Associate GRC Analyst

Associate GRC Analyst

The Associate GRC Analyst will support our Governance, Risk, and Compliance program. This role is well-suited for an early career professional looking to gain hands-on experience with security frameworks, risk assessments, audits, and compliance operations in an enterprise environment.

The Associate GRC Analyst will work closely with senior GRC, security, legal, and IT stakeholders to help ensure regulatory, contractual, and internal security requirements are met.

Candidates should demonstrate a clear interest in pursuing a cybersecurity compliance career, as this role focuses on governance and compliance rather than engineering or technical work.

Key Responsibilities

Governance & Compliance

* Assist with maintaining and updating security policies, standards, and procedures.

* Support compliance efforts aligned with frameworks such as NIST, ISO 27001, SOC 2, PCI DSS, and/or CMMC.

* Collect, organize, and maintain audit evidence for internal and external audits.

* Track compliance tasks, remediation activities, and milestones.

Risk Management

* Support third-party / vendor risk assessments and due diligence reviews.

* Assist with documenting risk assessments, risk registers, and mitigation plans.

* Help respond to customer security questionnaires and compliance requests.

Operational Support

* Maintain GRC documentation, trackers, and tools

* Coordinate with internal teams to gather compliance and security information

* Support incident response documentation and post incident reviews as needed

* Other duties as assigned

Required Qualifications

* 2+ years of experience with Information Security, Risk Management, Compliance, and Governance

* Basic understanding of information security and risk management concepts

* Strong written communication skills and attention to detail

* Ability to manage documentation and multiple work streams simultaneously

* Proficiency with Microsoft Word, Excel, and Power Point

Preferred Qualifications

* Exposure to GRC frameworks (NIST, ISO, SOC 2, PCI DSS, etc.)

* Internship or entry-level experience in security, IT, audit, or compliance

* Familiarity with vendor risk management or security questionnaires

* Experience with GRC tools (e.g., ZenGRC, Archer, Service Now GRC

* Bachelor's degree in Information Security, Risk Management, CS, or a related field

Why This Role

* Handson exposure to real-world security and compliance programs

* Mentorship from experienced GRC and security professionals

* Clear growth path into senior GRC, risk, or security compliance roles

* Cross functional collaboration with security, legal, IT, and business teams

Meet Boingo - named among the Best Places to Work!

Boingo Wireless simplifies complex wireless challenges to connect people, businesses, and things. Our vast footprint of Wi-Fi and cellular networks reaches more than a billion consumers annually. From airports and stadiums to military bases, Boingo helps folks stay connected to the people and things they love.

Our team is creative, collaborative, and on the leading edge of technology. There is no doubt the "secret sauce" to Boingo's success is our incredible team and culture. We take pride in having fun and building awesome products.

We offer a generous benefits package including health, dental, vision, 401(k) match, annual bonus plan, unlimited vacation, paid parental leave, tuition reimbursement, and more! It's no wonder we've been named among the Best Places to Work!

Boingo is headquartered at The Star District, offering 35 shops, restaurants, and specialty services.

We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, gender identity, sexual orientation, age, disability or veteran status.

#LI-Hybrid