Governance Risk & Compliance Analyst
Lakewood, CO
Experience: 0
Category: Scientific & Clinical
Contractor Work Model: Hybrid
Brand: Joulé
Job ID: 375588
Date Posted: 06/17/2026
Shortcut: http://jobs.systemone.com/coOFqP
Job Title: Governance Risk & Compliance Analyst
Location: Lakewood, CO
Work Model: Hybrid – onsite and remote
Overview
System One is seeking a GRC Analyst for an opportunity in Lakewood, CO. The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk management, and compliance programs. Under the direction of the GRC Functional Leader, the analyst contributes to policy development, risk oversight, and continuous improvement of the organization’s security posture. The role also works closely with regional Information Security Officers (ISOs) and cross?functional teams to support the deployment of global standards and local regulatory requirements.
Responsibilities
- Support information security risk assessments for new projects, systems, and business processes.
- Assist in conducting internal control reviews (e.g., J?SOX), preparing audit materials, and coordinating responses to internal and external auditors.
- Track and follow up on remediation actions to ensure timely closure of identified risks.
- Contribute to drafting, updating, and maintaining global information security policies, standards, and procedures.
- Review relevant laws, regulations, and industry frameworks (e.g., ISO 27001, NIS2) and incorporate stakeholder feedback into documentation.
- Support the rollout and implementation of policies across regions.
- Monitor adherence to security and regulatory requirements, including ISO 27001, NIS2, and GDPR.
- Collect and organize compliance evidence, track corrective actions, and support certification and regulatory readiness efforts such as ISO 27001/42001 and NIS2 programs.
- Conduct third party security risk assessments by distributing questionnaires, analyzing responses, verifying controls, and documenting results in the GRC tracking systems.
- Identify and escalate high risk findings to the GRC Functional Leader and support follow up mitigation activities.
- Participate in the planning and implementation of security awareness programs for all associates.
- Create e-learning materials and training materials, conduct phishing email exercises, and distribute disseminated content on internal portals.
- Monitor and analyze global regulatory developments related to cybersecurity with a focus on industrial control systems (ICS), IT environments, and critical infrastructure.
- Assist in evaluating how new or updated regulations (e.g., NIS2, FDA cybersecurity expectations, industrial cybersecurity standards, or country specific critical infrastructure laws) impact company operations.
- Track emerging obligations, document requirements, and support gap assessments to ensure timely compliance.
- Assist in the preparation, maintenance, and continuous improvement of the CISO Dashboard by collecting, validating, and analyzing security metrics across the Global GRC function.
- Compile key performance indicators (KPIs) and key risk indicators (KRIs) related to compliance status, audit findings, supplier risk, incident trends, training completion, regulatory readiness, and other relevant security domains.
- Support the visualization and communication of security posture to senior leadership by ensuring data accuracy, timely updates, and clarity in reporting.
- Support the development and enforcement of governance controls for the secure use of artificial intelligence technologies across the organization.
- Identify risks related to AI systems—such as model security, algorithmic integrity, and misuse—and contribute to risk assessments and mitigation plans.
- Help evaluate third party AI tools.
- Support the development and improvement of GRC processes, tools, and documentation to enhance operational efficiency and standardization.
- Assist in preparing reports, presentations, and materials for leadership reviews, steering committees, and cross functional meetings.
- Participate in internal security projects and initiatives, including process automation, metrics development, and enhancements to governance workflows.
- Provide coordination and administrative support for security committees, working groups, and regional GRC activities.
- Perform additional duties as assigned to support the Global Information Security Office and the broader GRC program.
- 3 to 5+ years of experience in information security, governance, risk management, compliance, IT audit, or a related discipline.
- Experience supporting security programs in global or regulated environments is a plus.
- Understanding of global and regional information security regulations (e.g., data protection laws, cybersecurity requirements) and familiarity with security frameworks such as ISO 27001.
- Knowledge of internal control frameworks (e.g., JSOX) and IT governance practices is highly desirable.
- Experience supporting audit activities is preferred.
- Experience with risk assessment methodologies, control evaluation, and vulnerability or issue management processes.
