Job Description

Job Title: Cybersecurity Governance, Risk & Compliance (GRC) Specialist Employer: System One Location: Preference for candidates local to Bellevue, WA Type: Contract (Agency) Rate: $63-$80 an hour Position Summary System One is seeking a Cybersecurity Governance, Risk, and Compliance (GRC) Specialist to support a fast-paced and growing cybersecurity team within a leading organization in the advanced nuclear energy sector. This role is ideal for professionals with a proven track record in security policy development, risk management, and regulatory compliance in highly regulated environments. The GRC Specialist will collaborate with Legal, Compliance, and Regulatory Affairs to align security strategies with industry standards and regulatory frameworks. You will help ensure the organization’s cybersecurity posture is robust, documented, and continuously improving. Key Responsibilities Partner with Legal, Compliance, and Regulatory Affairs to ensure compliance with internal policies and applicable cybersecurity regulations (NIRMA, 10 CFR, HIPAA, GDPR). Maintain and enforce information security policies, processes, and procedures. Manage the System Security Plan (SSP) and ensure controls are current and aligned. Maintain the cybersecurity Plan of Action and Milestones (POA&M) and assign risk levels. Conduct and support internal/external audits to meet compliance and regulatory standards. Lead risk management activities: risk assessments, vulnerability assessments, threat modeling. Maintain the corporate cybersecurity Risk Register and support executive reporting. Collaborate cross-functionally to identify security vulnerabilities and lead mitigation planning. Maintain and enhance incident response procedures and playbooks. Assist with security training programs and user awareness initiatives. Required Qualifications Bachelor’s degree in Computer Science, Information Security, or related field. Minimum 5 years of cybersecurity GRC experience in regulated industries. At least one certification: CISA, CISM, CISSP, CRISC, CGEIT, GRCP, or similar. Strong knowledge of frameworks: NIST 800-53, 800-171, ISO 27001, CMMC, FedRAMP, HIPAA, GDPR, etc. Experience coordinating and participating in security compliance audits. Strong understanding of risk evaluation and mitigation practices. Experience working in hybrid (cloud and on-prem) environments. Excellent communication and documentation skills across all levels of technical and business teams. U.S. citizenship or permanent residency required. Preferred Qualifications Experience in the nuclear, DOE, or similarly regulated sectors. Project management experience and/or relevant certifications. Willingness to work onsite at the Bellevue, WA headquarters (preferred, not required). System One, and its subsidiaries including Joulé, ALTA IT Services, and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan. System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law. Ref: #161-Managed Staffing Charlotte

Job Tags

Similar Jobs