GRC Analyst

Benefits

Parental leave

Not verified

Non-birth-parent leave

Not verified

Family-building benefits

• Fertility benefits: Not verified
• Adoption assistance: Not verified
• Surrogacy assistance: Not verified

Mental health support

Not verified

Relocation assistance

Not verified

Childcare support

Not verified

Learning budget

Not verified

Verification

Not verified last checked Jun 13, 2026

Salary

Not verified

401(k) match

Listed Source: EMPLR_CONTRIB_INCOME_AMT. source Last checked Jun 13, 2026.

Was this benefit information wrong? Tell us.

Schedule

Shift type

Not verified

Weekend work

Not verified

Application

Cover letter

Not verified

Assessment

Not verified

Deadline

Not stated

Where they hire

State eligibility is not yet verified.

About this role

GRC Analyst Sofia, Bulgaria - Remote/In-Office Hybrid About the Role The GRC analyst helps maintain A-LIGN's management system as it relates to information security standards. In this role, you will be responsible for the coordination, maintenance, and improvement of A-LIGN's corporate compliance program, including internal and external audits. Reports to Director of Compliance and Program Management Pay Classification Full-Time Responsibilities Support information security compliance programs across applicable frameworks, including SOC 2, ISO 27001, ISO 42001, FedRAMP, CMMC, and NIST 800-53/171 Coordinate audit, assessment and testing activities with internal and external stakeholders Validate identified findings and nonconformities, manage remediation tracking, monitor resolution progress, and report status to stakeholders Review, update, and maintain information security documentation in accordance with applicable standards and organizational objectives Maintain and update the GRC platform (Optro) current with risk, control, and compliance data Assist with the implementation and ongoing management of data loss prevention (DLP) programs, including false positive identification, policy violations, incident monitoring and response coordination Support third-party risk management activities, including contractor oversight and vendor due diligence reviews Assist with client-issued security questionnaires and assessments Assist with risk management, vulnerability management, incident reviews, data disposal reviews, and BC/DR planning and testing Monitor and track employee completion of security training and awareness programs Minimum Qualifications EDUCATION Bachelor's degree in management information systems, Information Security, Cybersecurity, Business or a related field or an equivalent combination of education and experience EXPERIENCE At least 1 year of IT security, governance, risk, or compliance-related experience Knowledge of security and risk

Read the full description at job-boards.greenhouse.io. FewerJobs shows a source-linked preview and links to the original posting.