Full-Time

Lead Cybersecurity GRC Analyst

Posted on 6/11/2024

LogicMonitor

LogicMonitor

1,001-5,000 employees

Cloud-based IT infrastructure monitoring platform

AI & Machine Learning

Compensation Overview

$114.8k - $157.8kAnnually

+ Unlimited vacation + Equity program + Professional development funds

Senior

Cambridge, MA, USA

Required Skills
Communications
Management
Requirements
  • 6+ years of experience in relevant GRC functions related to Compliance & Risk Management, preferably with cloud SaaS providers.
  • 2+ years of Federal Government experience, preferably with FedRAMP.
  • Knowledge of SOC 2, NIST 800-171, and NIST 800-53, with strong experience in compliance
  • Excellent interpersonal and communication skills to establish strong working relationships with both technical and non-technical staff
  • Proactive self-starter with the talent to think through technical solutions to potentially open-ended problems.
Responsibilities
  • Manage technical and non-technical FedRAMP security controls, ensuring their fulfillment.
  • Oversight of non-conformity findings and corrections, including documentation and technical tasks.
  • Develop, implement, and drive the execution and continuous improvement of cybersecurity risk management framework, processes, procedures, and activities.
  • Benchmark risk management processes, and dashboards with peer companies
  • Ensure the risk management process continuously aligns with industry best practices and industry standards
  • Perform security and compliance risk assessments across the organization to allow for effective identification and management of cybersecurity risks.
  • Partner with teams across the organization to develop and monitor risk response plans, evaluate the effectiveness of risk mitigation strategies, track progress against plans, and validate the completion of those plans.
  • Work with senior leadership to establish and improve integration of risk management process into strategic planning processes
  • Define risk metrics and thresholds with risk owners to identify and drive additional action on cybersecurity risk.
  • Provide IT system security consultation within cloud-based and on-premises environments in accordance with NIST SP 800-53, 800-37, ISO, and PCI.
  • Assist with the development of System Security Plans, Continuous Monitoring, Plan of Action and Milestones, Security Controls Assessment, Risk Exposure analysis, and FIPS 199 categorization, all in accordance with NIST requirements.

LogicMonitor operates at the forefront of cloud-based infrastructure monitoring, incorporating AIOps and a suite of automation tools to simplify and optimize IT operations. With an impressive arsenal of over 2,000 integrations, the company facilitates seamless transitions and innovation for businesses of varying scales and complexities. This approach not only positions the company as a leader in IT operations efficiency but also creates a dynamic and resourceful working environment that fosters professional growth and technological advancement.

Company Stage

Series A

Total Funding

$142.9M

Headquarters

Santa Barbara, California

Founded

2007

Growth & Insights
Headcount

6 month growth

-2%

1 year growth

-1%

2 year growth

-5%