Haystack
← Back to Jobs
Technology

GRC Analyst

Creative IT IncRockville, MD🇺🇸United StatesPosted 15 Jul 2026

Quick Overview

Work Type
Hybrid
Level
Mid Senior

Job Description

About us:

Creative Information Technology Inc (CITI) is an esteemed IT enterprise renowned for its exceptional customer service and innovation. We serve both government and commercial sectors, offering a range of solutions such as Healthcare IT, Human Services, Identity Credentialing, Cloud Computing, and Big Data Analytics. With clients in the US and abroad, we hold key contract vehicles including GSA IT Schedule 70, NIH CIO-SP3, GSA Alliant, and DHS-Eagle II.

 

Join us in driving growth and seizing new business opportunities!

 

Position Description:

The ideal candidate is an early-career information security or Governance, Risk, and Compliance (GRC) professional who possesses strong analytical, organizational, and communication skills, and is seeking to build a long-term career in enterprise information security governance and risk management.

The successful candidate will be self-motivated, detail-oriented, and capable of learning and consistently applying established County policies, procedures, and risk assessment methodologies. The individual should demonstrate sound judgment, professionalism, and a commitment to delivering high-quality work while effectively managing multiple assignments and competing priorities.

Responsibilities:

·        Analyze information objectively and identify missing or incomplete information.

·        Learn and consistently apply established policies, procedures, and standardized risk assessment methodologies.

·        Communicate professionally and effectively with both technical and non-technical stakeholders.

·        Prepare clear, concise, and well-organized written documentation and recommendations.

·        Manage multiple assignments while meeting established deadlines.

·        Work independently with minimal supervision while recognizing when guidance is appropriate.

·        Exercise sound judgment and maintain objectivity when evaluating information.

·        Provide excellent customer service while maintaining compliance with County policies and procedures.

·        Demonstrate integrity, professionalism, discretion, and attention to detail when handling sensitive information.

·        Adapt to changing priorities and continuously seek opportunities to improve processes and personal knowledge.

 

Required Skills:

·        Experience using ServiceNow.

·        Experience using Office 365 suite of products

·        Experience with Governance, Risk and Compliance (GRC).

·        Experience preparing technical documentation.

·        Experience working in customer service environments.

·        Experience with coordinating projects, tasks and/or workflows.

 

Desired Skills:

·        Strong analytical thinking

·        Excellent written communication

·        Excellent verbal communication

·        Customer service

·        Organization

·        Attention to detail

·        Time management

·        Critical thinking

·        Ability to learn new technologies quickly

·        Ability to work independently

·        Professionalism

·        Ability to manage multiple priorities

 

Education and certifications:

Bachelor’s degree in:

  • Cybersecurity
  • Information Systems
  • Information Technology
  • Computer Science
  • Business Information Systems

 

Certifications (not required/points awarded)

  • CompTIA Security+ (Sec+)
  • Certified Information Security Manager – Fundamentals (CISM‑F)
  • NIST Cybersecurity Framework (NCSF) Practitioner
  • ISACA IT Risk Fundamentals Certificate
  • ISACA Cybersecurity Audit Certificate
  • HIPAA Security Training or Compliance Certificate

Skills

HIPAA

Similar jobs