Governance, Risk, & Compliance (GRC) Analyst (Senior or Lead)

Governance, Risk, & Compliance (GRC) Analyst (Senior or Lead)

Company:

The Boeing Company

Boeing currently has an opening for a Governance, Risk, & Compliance (GRC) Analyst (Senior or Lead) that will play a key role in developing and maintaining enterprise policies, standards, control frameworks, implementation procedures and control applicability mappings across applications, infrastructure, cloud environments, databases, shared resources, and information systems.  The hybrid position is located in Seattle, WA but will consider candidates in Arlington, VA; Berkeley, MO; Charleston, SC; Chicago, IL; El Segundo, CA; Englewood, CO; Everett, WA; Kent, WA; Mesa, AZ; Plano, TX; Ridley Park, PA; San Francisco, CA, or Seal Beach, CA.

 

The ideal candidate possesses a strong blend of cybersecurity governance expertise, broad technical understanding, regulatory interpretation capabilities, and enterprise control framework experience. 

 

Position Responsibilities:

• Lead the development, maintenance, and continuous improvement of enterprise policies, standards, controls, and implementation procedures 

• Translate regulatory, contractual, and cybersecurity requirements into actionable governance and control requirements 

• Design, maintain, and optimize the enterprise control framework, including control rationalization, consolidation, and framework alignment activities

• Partner with cybersecurity, infrastructure, engineering, cloud, application, data governance, privacy, and compliance teams to ensure governance requirements are practical, feasible, and align with business and operational needs

• Provide subject matter expertise related to control intent, implementation expectations, regulatory interpretation, and governance best practices

• Support governance modernization initiatives, ServiceNow IRM policy management, and control automation efforts to improve scalability, consistency, and efficiency

• Develop and support control policies and strategies, prepare governance reporting, and communicate program status, priorities, and progress to stakeholders and leadership

Basic Qualifications (Required Skills/Experience):

• 5+ years of experience in in Governance, Risk and Compliance (GRC), Information Technology (IT) Audit, Information Security, Vulnerability Management, and Compliance

• 5+ years experience supporting enterprise technology environments including applications, infrastructure, cloud services, databases, networks, or identity and access management platforms

• 3+ years experience writing enterprise policies, standards, controls and implementation procedures

• 3+ years of experience leading governance transformation or enterprise control framework initiatives

• Strong understanding of how enterprise technologies are deployed, operated, administered, and secured across different environments

• Experience collaborating directly with engineering, infrastructure, cloud, application, or operations teams to develop practical and technically feasible implementation procedures

• 3+ years of experience in cybersecurity and regulatory frameworks including NIST 800-53, NIST 800-171, CMMC, ISO, GDPR, ITAR or similar frameworks

• Experience mapping controls to enterprise technology assets and environments

 

Preferred qualifications (Desired Skills/Experience):

• 10 or more years of higher education and/or related work experience (Higher education includes college, university, technical school, licensing/certification programs, etc.)

• Bachelor’s degree in Cybersecurity, information Technology, Risk Management, Computer Science, or related field

• Experience partnering with Legal, Privacy, Compliance, Internal Audit, or Regulatory Affairs teams to interpret and implement compliance obligations

• Ability to lead cross-functional governance discussions with both technical and non-technical stakeholders

• Experience with ServiceNow IRM or enterprise GRC platforms

• Familiarity with CMDB, enterprise asset inventoried, and configuration concepts

• Experience supporting control rationalization initiatives

• Experience supporting highly regulated industries

• Professional certifications such as CISSP, CGRC, CISA, CRISC

Conflict of Interest:

Successful candidates for this job must satisfy the Company’s Conflict of Interest (COI) assessment process.

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations.

Summary pay range:

Senior - $130,900 - $189,750

Lead - $161,500 - $233,450

Language Requirements:

Not Applicable

Education:

Not Applicable

Relocation:

Relocation assistance is not a negotiable benefit for this position.

Export Control Requirement:

This position must meet U.S. export control compliance requirements. To meet U.S. export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.62 is required. “U.S. Person” includes U.S. Citizen, U.S. National, lawful permanent resident, refugee, or asylee.

Safety Sensitive:

This is not a Safety Sensitive Position.

Security Clearance:

This position does not require a Security Clearance.

Visa Sponsorship:

Employer will not sponsor applicants for employment visa status.

Contingent Upon Award Program

This position is not contingent upon program award

Shift:

Shift 1 (United States of America)

Stay safe from recruitment fraud! The only way to apply for a position at Boeing is via our Careers website. Learn how to protect yourself from recruitment fraud - Recruitment Fraud Warning