- 경험
- 4년 이상
- 샐러리
- USD 80,000 – USD 90,000 / year
- 채용 공고
- 1
- 게시됨
- 4시간 전
- 작업 모드
- 사무실에서
- 교육
- Bachelor's degree in Cyber Security, Information Technology, Information Systems, or a related field
- 적임
- Applicants must be authorized to work in the United States without sponsorship.
- 재개하다
- 신청 시 필수 사항
당신이 일하게 될 곳
직무 설명
Role overview
Aaratech Inc. is hiring a Cyber Security GRC Analyst to support its governance, risk, and compliance efforts. The position is focused on strengthening the company’s security and regulatory position by assisting with framework management, audit preparation, risk evaluations, and compliance activities.
Company overview
Aaratech Inc. is a technology-focused organization working across cybersecurity, healthcare, and enterprise solutions. The company aims to protect digital assets, improve security resilience, and support secure operations through technology, experienced talent, and collaborative partnerships.
Compensation
The salary for this role is $80,000 to $90,000 per year, and the amount is negotiable.
Work authorization
Only candidates who are already authorized to work in the United States without sponsorship will be considered.
Responsibilities
- Assist with control testing and gathering proof for NIST, ISO 27001, and SOC 2 compliance requirements.
- Carry out compliance gap reviews and follow up on corrective actions until they are completed.
- Draft, update, and organize security policies, standards, and compliance-related records.
- Support assessments of third-party and vendor-related security risks.
- Work closely with IT, security, and business stakeholders during audits and other compliance-related efforts.
- Build audit-ready files, reports, and supporting evidence for compliance reviews.
Requirements
- A bachelor’s degree in Cyber Security, Information Technology, Information Systems, or another closely related discipline.
- At least 4 years of professional experience in IT audit, GRC, compliance, or risk management.
- Practical understanding of NIST, ISO 27001, SOC 2, and related security control frameworks.
- Background in supporting audits, compliance programs, and policy administration.
- Strong ability to stay organized, analyze issues, communicate clearly, and solve problems effectively.
- CISA certification is preferred.
- Training or certifications in NIST or ISO 27001 are preferred.
- Experience with SOC 2 compliance and vendor risk management is preferred.
- Additional credentials such as CRISC, CGRC, or ISO 27001 Lead Implementer/Lead Auditor are considered an advantage.
Additional information
The role is based in the Atlanta Metropolitan Area and is onsite. This is a full-time position.