Security Governance Risk & Compliance (GRC) Analyst
VirtruWashington, District of Columbia, United States
Posted September 24, 2025
130000 - 180000 USD year
Full Time
About the Company
Virtru is a global leader in data privacy and protection, offering end-to-end encryption for Google, Microsoft, and other platforms. Our services include digital privacy, cybersecurity, and zero trust solutions, with a focus on HIPAA-compliant email and file encryption. We pride ourselves on a creative, collaborative team culture that empowers innovation and supports our colleagues.
Job Description
Virtru is a leading data protection provider seeking a Security Governance Risk & Compliance (GRC) Analyst to manage compliance efforts for large systems and support FedRAMP, SOC 2, PCI, HIPAA, and GDPR. The role involves analyzing gaps, developing roadmaps, supporting ongoing compliance activities, and assisting with incident response and vendor onboarding. The ideal candidate will contribute to a scalable security program and have a strong understanding of cloud technologies.
Requirements
- Manage and implement complex controls frameworks for large systems (GCP, AWS, GitHub, Okta, etc.)
- Design and develop automation solutions for evidence collection across cloud infrastructure
- Conduct risk assessments across business units and processes
- Assist with third-party vendor onboarding and annual review
- Participate in incident response activities
Benefits
- Flexible PTO
- Learning & Development Stipend
- Team celebrations
- Employee Assistance Program
- Mental health app access
- 401K contribution
- Stock options
- Medical, dental, and vision benefits
- New Hire Swag and IT Welcome boxes
- Structured 360° reviews
