IT GRC Analyst

Surveying And Mapping, LLC IT GRC Analyst

Location:

US-TX-Austin

Job : 26-7535

Type: Regular Full-Time

# of Openings: 1

Category: Information Technology

For over thirty years, SAM has built a reputation as a trusted, knowledgeable, and innovative partner. Our licensed professionals transform petabytes of complex spatial data into intelligent insights in a holistic Managed Geospatial Services™ (MGS™) framework. As North America's premiere MGS™ company, SAM provides practical, precise, and high-fidelity solutions designed to enhance decision‑making, mitigate risks, achieve strategic objectives, and drive costs out of our client's business.

Our vision is to advance spatial data acquisition, improve analysis capabilities, and develop predictive analytics to redefine and transform how infrastructure assets are developed and managed throughout their life cycles.

We are seeking a motivated and detail‑oriented IT GRC (Governance, Risk, Compliance) Analyst to join our growing Information Security team. This role is ideal for professionals with a strong foundation in cybersecurity compliance and risk management who are eager to take ownership of key security and compliance initiatives.

As a foundational member of our expanding security program, you will play a critical role in developing policies, managing risk, and ensuring compliance with industry‑recognized frameworks such as SOC 2, NIST Risk Management Framework (RMF), and the Cybersecurity Maturity Model Certification (CMMC). You may also contribute to high‑impact projects, including Mergers & Acquisitions (M&A) due diligence.

This is an exciting opportunity for someone who thrives in a fast‑paced, collaborative environment and wants to help shape the future of security and compliance within a rapidly scaling organization. The ideal candidate will be able to perform each of these essential duties satisfactorily:

• Conduct risk assessments, identify security gaps, and recommend remediation strategies to enhance the organization's security posture.
• Support internal and external security audits, including SOC 2 readiness and CMMC certification efforts.
• Participate in security assessments of potential clients or vendors, ensuring alignment with organizational security standards.
• Contribute to the development and implementation of cybersecurity awareness and training programs.
• Collaborate with IT, Legal, and Executive Leadership to provide insights on compliance status, security risks, and regulatory changes.

• 2+ years of experience in IT security, risk management, or compliance related roles.
• Familiarity with industry‑standard compliance frameworks (e.g., SOC 2, NIST RMF, CMMC)
• Familiarity with data privacy regulations (GDPR, HIPAA, etc)
• Excellent verbal and written communication skills
• Strong analytical and problem‑solving skills with attention to detail.

Desire to pursue industry related certifications:
Security+, CISA, CGRC, etc.