Penetration TesterSenior GRC (Governance Risk and Compliance)/ Risk Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Yakshna Solutions · 2 hours ago

Penetration TesterSenior GRC (Governance Risk and Compliance)/ Risk Analyst

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
money$165K/yr - $165K/yr
date8+ years exp

Yakshna Solutions, Inc. is a woman-owned small business providing professional IT solutions and services. They are seeking a Risk Analyst responsible for supporting enterprise cyber risk and compliance activities and developing risk management programs.

ConsultingGovernmentInformation ServicesInformation Technology
badNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Supports enterprise cyber risk and compliance activities by implementing and sustaining Integrated Risk Management (IRM) processes aligned with federal mandates
Leads development and maturation of Supply Chain Risk Management (SCRM) and Third-Party Risk Management (TPRM) programs, ensuring consistent risk identification, assessment, and reporting across vendors and partners
Maintains the Cyber Risk Register, tracks evolving cybersecurity regulations and data calls, and supports continuous improvement of FISMA scores and maturity levels
Normalizes and translates technical cyber risks into business-relevant terms to enable enterprise-wide risk visibility and executive decision-making
Develops cybersecurity dashboards and leverages automation and AI to enhance risk reporting, compliance tracking, performance analysis, and forward-looking risk forecasting

Qualification

Risk AnalysisGovernanceRiskComplianceIntegrated Risk ManagementRequired CertificationsCyber Risk RegisterSupply Chain Risk ManagementThird-Party Risk ManagementFISMA reportingNIST Risk Management FrameworkCybersecurity metricsGRC platformsAutomationAI-driven analyticsContinuous monitoring

Required

Bachelor's degree in relative field
8 years of experience in Risk Analysis, Governance, Risk, and Compliance (GRC)
Integrated Risk Management (IRM), Cyber Risk Register, Supply Chain Risk Management (SCRM), Third-Party Risk Management (TPRM)
FISMA reporting and maturity modeling
NIST Risk Management Framework (RMF), Risk normalization and enterprise risk translation
Cybersecurity metrics, KPIs, and dashboards
Regulatory compliance tracking and data calls, GRC platforms (e.g., ServiceNow GRC, Archer, eMASS, Xacta), Automation and AI-driven risk analytics, Continuous monitoring and compliance reporting
Required Certifications: CRISC, CISM, CISSP, or CAP

Benefits

401(k)
Health, dental, and vision insurance
Life insurance
Short-term and long-term disability insurance
Paid time off
Training and professional development assistance

Company

Yakshna Solutions

twittertwittertwitter
company-logo
Yakshna Solutions, Inc. is a minority and women-owned 8(a) certified business enterprise.
dateFounded in 2007
location
Herndon, Virginia, USA
people-size51-200 employees
web-link
http://www.yakshna.com/

Funding

Current Stage
Growth Stage

Recent News

MarketScreener
ECS Joint Venture 1CyberForce Wins Spot On $20B Cybersecurity Vehicle
2025-03-26
Company data provided by crunchbase