About Delinea:
Delinea is a pioneer in securing human and machine identities through intelligent, centralized authorization, empowering organizations to seamlessly govern their interactions across the modern enterprise. Leveraging AI-powered intelligence, Delinea’s leading cloud-native Identity Security Platform applies context throughout the entire identity lifecycle – across cloud and traditional infrastructure, data, SaaS applications, and AI. It is the only platform that enables you to discover all identities – including workforce, IT administrator, developers, and machines – assign appropriate access levels, detect irregularities, and respond to threats in real-time. With deployment in weeks, not months, 90% fewer resources to manage than the nearest competitor, and a 99.995% uptime, Delinea delivers robust security and operational efficiency without compromise. Learn more about Delinea on Delinea.com, LinkedIn, X, and YouTube.

Join our passionate, global team at Delinea and help us make the world a safer and more secure place. Our success is driven by world-class product leadership, outstanding engineers, and strategic investment from TPG. We value diversity, innovation, and a culture of respect and fairness. If you're ready to push boundaries and challenge the status quo in security, we want to hear from you.

Apply today to help us achieve our mission.

Delinea’s Cybersecurity organization is seeking a skilled Senior GRC Analyst to play a key role in ensuring Delinea’s alignment and adherence with policies, practice and maintaining the company’s cybersecurity risk management framework across both commercial and regulated public sector environments.

This role requires strong cross‑functional partnership to ensure compliance and drive continuous improvement, including alignment with U.S. public sector standards such as FedRAMP and GovRAMP, as well as broader risk‑management and improvement initiatives.

This is a remote position based in the U.S. and reports to the Director of Governance, Risk, and Compliance.

What You'll Do:

• Enforce cybersecurity Process Risk and Control frameworks that are rationalized against applicable laws and standards.

• Support FedRAMP Moderate and/or High authorization and ongoing compliance

o Coordinate with 3PAOs, sponsoring agencies, and internal stakeholders during initial assessment.

o Assist in developing and maintaining FedRAMP-required documentation.

o Coordinate evidence collection for RAR, SAR, and continuous monitoring.

o Track security control implementation with engineering and IT teams.

o Maintain and update the POA&M and remediation timelines.

o Help manage ongoing FedRAMP continuous monitoring activities (e.g., monthly scans, annual assessments).

• Perform cybersecurity risk assessments and maturity assessments.

• Conduct control readiness assessments to evaluate design, implementation, and effectiveness.

• Execute strategy for improving efficiency and ensuring organizational procedure alignment to maintain compliance with industry standards.

• Lead continuous control monitoring activities using GRC and compliance automation platforms.

• Function as a trusted advisor for business partners on the design and effective operation of controls.

What You'll Bring:

• Bachelor’s degree in computer science, Information Technology, Business Administration, or a related field.

• 7+ years of relevant work experience.

• Working knowledge of FedRAMP requirements, including:

o NIST SP 800-53 Rev. 5 or FedRAMP 20x security controls

o FedRAMP Moderate or High Baseline

o FedRAMP PMO processes (Readiness Assessment, 3PAO interactions, ATO phases)

• Understanding of federal cybersecurity frameworks (NIST 800-37 RMF, FIPS 199/200, etc.)

• Experience in creating or maintaining System Security Plans (SSPs), Policies, procedures, and SOPs, Control implementation statements, and POA&M (Plan of Action & Milestones)

• Experience supporting SOC 1, SOC 2 and PCI-DSS audits for cloud based services

• Strong verbal and written communication, analytical and people skills.

We'd Love to See:

• Familiarity with Common Criteria concepts, including Security Targets and evaluation artifacts.

• Familiarity with Cybersecurity Maturity Model Certification (CMMC)

• Cybersecurity certifications (e.g. CISSP, CISA, CRISC, CIPP, etc.).

• Familiarity with OneTrust or other GRC tools.

• Familiarity with Jira and Confluence

For this Job, Delinea is not considering candidates that need any type of US work authorization now or in the future. This includes, but is not limited to: F1-OPT, F1-CPT, H-1B, TN, L-1, J1, etc.

Why work at Delinea?

We're passionate problem-solvers helping the world's largest organizations protect what matters most: their human and machine identities.

We invest in people who are smart, self-motivated, and collaborative.

What we offer in return is meaningful work, a culture of innovation and great career progression.

At Delinea, our core values are STRONG and guide our behaviors and success:

Spirited - We bring energy and passion to everything we do

Trust - We act with integrity and deliver on our commitments

Respect - We listen, value different perspectives, and work as one team

Ownership - We take initiative and follow through

Nimble - We adapt quickly in a fast-changing environment

Global - We embrace diverse people and ideas to drive better outcomes

We believe weaving these core values into our day-to-day actions, and our process for hiring, evaluating, and promoting employees, helps us cultivate a work environment that embraces collaboration and camaraderie.

We take care of our employees. We offer competitive salaries, a meaningful bonus program, and excellent benefits, including healthcare insurance, as well as pension/retirement matching, comprehensive life insurance, an employee assistance program, time off plans, and paid company holidays.

Delinea is an Equal Opportunity and Affirmative Action employer and prohibits discrimination and harassment of any type with regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

Upon conditional offer of employment, candidates are required to complete comprehensive criminal background check, verification of education, and verification of employment, per employment policy. In addition, all publicly posted social media sites may be reviewed.

Senior GRC Analyst

Related Jobs

Security Engineer II

ProdSecOps Manager

Senior/Staff Security Engineer

Digital Governance, Risk & Compliance (GRC) Specialist

Consultant gestionnaire d'applications

Product Business Analyst – 12 month fixed-term contract – Visa Implementation Services

Language Project Manager

(fluent German & English) Customer Support Consultant (remote)

Customer Onboarding Manager | Japanese speaking

Customer Onboarding Manager | Thai speaking

Browse Similar Jobs