
Posted a day ago
Corporate Governance, Risk, and Compliance Analyst
OnebriefCorporate Governance, Risk, and Compliance Analyst
Perks & benefits
CommissionHealth InsurancePaid Leave
Requirements
U.S. Citizen, Bachelor's degree in CS, Cybersecurity, or IT, 8+ years cybersecurity compliance experience, Expertise in RMF and CMMC 2.0 or SOC 2, CISSP, CISM, or similar certification, GRC platform experience
Skills
ComplianceCybersecurityAuditSecurity+
About the role
Responsibilities
- Own RMF authorizations across Department of War components and FedRAMP High, alongside CMMC 2.0 and SOC 2 compliance for corporate systems
- Maintain authorization and audit evidence, including SSPs, SARs, POA&Ms, STIGs, and control mappings
- Partner with Engineering, Product, and Security to embed compliance requirements into system design and CI/CD workflows
- Coordinate internal assessments and external audit readiness across all applicable frameworks
- Track regulatory and contractual changes and advise leadership on implications for the business
- Run risk assessments and vendor/supply chain risk reviews across federal and corporate environments
Requirements
- U.S. Citizen
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field
- 8+ years of experience in cybersecurity compliance
- Hands-on expertise with RMF and at least one of CMMC 2.0 or SOC 2
- One or more professional certifications: CISSP, CISM, CISSO, CPTE, CySA+, FITSP-A, GCSA, CISA, ISSEP, GSLC, or GSNA
- Experience with GRC platforms and automated evidence collection/testing (eMASS experience is a plus)
Preferred Qualifications
- Experience in DoD environments and compliance frameworks (RMF, ICD 503)
- Familiarity with agency-specific overlays (DoD, DHS, or civilian agencies)
- Experience working with 3PAOs, Security Control Assessors, federal customers, or SOC 2 auditors
- Familiarity with cloud security standards such as FedRAMP, ISO 27001, NIST 800-171, or DoD Cloud Computing SRG
Benefits
- Compensation: $160K – $200K plus equity
- Remote-first work environment with flexible hours and unlimited PTO
- Comprehensive health, dental, vision, and life insurance
- 401(k) plan with company match
- 8 weeks of parental leave at 100% pay
- Annual company summit retreats
- $1,000 annual home office budget
About the Company
Onebrief builds collaboration and AI-powered workflow software for military planning and operational coordination. We help teams operate with greater clarity and adaptability in situations where decisions carry real-world consequences. Backed by leading investors like General Catalyst and Insight Partners, Onebrief is a high-growth organization dedicated to improving how critical work gets done.
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeCorporate Governance, Risk, and Compliance Analyst
Onebrief · United States
