Current jobs related to Senior IT GRC Analyst - Arlington, Virginia - CoStar Group
-
Senior IT GRC Analyst
4 days ago
Arlington, Virginia, United States CoStar Group Full timeSenior IT GRC AnalystJob DescriptionOverviewCoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties,...
-
Cyber Threat Intelligence Analyst
4 days ago
Arlington, Virginia, United States Gridiron IT Full timeCyber Threat Intelligence AnalystLocation: Arlington, VAWork Type:OnsiteRemote Work:NOJob DescriptionGridiron IT is supporting a customer by delivering intelligence support to customer through proactively identifying, analyzing, and responding to cyber threats to inform the customer's vulnerability management (VM) efforts. In support of the customer's...
-
Senior Analyst
2 days ago
Arlington, Virginia, United States Technomics Full timeTechnomics is a growing employee-owned, decision analytics company that specializes in cost and economic analysis to facilitate better decisions faster. We enable a wide range of clients across the Federal government, from senior level policy makers to program managers, to choose smartly, buy effectively and operate efficiently. We deliver practical,...
-
Senior Security Analyst
2 weeks ago
Arlington, Virginia, United States Omniscius Consulting Full timeOur client is seeking a Senior Security Analyst / Audit Liaison to support a federal contract.The Senior Security Analyst / Audit Liaison will act as the primary point of contact between the organization and external auditors. This role is responsible for facilitating audit activities, coordinating documentation, ensuring compliance with federal...
-
Senior Program Analyst
6 days ago
Arlington, Virginia, United States MDW Associates Full timeMDW is seeking Future Hire candidates to provide Senior Program Analyst for Acquisition Talent Management support to our Assistant Secretary of the Navy for Research, Development & Acquisition (ASN/RD&A) client. The Senior Program Analyst must be capable of applying extensive professional knowledge, skills, training, and experience to support the ASN(RD&A)...
-
Senior Business Process Consultant
2 weeks ago
Arlington, Virginia, United States iTech AG Full time $60,000 - $140,000 per yearOverview:iTech AG is looking for a Senior Business Process Consultant to support our federal customer. The Senior Business Process Consultant is responsible for leading process definition, optimization, and alignment across ServiceNow Risk solutions. This role partners directly with customer leaders to translate business needs into effective workflows and...
-
Commercial Senior Analyst/ Associate
1 week ago
Arlington, Virginia, United States Energix North America Full timeThe Role:TheCommercial Senior Analyst/ Associate willbe based in our Arlington, Virginia headquarters. In this role, you will support the VP of M&A and Business Development in sourcing, structuring, and negotiating Power Purchase Agreements (PPAs) and other offtake arrangements.The Commercial Senior Analyst/ Associate will play a key role in advancing...
-
Senior Business Analyst
2 weeks ago
Arlington, Virginia, United States ECS Full time $90,000 - $130,000 per yearECS is seeking a Senior Business Analyst to work Remoteor in our Washington, D.C. area office.This role will assist with research and requirements gathering to build custom applications that will be used across the department to share information and streamline processes. As the team continues to expand its team and customer base, the senior business analyst...
-
Arlington, Virginia, United States ACT1 Federal Full timePosition Title: Senior Congressional Support Analyst/Management AnalystLocation: Arlington, VACategory: ContingentSchedule (FT/PT): FTTravel Required: NAShift: DayRemote Type: On-siteClearance required: SecretDivision: AviationWho is ACT1 Federal? ACT1 Federal LLC is a 100% employee-owned company. We've served the Department of Defense (DoD) for nearly...
-
Senior SharePoint Systems Analyst
2 weeks ago
Arlington, Virginia, United States GCyber Full time $120,000 - $180,000 per yearGCyber is seeking aSenior SharePoint Systems Analystto support a high-profile DISA customer. The primary objectives of position is to capture and analyze user needs and business processes to determine functional requirements for SharePoint and CRM platforms, ensuring solutions meet mission objectives.As The Senior SharePoint Systems Analyst, You WillPerform...
Senior IT GRC Analyst
2 weeks ago
Senior IT GRC Analyst
Job Description
Overview
CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives.
We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers. We've continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.
As a leading member of the CoStar Group IT Governance, Risk, and Compliance (GRC) Team, you will support the implementation of our security governance program and help drive meaningful and impactful change. You will be a key part of a growing team, collaborating with a broad set of stakeholders ranging from colleagues and management in Cybersecurity, Information Technology Operations, Product & Development, Human Resources, Finance, and Sales.
This position is located in Arlington, VA or Richmond, VA and is in office Monday through Thursday with the option to work from home on Friday.
Responsibilities
- Lead third-party risk assessments for new and existing vendors, including security questionnaires, SOC report reviews, risk scoring, and reporting.
- Collaborate with stakeholders in Legal, Finance, and Information Technology to ensure vendor contracts meet security and compliance requirements.
- Maintain and enhance our third-party risk management framework aligned with industry standards and requirements, such as ISO 27001, SOC 2 Type 2, PCI-DSS, and Sarbanes-Oxely.
- Utilize GRC toolsets and streamline processes and manage the assessment, tracking, reporting, and monitoring of our third-party information security supply-chain at scale.
- Communicate and drive change through clear articulation of risk findings and recommendations to both technical and non-technical audiences.
Basic Qualifications
- A track record of commitment to prior employers
- 5+ years of experience in Information Security, Risk Management, or GRC roles with a strong focus on third-party/vendor risk.
- Deep understanding of ISO/IEC 27001, with experience developing control sets and the application of those control sets within a fast-paced corporate environment.
- Fluency in SOC 2 Type 2 and SOC 1 Type 2 reports, SIG, CSA CAIQ, particularly with regards to the utilization of these artifacts in the context of a risk assessment.
- Strong communication, analytical, and project management skills.
- Bachelor's degree from an accredited, not for profit university or college (preferably in Information Systems, Cybersecurity, or a related field).
Preferred Qualifications and Skills
- Certifications such as CISA, CISM, CISSP, CRISC, or ISO 27001 Lead Implementer
- Experience with GRC platforms such as Hyperproof, OneTrust, Drata, etc.
- Familiarity with SaaS governance and best practices.
- Experience supporting compliance audits and client security questionnaires.
What's in it for You
When you join CoStar Group, you'll experience a collaborative and innovative culture working alongside the best and brightest to empower our people and customers to succeed.
We offer you generous compensation and performance-based incentives. CoStar Group also invests in your professional and academic growth with internal training, and tuition reimbursement.
Our benefits package includes (but is not limited to):
- Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug
- Life, legal, and supplementary insurance
- Virtual and in person mental health counseling services for individuals and family
- Commuter and parking benefits
- 401(K) retirement plan with matching contributions
- Employee stock purchase plan
- Paid time off
- Tuition reimbursement
- On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes
- Access to CoStar Group's Diversity, Equity, & Inclusion Employee Resource Groups
- Complimentary gourmet coffee, tea, hot chocolate, fresh fruit, and other healthy snacks
We welcome all qualified candidates who are currently eligible to work full-time in the United States to apply. However, please note that CoStar Group is not able to provide visa sponsorship for this position.
LI-ARCoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing
