Senior GRC Analyst

About Delinea:
Delinea is a pioneer in securing human and machine identities through intelligent centralized authorization empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence Delineas leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle across cloud and traditional infrastructure data SaaS applications and AI. It is the only platform that enables you to discover all identities including workforce IT administrator developers and machines assign appropriate access levels detect irregularities and respond to threats in real-time. With deployment in weeks not months 90% fewer resources to manage than the nearest competitor and a 99.995% uptime Delinea delivers robust security and operational efficiency without compromise. Learn more about Delinea on LinkedIn X and YouTube.

Join our passionate global team at Delinea and help us make the world a safer and more secure place. Our success is driven by world-class product leadership outstanding engineers and strategic investment from TPG. We value diversity innovation and a culture of respect and fairness. If youre ready to push boundaries and challenge the status quo in security we want to hear from you.

Apply today to help us achieve our mission.

Delineas Cybersecurity organization is seeking a skilled Senior GRC Analyst to play a key role in ensuring Delineas alignment and adherence with policies practice and maintaining the companys cybersecurity risk management framework across both commercial and regulated public sector environments.

This role requires strong crossfunctional partnership to ensure compliance and drive continuous improvement including alignment with U.S. public sector standards such as FedRAMP and GovRAMP as well as broader riskmanagement and improvement initiatives.

This is a remote position based in the U.S. and reports to the Director of Governance Risk and Compliance.

What Youll Do:

Enforce cybersecurity Process Risk and Control frameworks that are rationalized against applicable laws and standards.

Support FedRAMP Moderate and/or High authorization and ongoing compliance

oCoordinate with 3PAOs sponsoring agencies and internal stakeholders during initial assessment.

oAssist in developing and maintaining FedRAMP-required documentation.

oCoordinate evidence collection for RAR SAR and continuous monitoring.

oTrack security control implementation with engineering and IT teams.

oMaintain and update the POA&M and remediation timelines.

oHelp manage ongoing FedRAMP continuous monitoring activities (e.g. monthly scans annual assessments).

Perform cybersecurity risk assessments and maturity assessments.

Conduct control readiness assessments to evaluate design implementation and effectiveness.

Execute strategy for improving efficiency and ensuring organizational procedure alignment to maintain compliance with industry standards.

Lead continuous control monitoring activities using GRC and compliance automation platforms.

Function as a trusted advisor for business partners on the design and effective operation of controls.

What Youll Bring:

Bachelors degree in computer science Information Technology Business Administration or a related field.

7 years of relevant work experience.

Working knowledge of FedRAMP requirements including:

oNIST SP 800-53 Rev. 5 or FedRAMP 20x security controls

oFedRAMP Moderate or High Baseline

oFedRAMP PMO processes (Readiness Assessment 3PAO interactions ATO phases)

Understanding of federal cybersecurity frameworks (NIST 800-37 RMF FIPS 199/200 etc.)

Experience in creating or maintaining System Security Plans (SSPs) Policies procedures and SOPs Control implementation statements and POA&M (Plan of Action & Milestones)

Experience supporting SOC 1 SOC 2 and PCI-DSS audits for cloud based services

Strong verbal and written communication analytical and people skills.

Wed Love to See:

Familiarity with Common Criteria concepts including Security Targets and evaluation artifacts.

Familiarity with Cybersecurity Maturity Model Certification (CMMC)

Cybersecurity certifications (e.g. CISSP CISA CRISC CIPP etc.).

Familiarity with OneTrust or other GRC tools.

Familiarity with Jira and Confluence

For this Job Delinea is not considering candidates that need any type of US work authorization now or in the future. This includes but is not limited to: F1-OPT F1-CPT H-1B TN L-1 J1 etc.

Why work at Delinea

• Were passionate problem-solvers helping the worlds largest organizations protect what matters most: their human and machine identities.

• We invest in people who are smart self-motivated and collaborative.

• What we offer in return is meaningful work a culture of innovation and great career progression.

At Delinea our core values are STRONG and guide our behaviors and success:

• Spirited - We bring energy and passion to everything we do

• Trust - We act with integrity and deliver on our commitments

• Respect - We listen value different perspectives and work as one team

• Ownership - We take initiative and follow through

• Nimble - We adapt quickly in a fast-changing environment

• Global - We embrace diverse people and ideas to drive better outcomes

We believe weaving these core values into our day-to-day actions and our process for hiring evaluating and promoting employees helps us cultivate a work environment that embraces collaboration and camaraderie.

We take care of our employees. We offer competitive salaries a meaningful bonus program and excellent benefits including healthcare insurance as well as pension/retirement matching comprehensive life insurance an employee assistance program time off plans and paid company holidays.

Delinea is an Equal Opportunity and Affirmative Action employer and prohibits discrimination and harassment of any type with regard to race color religion age sex national origin disability status genetics protected veteran status sexual orientation gender identity or expression or any other characteristic protected by federal state or local laws.

Upon conditional offer of employment candidates are required to complete comprehensive criminal background check verification of education and verification of employment per employment addition all publicly posted social media sites may be reviewed.

Required Experience:

Senior IC