- Strong analytical and problem-solving skills, with the ability to identify risks, assess impacts, and support the development and tracking of corrective actions.
- Ability to communicate security requirements, policies, and audit findings clearly and persuasively with stakeholders across regions and business units.
- Strong coordination skills to build consensus and drive compliance.
- Industry certifications such as CISSP, CISA, CISM, ISO 27001 Lead Implementer/Auditor, or similar are preferred but not required.
- Bachelor’s degree in information security, Cybersecurity, Information Systems, Computer Science, or a related field; or equivalent professional experience.
- Familiarity with governance, risk, and compliance tools (e.g., BitSight, Drata, OneTrust, Archer, or similar) for managing risks, audits, and compliance workflows.
- Working knowledge of cybersecurity concepts such as identity and access management, endpoint protection, vulnerability management, cloud security, and secure system design.
- Experience supporting cross-functional security or compliance initiatives, including requirements gathering, documentation, and progress tracking.
- Ability to interpret risk metrics, compliance data, and audit results.
- Experience with dashboards, KPI/KRI reporting, or data visualization tools is a plus.
- Awareness of emerging cybersecurity regulations (e.g., NIS2, AI governance frameworks, critical infrastructure rules) and their potential impact on enterprise operations.
System One, and its subsidiaries including Joulé and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
#M-1
#LI-SG1
Ref: #558-Scientific
-
AI Governance Coordinator
Baltimore, MD
Job Title: AI Governance Coordinator Type: Contract Compensation: $44/HR Work Model: 100% Remote Role Overview We’re seeking a detail-driven AI Governance Coordinator to help operationalize our enterprise AI governance program. In this role, you’ll par...
Date Posted: 07/01/2026 Recommended
-
IRM GRC ServiceNow Developer Senior
Englewood, Colorado
Job Title: IRM GRC ServiceNow Developer Senior Location: Englewood, CO Type: Contract To Hire Compensation: 130-160K Contractor Work Model: On-site Security Clearance: Clearable for a secret clearance (but don't have to have a current one to start). Du...
Date Posted: 04/29/2026 Recommended
-
Principal SDET, Cybersecurity Test Engineer
Lakewood, CO
Job Title: Principal SDET, Cybersecurity Test Engineer Location: Lakewood, CO Type: Direct Hire Job Summary: System One is seeking a Principal SDET – Cybersecurity Test Engineer for a full-time/permanent opportunity in Lakewood, CO. As a Sr. Technical ...
Date Posted: 06/03/2026 Recommended
-
Global Quality Digital Operations - Engineer 4 - SAP S4 Hana
Lakewood, Colorado
Global Quality Digital Operations – Engineer 4 – SAP S4 Hana Direct Hire Lakewood, CO (Hybrid) Salary Range: $125,000 to $157,000, plus benefits. Salary commensurate with experience JOB SUMMARY The Engineer Level 4 – SAP S/4HANA Quality Engineer is a s...
Date Posted: 05/07/2026 Recommended
-
PKI Governance and Configuration Manager
Springfield, VA
Job Title: PKI Governance and Configuration Manager Location: Springfield, VA Required Security Clearance: Top Secret Responsibilities Oversee the integrity, security, and compliance of Department of State’s PKI and Credential hosting systems. Manage t...
Date Posted: 06/16/2026 Recommended
-
Lead DevSecOps Engineer
Pittsburgh, Pennsylvania
Job Title: Lead DevSecOps Engineer Location: Pittsburgh, PA Responsibilities Lead the integration of security into CI/CD pipelines, architect secure cloud environments, and guide teams in adopting modern DevSecOps practices to ensure a secure-by-design...
Date Posted: 06/29/2026 Recommended
-
Lead DevSecOps Engineer
Dallas , Texas
Job Title: Lead DevSecOps Engineer Location: Dallas, Texas Responsibilities Lead the integration of security into CI/CD pipelines, architect secure cloud environments, and guide teams in adopting modern DevSecOps practices to ensure a secure-by-design ...
Date Posted: 06/29/2026 Recommended
-
Lead DevSecOps Engineer
Strongsville, Ohio
Job Title: Lead DevSecOps Engineer Location: Strongsville, OH Type: Fulltime Responsibilities Lead the integration of security into CI/CD pipelines, architect secure cloud environments, and guide teams in adopting modern DevSecOps practices to ensure a...
Date Posted: 06/29/2026 Recommended
-
CTM/Clinical Trial Manager
Toronto, Ontario
Job Title: Clinical Trial Manager Location: Hybrid, Metro Toronto (Burlington) - 50% per month onsite Type: 12 months contract Pay: 50 to 60 per hour CAD Join a dynamic clinical research team as a Clinical Trial Budgets & Contracts Specialist, where yo...
Date Posted: 07/01/2026 Recommended
-
AI Platform Engineer
Baltimore, MD
Job Title: AI Platform Engineer Type: Contract Compensation: $72/HR Work Model: 100% Remote Role Overview We’re looking for an experienced AI Platform Engineer to help bring AI architectures to life in a secure, scalable cloud environment. In this role...
Date Posted: 07/01/2026 Recommended
-
Security Engineer II
Milford, DE
Job Title: Security Engineer II Location: Milford, DE Type: Direct Hire Job Summary: System One is seeking a Security Engineer II for a permanent opportunity in Milford, DE. The Security Engineer will work Technology Services to managing escalated secu...
Date Posted: 05/15/2026 Recommended
-
Jira Platform Engineer (onsite)
Washington, District of Columbia
Jira Platform Engineer Washington, DC – onsite US citizenship required per government contact Must be able to obtain Public Trust clearance Type: Multi-Year Contract supporting Federal Reserve Board Open to W2 and C2C Must Apply before July 2nd 12:00pm...
Date Posted: 06/25/2026 Recommended
-
Sr Cyber Security Engineer
Reston, VA
Job Title: Sr Cyber Security Engineer Location: Reston, VA Type: Contract Compensation: $83.33 - $87.00 per hour Work Model: Remote (Needs to be in office 1 time/month) Hours: 40.0 Responsibilities Develops and implements security solutions aligned wit...
Date Posted: 07/02/2026 Recommended
-
Senior Security Engineer
Dallas , Texas
Job Title: Senior Security Engineer Duration : Full Time Location : Cleveland, OH, Pittsburgh, PA, or Dallas, TX. Work Mode : 5 Days Onsite Years Of Exp : 8+ Yrs Future duties and responsibilities Vulnerability Triage and Risk Assessment Own security-s...
Date Posted: 06/29/2026 Recommended
-
Senior Cyber AI Operations Engineer
Washington, DC
Cyber Artificial Intelligence Operations Engineer 100% ONSITE in Washington DC Per Federal contract U.S. Citizenship is required Must be able to pass enhanced background screen (criminal, financial, drug) for Public Trust clearance Long Term Multi-Year...
Date Posted: 06/30/2026 Recommended
-
UX Designer
Washington, District Of Columbia
Job Title: UX Designer Location: Washington, DC Type: Direct Hire Work Model: 3 days onsite Security Clearance: DOD Secret Clearance Required Role Overview: Actively searching for a UX Designer with an active DOD Secret Clearance to join our team. The ...
Date Posted: 06/30/2026 Recommended
-
Cloud Engineer
Indianapolis, IN
Cloud Engineer Location: Indianapolis, IN Hybrid Onsite 3 days, fully remote if not local Employment Type: Contract, 6 months to start ( NO C2C W2 Only) Schedule: 40 hours/week Duration: Through January 22, 2027 Pay: $92.00 - $105.00/HR Position Summar...
Date Posted: 06/25/2026 Recommended
-
Quality Control Analyst
Vienna, VA
Job Title: Quality Control Analyst Location: Vienna, VA or Pensacola, FL Type: Contract, extension probable Compensation: W-2, rate is negotiable Work Model: Hybrid – 3 days onsite and 2 days remote Hours: 40 hrs/week Security Clearance: No clearance b...
