✦ Luna Orbit — Cybersecurity

GRC Analyst – Public Sector

at Socure

📍 Remote - US Remote Posted March 31, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Not Specified
Experience senior
Exp. Years 5+ years
Education Not Specified
Category Cybersecurity

About this role

GRC Analyst for public sector at Socure, responsible for governance, risk, and compliance operations supporting regulatory standards such as FedRAMP and GovRAMP. Focuses on vulnerability remediation, continuous monitoring, evidence preparation, and automation of compliance workflows.

Key Responsibilities

  • Compliance & Certification Management
  • Continuous Monitoring & Vulnerability Management
  • Access Management & Training
  • Audit & Assessment Readiness
  • Process Improvement & Collaboration

Technical Overview

Hands-on experience with FedRAMP/GovRAMP and NIST frameworks; manages continuous monitoring, vulnerability management, access control, and audit readiness; leverages AI-enabled workflows and machine-readable formats (OSCAL) to automate compliance.

Ideal Candidate

The ideal candidate is a senior GRC professional with 5+ years of cybersecurity and public sector experience, deep familiarity with FedRAMP GovRAMP and NIST frameworks, and a track record of automating compliance processes and maintaining audit readiness.

Must-Have Skills

5+ years of cybersecurity or identity managementDirect experience with FedRAMPGovRAMPand NIST frameworksContinuous monitoring and vulnerability remediationAudit readiness and evidence preparationAbility to automate compliance workflows with AI toolsSecurity and regulatory communication

Nice-to-Have Skills

Experience in regulated industries (financehealthcare)Privacy/compliance knowledge (GDPRCCPA)Professional certifications (CISSPCISMCISAIAPP)

Tools & Platforms

3PAOWizBurp SuiteOSCALAWS native services

Required Skills

5+ years cybersecurityFedRAMPGovRAMPNIST 800-53 rev 5NIST 800-63NIST 800-1713PAOOSCALcontinuous monitoringvulnerability remediationaccess reviewsaudit readinessmachine-assisted compliance

Hard Skills

FedRAMPGovRAMPNIST SP 800-53 rev 5NIST 800-63NIST 800-1713PAOOSCALVulnerability managementContinuous monitoringAccess control

Soft Skills

Strong communicationOrganizationCollaborationProblem solving

Certifications

Preferred

CISSPCISMCISAIAPP

Industry & Role

Industry Public Sector
Job Function Operationalize GRC for Socure's public sector business, ensuring FedRAMP/GovRAMP compliance and audit readiness.
Role Subtype GRC Analyst
Tech Domains Cybersecurity, Amazon Web Services, Active Directory, Microsoft 365, Azure, Google Cloud Platform

Keywords for Your Resume

FedRAMPGovRAMPNIST 800-53 rev 5NIST 800-63NIST 800-1713PAOOSCALcontinuous monitoringvulnerability remediationaccess reviewsaudit readinessevidence preparationFedRAMP trainingpublic sectorsecurity certificationsAI-enabled compliancepolicy updatesrisk managementNIST 800-53vulnerability management
Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile