management capabilities. Ability to work independently while collaborating effectively across technical and business teams. Familiarity with AI tools and the use of AI-assisted workflows for documentation and compliance support. U.S. Citizenship required to support federal contracting environments. Certifications such as CISA, Security+, CISSP, or FedRAMP/RMF-related credentials are highly valued. Benefits: Fully remote work environment with standard weekday business hours. Opportunity to work on high-impact cybersecurity and federal compliance initiatives. Exposure to advanced governance, risk, and compliance frameworks and technologies. Collaborative and mission-driven work culture focused on security and operational excellence. Professional development opportunities including exposure to FedRAMP, RMF, and cloud security programs. Opportunity to leverage modern compliance tools and AI-assisted workflows. Stable full-time position within regulated and security-focused environments. Inclusive workplace culture supporting collaboration, growth, and continuous learning.
• How Jobgether works: We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best! Why Apply Through Jobgether? Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time. #LI-CL1
• We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
• apply for this job