×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant Information Security

GRC Cybersecurity Analyst

Job in Newton, Middlesex County, Massachusetts, 02165, USA
Listing for: Fractional CISO
Full Time position
Listed on 2025-12-23
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, Information Security
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

As a GRC Cybersecurity Analyst (CA), you will play a pivotal role securing our clients’ infrastructure, data and software. Beyond helping our clients, you will also make a huge impact and help society as a whole by contributing to our fast moving, passionate efforts to smartly improve and promote cybersecurity best practices.

Fractional CISO is not a typical cybersecurity consulting firm. Instead of technical support, we focus on delivering the best possible cybersecurity advice to our client’s leadership teams. Our typical clients are medium sized tech firms with significant cybersecurity needs, but they’re not quite large enough yet to hire a full-time “C-level” senior security leader, like a Chief Information Security Officer (CISO).

We fill that gap with our “fractional” CISO consulting services and help guide our clients on their cybersecurity improvement programs.

Responsibilities
  • Leading Internal Cybersecurity Audits to ensure our clients’ operational environments stay compliant and secure.
  • Planning and running tabletop training exercises to help our clients’ employees practice how they will respond to a cybersecurity incident.
  • Performing quantitative Risk Assessments for clients so they can understand where to make smart investments in their cybersecurity.
  • Responding to security questionnaires from our clients’ customers so they can grow their businesses.
  • Writing cybersecurity policy documents to build up our clients’ cybersecurity programs.
  • Assisting with evidence collection to help our clients prepare for external compliance audits.
  • Providing advice and guidance to clients on a wide range of cybersecurity topics.
  • Project managing client accounts to keep them on track.
  • Contributing to service development program to improve our client deliverables.
Core Qualifications
  • 2 or more years of experience as a SOC analyst, developer, incident response remediator, technical auditor, IT administrator with security responsibilities or similar technical role
  • A passion about solving clients’ security challenges
  • High personal and professional ethical standards
  • Experience managing internal projects and initiatives
  • Well-developed technical writing skills
Preferred Technical Experience
  • Security Operations (SOC)
  • Security Compliance (SOC 2, ISO 27001, PCI-DSS, HIPAA, TX-RAMP, etc.)
  • Secure Software Development Lifecycle (S-SDLC) practices
  • Network or firewall administration
Additional Experience
  • Knowledge of security operations tools, systems, and practices (SIEM, WAF, vulnerability scanning, penetration testing, system hardening, MFA, SSO, etc.)
  • Able to explain at a high level how the Internet and websites function
  • Familiar with core networking concepts, protocols, and common services
  • Understanding of encryption concepts and SSL/TLS certificates
  • General scripting or coding experience
  • Cybersecurity certifications (SSCP, CompTIA Security+, etc.)
  • Experience with any security frameworks (NIST CSF, CIS, COBIT, etc.)
  • A degree in Cybersecurity or a related field.

While we value candidates with operational experience, this role is not the same as a Security Operations Center (SOC) analyst! This job does not focus on routine security tasks like monitoring logs, responding to security alerts, patching systems, or running vulnerability scans. If you have experience as a SOC analyst but are looking for a new challenge that will advance your career towards thoughtful cybersecurity leadership, this may be a great position for you!

We are committed to providing guidance and support to the right GRC Cybersecurity Analyst candidate so they can accelerate their cybersecurity career. What we ask in return is that the candidate bring a passion for cybersecurity, a strong work ethic, and demonstrated excellence in their prior positions and coursework. We value diversity and believe that qualified candidates are just as likely to come from non-traditional work or educational backgrounds.

Note:

We genuinely appreciate it when candidates take the time to write a brief cover letter that explains their interest in the position and what attracted them to Fractional CISO!

About Fractional CISO

Fractional CISO provides Virtual CISOs to organizations, helping its…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search