Governance, Risk and Compliance Analyst

Babel Street$80K — $125K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Cybersecurity, Information Security, Information Systems, Business, or a related field.
  • 3+ years of experience in Governance, Risk, and Compliance or Information Security.
  • Familiarity with NIST CSF, CMMC, Cyber Essentials Plus, ISO/IEC 27001, and SOC 2.
  • Strong experience supporting audits, assessments, or certification activities.
  • Excellent written communication and organizational skills.
  • Ability to manage multiple priorities in a fast-paced environment.

Responsibilities

  • Maintain compliance programs aligned with various cybersecurity frameworks.
  • Coordinate internal and external audits and assessments.
  • Collect and validate compliance evidence and audit artifacts.
  • Track audit findings and remediation activities.
  • Conduct risk assessments and maintain risk registers.
  • Perform security reviews of vendors and third-party service providers.
  • Maintain GRC platforms and develop compliance metrics and reporting.

Benefits

  • Health Benefits covering 85-100% of monthly premiums for Medical, Dental, Vision, Life & Disability insurances.
  • Retirement Plans including a competitive matching 401(K).
  • Unlimited Flexible Leave to promote work-life balance.
  • 12 paid Federal Holidays each year.
  • Tuition Reimbursement for continuing education and professional development.
Full Job Description
Position Summary

The Governance, Risk & Compliance (GRC) Analyst is responsible for supporting and maintaining the organization's cybersecurity governance, risk management, and compliance programs. This role works across Information Security, Engineering, Product, IT, and business stakeholders to ensure compliance with applicable regulatory, contractual, and industry security requirements.

The GRC Analyst will assist in maintaining compliance with the NIST Cybersecurity Framework (NIST CSF), Cybersecurity Maturity Model Certification (CMMC), Cyber Essentials Plus, SOC 2, and ISO/IEC 27001 requirements through evidence collection, control monitoring, risk assessments, audit support, policy management, and remediation tracking.

Key Responsibilities

Compliance & Audit Management
  • Maintain compliance programs aligned with NIST CSF, CMMC, Cyber Essentials Plus, SOC 2, and ISO/IEC 27001.
  • Coordinate internal and external audits, assessments, and attestation activities.
  • Collect, validate, and maintain compliance evidence and audit artifacts.
  • Track audit findings and remediation activities through completion.
  • Support control testing and validation to ensure ongoing compliance.

Governance & Risk Management
  • Conduct security risk assessments and assist with enterprise risk management activities.
  • Maintain risk registers, track mitigation plans, and monitor remediation progress.
  • Assist with development and maintenance of security policies, standards, procedures, and guidelines.
  • Monitor security and compliance control effectiveness and identify opportunities for improvement.
  • Support control mapping and crosswalk activities across multiple compliance frameworks.

Third-Party Risk Management
  • Perform security reviews of vendors, suppliers, and third-party service providers.
  • Track vendor assessment findings and remediation activities.
  • Support ongoing monitoring of third-party security and compliance risks.

Customer & Regulatory Support
  • Respond to customer security questionnaires, due diligence requests, and compliance inquiries.
  • Support sales and customer-facing teams with security documentation and assurance materials.
  • Assist with documenting compliance posture and security program maturity.

Program Administration
  • Maintain GRC platforms and compliance repositories.
  • Develop metrics, dashboards, and compliance reporting for management.
  • Coordinate annual security awareness, compliance, and policy review activities.
  • Support continuous improvement initiatives across the security and compliance program.


Required Qualifications
  • Bachelor's degree in Cybersecurity, Information Security, Information Systems, Business, or related field (or equivalent experience).
  • 3+years of experience in Governance, Risk, and Compliance, Information Security, Audit, or related disciplines.
  • Working knowledge of:
    • NIST Cybersecurity Framework (CSF)
    • CMMC
    • Cyber Essentials Plus
    • ISO/IEC 27001
    • SOC 2
    • Risk assessment methodologies
  • Experience supporting audits, assessments, or certification activities.
  • Strong written communication, documentation, and organizational skills.
  • Ability to manage multiple priorities and deadlines in a fast-paced environment.

Benefits at Babel Street (just to name a few...)
  • Health Benefits: Babel Street covers 85-100% monthly premium costs for Medical, Dental, Vision, Life & Disability insurances - for you and your family!
  • Retirement Plans: Babel Street offers both a Traditional and Roth 401(K) with a very competitive match.
  • Unlimited Flexible Leave: We trust our employees to manage their own time and balance their personal and work lives.
  • Holidays: Babel Street provides employees with 12 paid Federal Holidays
  • Tuition Reimbursement: We are committed to investing in our employees. One way we do that is with our Tuition Reimbursement Program for continuing education.

Range for this position based on qualifications and experience

$80,000-$125,000 USD

About Babel Street

Babel Street is a software company that provides advanced data analytics and search capabilities to government agencies and private sector organizations. The company was founded in 2014 by Jeff Chapman and is headquartered in Reston, Virginia. Babel Street's flagship product is the Babel X platform, which allows users to search and analyze data from a wide range of sources, including social media, news articles, and public records. The platform uses advanced algorithms and machine learning to identify patterns and trends in large datasets, enabling users to make more informed decisions. Babel Street is committed to helping its customers stay ahead of emerging threats and opportunities.
Learn more about Babel Street
Size
50 employees
Industry
Founded
2014

Similar Jobs

More Jobs at Babel Street

More Information Technology Jobs

Find similar Governance, Risk and Compliance Analyst jobs: