GRC Analyst (Remote - LATAM)

Posted 2026-06-26
Remote, USA Full-time Immediate Start

Atmosera empowers businesses to redefine what's possible with modern technology and human expertise. Our exceptional experience across Applications, Data & AI, DevOps, Security, and the Microsoft Azure platform enables organizations to accelerate innovation, enhance security, and optimize operational agility. As a Microsoft Partner with seven specializations, GitHub AI Partner of the Year, a member of the GitHub Advisory Board, and a member of the prestigious Microsoft Intelligent Security Association (MISA), Atmosera expertly delivers cutting-edge, integrated solutions that deliver business value.

The GRC Analyst delivers day-to-day Governance, Risk, and Compliance (GRC) services as part of Atmosera’s Managed GRC (MGRC) offering. This role focuses on operational execution, coordination, and reporting across compliance, security assurance, and governance activities to help clients achieve and maintain regulatory alignment, security maturity, and operational trust.

The selected candidate will be responsible for client audits, evidence gathering, managing compliance tools, supporting security questionnaires, monitoring security controls, facilitating regulatory alignment, and overseeing ongoing governance activities throughout the Atmosera client portfolio.

The GRC Analyst operates within defined service hours (Monday–Friday, 8am–5pm PT) and works closely with Client Success Managers, security engineers, and subject-matter experts. This role does not perform executive security leadership, risk ownership, or vCISO decision-making responsibilities.

Core ResponsibilitiesCloud Governance & Compliance Operations

Validate that client environments meet MGRC baselines and support ongoing security policy alignment to:

Microsoft Cloud Security Benchmark (MCSB)

NIST frameworks (NIST SP 800-171, NIST SP 800-53, etc.)

HIPAA (where applicable)

FedRAMP

CMMC 3.0

ISO 27001-2022

GDPR

Assist with governance documentation updates and maintenance

Support compliance tracking and evidence organization

Provide consultative guidance on compliance and security-related questions by coordinating access to Atmosera cybersecurity experts

Monitor security posture through Defender for Cloud and Azure Policy compliance recommendations

Track misconfigurations, policy drifts, and high impact findings for remediation.

Security Questionnaires

Assist with basic security questionnaires using Atmosera’s standard response library

Provide standardized responses through coordination with the Account Management or Client Success team

Support optional full Security Questionnaire Management services when contracted, including:

Intake and tracking

Drafting and coordination of responses

Supporting documentation preparation

Audit & Assurance Support

Participate directly in client audits (SOC 2, HIPAA, PCI where applicable)

Support ongoing audit readiness and management activities when included in scope, including:

Evidence gathering and organization

Audit request tracking

Coordination with internal teams and external auditors

Ensure ongoing audit readiness for clients enrolled in MGRC that is consistent with MGRC service definitions in shared documentation

Maintain audit readiness documentation throughout the year

Maintain audit request trackers and coordinate responses with internal SMEs.

Support project management activities related to compliance audits (e.g., SOC 2)

Security Operations Governance Support

· Ensure proper documentation to support compliance with client governance requirements and client specific requirements

· Take ownership of monthly and quarterly MGRC reporting

Assist with the development and maintenance of custom response playbooks for:

Azure Sentinel SOAR (Security Orchestration, Automation, and Response)

Support governance oversight of:

CyberSOC reporting with enhanced security insights

Actionable threat intelligence reporting

Proactive threat hunting outputs

Ensure governance artifacts align with managed detection and response activities

Security Readiness & Preparedness Activities

Coordinate and support:

Monthly phishing simulation preparedness activities

Yearly tabletop exercise planning and execution support

Bi-annual penetration testing preparedness and coordination

Track outcomes, findings, and remediation activities for readiness exercises

Attack Surface & Security Posture Management

Support Attack Surface Management activities, including:

Continuous discovery and monitoring of exposed assets

Documentation of digital attack surface insights

Assist with security posture tracking and compliance reporting for:

Executives

Auditors

Internal stakeholders

Monthly Server vulnerability Scanning

Design and implement workflows that improve the service

Track findings, prepare client-facing reports, and coordinate remediation with security engineers

Penetration Test Coordination

Serve as the primary coordinator for client penetration testing engagements

Apply Now

Similar Jobs

Recent Jobs

[Work From Home] Retail Product Specialist
[Remote] Junior IT Configuration Analyst
Director of Sales - Partnership Marketing(Remote)
Simple Review Screenshot Videos for Healthcare Education Brand
Fractional CFO (Part-Time) – Home Services Growth Company
Supplemental Sales Agent - Bronx, NY
Outpatient Therapist (LCSW or LPC) - 100% Remote - Illinois License Required
NetSuite Administrator - Remote
Washington, D.C. Correspondent
Remote Spanish-Speaking Customer Support Specialist - Unlock Your Potential at careerzynith

You May Also Like

[Remote] Regional Sales Manager
Remote Data Entry Specialist – High‑Precision Data Management for careerzynith – Fully Remote – Philippines
[Hiring] Director of Operations - Wound Care @NIVA Health
Epic Analyst - Ambulatory And Research
Healthcare Physician Recruiter
Principal Coronary Cathworks Territory Manager - Cincinnati
[Remote] Business Development Representative
Posting Specialist I - Digitech - Remote
Agriculture Sales
IFM Sourcing Lead
Back to Job Board