Compliance Analyst, GRC/RMF

🕒 May 12

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Quzara LLC

WebsiteLinkedInAll Job Openings

11 - 50 employees

Founded 2015

🔒 Cybersecurity

📋 Compliance

Cybersecurity • Compliance • Cloud Security

Quzara LLC is a cybersecurity firm that specializes in compliance advisory, cloud security, and managed security operations. The company's services include Federal Security & Compliance, managed detection and response, cloud security configuration audits, and vulnerability management. Quzara's mission is to provide strategic and tactical trusted advisory services to clients in both the public and private sectors, focusing on ensuring security compliance and protection against cyber threats. Notably, Quzara's Cybertorch™ service is recognized for its rigorous approach to threat monitoring and incident response, catering to standards such as FedRAMP, DoD IL-4/IL-5, and CMMC.

📋 Description

• The Compliance Analyst (GRC/RMF Focused) supports governance, risk, and compliance (GRC) initiatives by developing, maintaining, and managing security documentation and compliance artifacts aligned with federal standards. • This role plays a key part in supporting Risk Management Framework (RMF) activities, continuous monitoring, and authorization efforts across federal and regulated environments. • This role requires strong expertise in NIST SP 800-53, FISMA, and related guidance, with the ability to translate technical system configurations into clear, audit-ready documentation. • The ideal candidate is detail-oriented, organized, and capable of managing multiple compliance workstreams while engaging effectively with both technical and non-technical stakeholders.

🎯 Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Information Systems, or a related field • 3–6+ years of experience in GRC, RMF, or cybersecurity compliance roles within federal or regulated environments • Strong knowledge of NIST SP 800-53, FISMA, and supporting NIST guidance (e.g., 800-37, 800-60, 800-171, 800-137) • Experience supporting FedRAMP, CMMC, and/or SOC 2 compliance efforts • Hands-on experience with GRC platforms and compliance tracking tools • Technical understanding of on-premise and cloud environments and associated security concepts • Proven ability to produce audit-ready documentation and manage compliance artifacts • Strong written and verbal communication skills with the ability to clearly convey complex information • Demonstrated ability to manage multiple projects and deadlines with strong organizational skills • Experience working independently while coordinating across cross-functional teams • Must be a U.S. Citizen and eligible to support federal contracting environments. • Preferred Certifications CISA (Certified Information Systems Auditor) Security+, CISSP, or similar cybersecurity certification FedRAMP or RMF-related training or certifications are a plus

🏖️ Benefits

• Health insurance • Flexible work hours