Corporate Governance, Risk, and Compliance Analyst at Onebrief - ScoutJobs - The AI-curated global job board
Skip to content
Onebrief
Posted a day ago

Corporate Governance, Risk, and Compliance Analyst

OnebriefCorporate Governance, Risk, and Compliance Analyst

Perks & benefits

CommissionHealth InsurancePaid Leave

Requirements

U.S. Citizen, Bachelor's degree in CS, Cybersecurity, or IT, 8+ years cybersecurity compliance experience, Expertise in RMF and CMMC 2.0 or SOC 2, CISSP, CISM, or similar certification, GRC platform experience

Skills

ComplianceCybersecurityAuditSecurity+

About the role

Responsibilities

  • Own RMF authorizations across Department of War components and FedRAMP High, alongside CMMC 2.0 and SOC 2 compliance for corporate systems
  • Maintain authorization and audit evidence, including SSPs, SARs, POA&Ms, STIGs, and control mappings
  • Partner with Engineering, Product, and Security to embed compliance requirements into system design and CI/CD workflows
  • Coordinate internal assessments and external audit readiness across all applicable frameworks
  • Track regulatory and contractual changes and advise leadership on implications for the business
  • Run risk assessments and vendor/supply chain risk reviews across federal and corporate environments

Requirements

  • U.S. Citizen
  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field
  • 8+ years of experience in cybersecurity compliance
  • Hands-on expertise with RMF and at least one of CMMC 2.0 or SOC 2
  • One or more professional certifications: CISSP, CISM, CISSO, CPTE, CySA+, FITSP-A, GCSA, CISA, ISSEP, GSLC, or GSNA
  • Experience with GRC platforms and automated evidence collection/testing (eMASS experience is a plus)

Preferred Qualifications

  • Experience in DoD environments and compliance frameworks (RMF, ICD 503)
  • Familiarity with agency-specific overlays (DoD, DHS, or civilian agencies)
  • Experience working with 3PAOs, Security Control Assessors, federal customers, or SOC 2 auditors
  • Familiarity with cloud security standards such as FedRAMP, ISO 27001, NIST 800-171, or DoD Cloud Computing SRG

Benefits

  • Compensation: $160K – $200K plus equity
  • Remote-first work environment with flexible hours and unlimited PTO
  • Comprehensive health, dental, vision, and life insurance
  • 401(k) plan with company match
  • 8 weeks of parental leave at 100% pay
  • Annual company summit retreats
  • $1,000 annual home office budget

About the Company

Onebrief builds collaboration and AI-powered workflow software for military planning and operational coordination. We help teams operate with greater clarity and adaptability in situations where decisions carry real-world consequences. Backed by leading investors like General Catalyst and Insight Partners, Onebrief is a high-growth organization dedicated to improving how critical work gets done.

ScoutJobs Agent

Get matches like this delivered daily

Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.

Get started — it's free

Corporate Governance, Risk, and Compliance Analyst

Onebrief · United States

Sign up to apply