Date Posted: 07/01/2026 Recommended
-
Data Architect
Plano, Texas
Description: Direct Hire Hybrid schedule in Plano, TX Comp range: $150-180K 15% travel (including int'l) MUST BE US CITIZEN or GREEN CARD HOLDER (No C2C) JOB DESCRIPTION Architect the Future of Enterprise Intelligence The Senior Data Architect provides...
Date Posted: 07/02/2026 Recommended
-
Compliance Specialist III
Sunnyvale, California
Job Title: Field Action Quality Specialist Location: Sunnyvale, CA Type: 6 month contract Compensation: $25/hr Contractor Work Model: Onsite Hours: M-F, 8-5 Overview We are seeking a Field Action Quality Specialist to support product recall and field a...
Date Posted: 06/12/2026 Recommended
-
Director Medical Monitor
Parsippany, NJ
Job Title: Director Medical Monitor Location: Parsippany, NJ Type: Direct Hire Contractor Work Model: Hybrid – onsite Overview Responsibilities Provide medical oversight for assigned clinical studies from study start-up through closeout. Participate in...
Date Posted: 06/17/2026 Recommended
-
SAP Master Data Governance Lead
Parkville, Missouri
Job Title: Master Data Compliance Specialist Location: Parkville, Missouri Type: Direct Hire Compensation: $100K-$130K Contractor Work Model: Onsite – onsite Hours: M-F (8-5) with some evenings and weekend required Overview We are seeking a detail-orie...
Date Posted: 07/01/2026 Recommended
-
AWS Cloud Security Engineer
Mclean, Virginia
AWS Cloud Security Engineer Remote What You Will Do We are seeking an AWS Cloud Security Engineer to support a large-scale cloud modernization effort for a federal client. This role will focus on securing AWS environments, strengthening cloud security ...
Date Posted: 06/22/2026 Recommended
-
Senior Systems Architect
Scott AFB, Maryland
Job Title: Senior Systems Architect Location: Scott AFB, Maryland Contractor Work Model: Onsite – onsite Security Clearance: Secret clearance Overview Responsibilities Support a specialized enterprise architecture team in designing, developing, and eva...
Date Posted: 05/28/2026 Recommended
-
Solutions Operations Lead
McLean, VA
Job Title: Solutions Operations Lead Remote Responsibilities Oversee secure, scalable, and compliant cloud operations, deployment automation, DevSecOps practices, and infrastructure reliability across mission-critical environments. Lead day-to-day clou...
Date Posted: 06/25/2026 Recommended
-
Systems Administrator with Intune Experience
Indianapolis, IN
Job Title: Intune Systems Administrator Location: Indianapolis, IN 46241 (onsite) Type: Contract Compensation: $38.47 Security Clearance: Ability to obtain public trust clearance Responsibilities Troubleshoot and resolve Intune-related issues, includin...
Date Posted: 06/30/2026 Recommended
-
Application Architect
Bethesda, MD
Job Title: Application Architect Location: Bethesda, MD Type: Permanent salaried position Compensation: 170- 190K Contractor Work Model: Hybrid (2 to 3 days on site in Bethesda MD) The Senior Application Architect is responsible for developing and evol...
Date Posted: 04/17/2026 Recommended
-
Sr. Cloud Security Specialist (AWS)
Washington, DC
Senior Cloud Security Specialist 100% ONSITE in Washington DC Per Federal contract U.S. Citizenship Required Must be able to pass enhanced FBI background screening (criminal, financial and finger printing) for Public Trust clearance Performance Period:...
Date Posted: 04/28/2026 Recommended
-
NQA-1 Lead Auditor & Auditor
Cheswick, PA
NOW HIRING – NQA-1 Lead Auditors & Auditors System One is seeking experienced Nuclear Quality Assurance (NQA-1) Lead Auditors and Auditors to support supplier and program audits at locations across the United States. Required Experience Candidates must...
Date Posted: 06/11/2026 Recommended
-
Membership Specialist
Pensacola, FL
Title: Membership Specialist Location: Onsite in Pensacola, FL Position Type: Multiyear Contract Join a leading, mission-driven financial institution as a Membership Specialist, where you’ll play a critical role in onboarding and supporting members whi...
Date Posted: 06/30/2026 Recommended