[Remote] GRC Analyst

Note: The job is a remote job and is open to candidates in USA. Point Wild is dedicated to creating comprehensive cybersecurity solutions for individuals. The GRC Analyst role focuses on supporting cybersecurity, risk management, and regulatory compliance programs to strengthen security posture and maintain continuous audit readiness.ResponsibilitiesConduct regular security audits and risk assessments to identify vulnerabilities and areas for improvementMonitor and assess compliance with internal security policies and external regulatory requirementsRecommend and track appropriate security controls and mitigation strategiesMaintain detailed records of compliance activities, including assessments, corrective actions, and audit resultsPrepare compliance documentation and reports for internal leadership and external auditorsMaintain and support the Simpluris cybersecurity compliance programRegularly update policies, procedures, standards, and documentation to align with evolving regulatory and contractual requirementsDevelop and maintain templates, tools, and resources to support compliance and audit readinessUtilize compliance and GRC tools (i.e., Drata, Vanta, or similar platforms) to track controls, evidence, risks, and remediation effortsSupport third-party risk assessments, vendor questionnaires, and ongoing vendor compliance monitoringServe as the primary point of contact between Corporate, Technology, and Operational teamsCollaborate with IT, legal, and business units to address compliance challengesCommunicate complex technical and regulatory requirements in a clear, accessible manner to diverse audiencesDevelop and deliver training and awareness sessionsConduct or support internal security audits and compliance reviewsStay current with industry standards, federal regulations, and cybersecurity best practicesSupport incident response activities, investigations, and post-incident documentation as neededCollect, validate, and maintain audit evidence to support regulatory and customer auditsAssist with control testing, gap analysis, and remediation trackingSkillsBachelor's degree in information technology, Cybersecurity, Computer Science, Information Security, or a related field1–3 years of experience in IT security, compliance, risk management, or a related roleExperience with compliance and GRC tools (Drata or Vanta)Familiarity with cybersecurity and frameworks, including: NIST 800-53 R5 (CMMC is a plus), Type 2 SOC 2, HIPAA, PCI-DSS, or GDPRStrong understanding of information security principles and best practices5+ years of experience in security compliance, risk management, or a related fieldExperience working in legal, financial, or other highly regulated environmentsExperience conducting formal risk assessments and managing compliance programsExperience maintaining and developing security policies, standards, and proceduresProfessional certifications such as CISSP, CISM, CISA, CompTIA Security+, or CMMC-related certificationsBenefitsGenerous health and wellness benefitsRetirement savings plansParental leaveMuch moreCompany OverviewPoint Wild is an online protection company that manages a portfolio of best-in-class device security, online privacy. It was founded in 2024, and is headquartered in Boston, Massachusetts, USA, with a workforce of 51-200 employees. Its website is https://www.pointwild.com.Company H1B SponsorshipPoint Wild has a track record of offering H1B sponsorships, with 1 in 2025, 5 in 2024, 1 in 2023, 3 in 2022, 2 in 2021, 2 in 2020. Please note that this does not guarantee sponsorship for this specific role.



Apply To This Job