onsite

IT Specialist - Governance, Risk, and Compliance GRC Lead - Securities and Exchange Commission

Software Engineer

Lead the design and deployment of automated GRC solutions, driving cybersecurity risk analysis, federal compliance, and audit management to protect critical information assets.

About the role

Key Responsibilities

Lead the implementation and continuous improvement of automated GRC toolsets across the organization.
Conduct comprehensive cybersecurity risk analyses and develop mitigation strategies aligned with federal regulations.
Coordinate and manage audit processes, ensuring timely completion and compliance with internal and external standards.
Collaborate with cross‑functional teams to integrate GRC requirements into system development and operational processes.
Provide expert guidance on InfoSec policies, procedures, and best practices to senior leadership.

Requirements

Proven experience in GRC, InfoSec, and cybersecurity risk management.
Strong knowledge of federal compliance frameworks (e.g., NIST, FISMA, HIPAA).
Hands‑on experience with automated governance, risk, and compliance platforms.
Excellent analytical, communication, and stakeholder‑management skills.
Relevant certifications (CISSP, CISM, CRISC, or equivalent) preferred.

Skills

software developmentsystem designproblem solving

CompanySecurities and Exchange Commission

DepartmentEngineering

LocationWashington, United States

Experience7+ years

Tenurefull-time

LevelLead

Posted June 21, 2026