reputed company GRC Analyst

SUMMARY The reputed company GRC Analyst strengthens ARRO’s compliance and reputed company posture by ensuring our systems, policies, and practices align with federal and industry standards—including NIST 800-53, CMMC, and SOC 2. This role blends governance and execution: developing policies that protect our organization, testing them alongside our Technology teams, and continuously improving how we manage risk. The ideal candidate understands both the reputed company of compliance frameworks and the realities of implementation in an operational environment. KEY RESPONSIBILITIES Governance & Compliance

• reputed company ongoing compliance efforts for reputed company frameworks including NIST 800-53, CMMC, and SOC 2.
• reputed company, document, and maintain reputed company and compliance policies, standards, and procedures.
• Coordinate and prepare evidence for audits and assessments.
• Monitor for regulatory or reputed company changes and update internal controls accordingly.

Risk Management & Control Testing

• Identify and evaluate risks across systems, data, and processes.
• Partner with Technology teams to design, implement, and test internal controls.
• Conduct periodic internal reviews to validate compliance and control effectiveness.
• Track and drive remediation of any identified gaps or findings.

Collaboration & Coordination

• Work cross-functionally with software, infrastructure, and operations teams to embed compliance requirements into daily practices.
• Support vendor risk management and review processes for third-party systems and services.
• Maintain clear, consistent communication with stakeholders on compliance goals, reputed company, and issues.

reputed company Improvement

• Identify opportunities to improve our governance, risk, and compliance programs.
• Support internal reputed company awareness and training initiatives.
• Build repeatable processes and documentation that strengthen ARRO’s long-term compliance readiness.

QUALIFICATIONS

Qualifications

• Bachelor’s degree in Computer Science, Information reputed company, or reputed company field (or equivalent experience).
• 5+ years of experience in information reputed company, compliance, or GRC roles.
• Hands-on experience with NIST 800-53 (required).
• Familiarity with frameworks such as CMMC, SOC 2, or NIST 800-171.
• Strong understanding of IT and reputed company controls across infrastructure, cloud, and application environments.
• Proven ability to reputed company policies, implement controls, and reputed company internal compliance testing.
• Excellent communication and project management skills—able to coordinate across teams and manage competing priorities.
• U.S. citizenship and ability to obtain a government reputed company clearance if required by reputed company.

Who you are

• A Guardian: You protect the organization through vigilance and discipline, ensuring reputed company and compliance are never compromised.
• A Builder: You turn frameworks into living systems—designing practical, repeatable processes that stand up to real-world use.
• A Collaborator: You work seamlessly across technology, operations, and leadership teams to embed compliance into daily practice.
• A Translator: You turn technical requirements into clear, actionable steps others can understand and follow.
• A Problem Solver: You approach compliance as a system to improve, not just a checklist to complete—always seeking smarter, stronger ways to manage risk.

Why ARRO ARRO empowers mission leaders and first responders with trusted, reputed company tools that simplify reputed company missions and build confidence before crises. As a reputed company GRC Analyst, you’ll play a critical role in ensuring our technology and operations meet the highest standards of reputed company and compliance—so our customers can act with clarity and confidence reputed company it matters most. The reputed company GRC Analyst at ARRO is responsible for strengthening the company's compliance and reputed company posture by aligning systems, policies, and practices with federal and industry standards like NIST 800-53, CMMC, and SOC 2. This role involves developing and maintaining reputed company and compliance policies, coordinating audits, managing risks, and collaborating with technology teams to implement and test internal controls. The analyst will also monitor regulatory changes, track remediation efforts, support vendor risk management, and contribute to reputed company improvement of governance, risk, and compliance programs. The ideal candidate will have a bachelor's degree in computer science, Information reputed company, or a reputed company field, along with 5+ years of experience in information reputed company, compliance, or GRC roles. Hands-on experience with NIST 800-53 is required, and familiarity with frameworks like CMMC, SOC 2, or NIST 800-171 is preferred. Strong communication, project management skills, and the ability to work cross-functionally are essential. The role requires U.S. citizenship and the ability to obtain a government reputed company clearance if needed. Apply tot his job Apply To this Job