GRC Analyst
Atlanta, GA · Remote
... engineering and business teams who need to understand what compliance requires of them. This is a ... This is a fully remote position open to Contract or Full-Time candidates. Key Responsibilities
New
Quick apply
GRC Analyst
Atlanta, GA · Remote
... engineering and business teams who need to understand what compliance requires of them. This is a ... This is a fully remote position open to Contract or Full-Time candidates. Key Responsibilities
New
Manager - ServiceNow
Atlanta, GA · On-site +1
Bachelor's degree in Computer Science, Cyber Security, Information Security, Engineering ... Experience with RSA Archer or other governance, risk, and compliance platforms, including migration ...
Manager - ServiceNow
Atlanta, GA · On-site +1
Bachelor's degree in Computer Science, Cyber Security, Information Security, Engineering ... Experience with RSA Archer or other governance, risk, and compliance platforms, including migration ...
Remote Archer Developer information
What is a Remote Archer Developer?
A Remote Archer Developer is a software professional who specializes in developing, customizing, and maintaining applications within the RSA Archer platform while working from a remote location. RSA Archer is a popular governance, risk, and compliance (GRC) platform used by organizations to manage risk and regulatory requirements. Remote Archer Developers configure workflows, design dashboards, and integrate the Archer platform with other systems to meet business needs. They collaborate with stakeholders virtually and may support multiple projects across different time zones. This role typically requires strong technical skills, knowledge of GRC processes, and experience with the RSA Archer suite.
What are some common challenges faced by Remote Archer Developers when collaborating with distributed teams?
Remote Archer Developers often work with global teams, which can present challenges such as coordinating across different time zones, ensuring clear communication, and maintaining consistent coding standards. Utilizing collaboration tools and maintaining regular check-ins can help overcome these barriers. Additionally, being proactive in providing updates and asking questions is key to fostering effective teamwork and project success in a remote environment.
What are the key skills and qualifications needed to thrive as a Remote Archer Developer, and why are they important?
To thrive as a Remote Archer Developer, you need strong programming skills (often in languages like Java or Python), a deep understanding of RSA Archer platform administration, and experience with GRC processes. Familiarity with configuring Archer modules, integrating APIs, and holding relevant certifications such as RSA Archer Certified Administrator is typical. Excellent problem-solving, communication, and self-motivation are crucial soft skills, especially when working remotely. These abilities ensure efficient development, seamless platform integration, and effective collaboration in supporting organizational risk and compliance needs.
What are popular job titles related to Remote Archer Developer jobs in Georgia? For Remote Archer Developer jobs in Georgia, the most frequently searched job titles are:
What job categories do people searching Remote Archer Developer jobs in Georgia look for? The top searched job categories for Remote Archer Developer jobs in Georgia are:
What cities in Georgia are hiring for Remote Archer Developer jobs? Cities in Georgia with the most Remote Archer Developer job openings:
Full-time
Posted yesterday
Job description
About the Role
Merci Technologies is seeking a GRC Analyst to support the governance, risk, and compliance program for one of our enterprise clients. This role sits at the intersection of security, audit, and business operations, translating complex regulatory and framework requirements into practical controls that teams can actually implement and sustain. You will be the person who knows where the control gaps are, what the auditors are going to ask for, and how to keep the organization audit-ready year round rather than scrambling at assessment time.
The work is varied and visible. In a given month you might run a control assessment against NIST CSF, prepare evidence for a SOC 2 examination, complete a vendor risk review for a new SaaS purchase, and brief stakeholders on the status of open findings. You will maintain the policy library, track risk to closure, and act as a trusted advisor to engineering and business teams who need to understand what compliance requires of them. This is a strong fit for someone who is organized, detail-driven, and comfortable holding teams accountable to commitments. This is a fully remote position open to Contract or Full-Time candidates.
Key Responsibilities
- Conduct control assessments and gap analyses against frameworks including NIST CSF, NIST 800-53, ISO 27001, SOC 2, and CMMC
- Plan and support internal and third-party audits, including scoping, evidence collection, and walkthroughs
- Track audit and assessment findings to remediation and closure, escalating risks where needed
- Develop, maintain, and version-control security policies, standards, and procedures
- Perform vendor and third-party risk assessments and document risk acceptance decisions
- Build and maintain the risk register and report risk posture to leadership and stakeholders
- Support regulatory, customer, and compliance reporting requests
- Help operationalize new framework or regulatory requirements as they emerge
Required Qualifications
- 3 to 5 years of experience in governance, risk, and compliance, IT audit, or information security
- Working knowledge of one or more frameworks: NIST CSF, NIST 800-53, ISO 27001, SOC 2, or CMMC
- Demonstrated experience supporting audit cycles and risk assessments end to end
- Ability to read a control requirement and translate it into clear, actionable guidance
- Strong documentation, organization, and stakeholder communication skills
Preferred Qualifications
- CISA, CRISC, ISO 27001 Lead Auditor, or CISSP certification
- Hands-on experience with GRC platforms such as Archer, ServiceNow GRC, or OneTrust
- Familiarity with defense, healthcare, or financial-services compliance requirements
- Experience with CMMC readiness and assessment preparation
What You Will Bring
You are the kind of person who reads the fine print and keeps the spreadsheet honest. You can push a remediation owner for an update without burning the relationship, and you can explain to a busy engineer why a control matters in language they care about. You treat compliance as a way to make the organization genuinely more secure, not just to pass an audit.