ZipRecruiter

Log In

2

Remote Environmental Risk Analyst Jobs in Tennessee

PNC Bank

$112K - $208K/yr

Technology Risk understanding and experience working with engineering teams Responsible for ... This position may be eligible for remote work in select geographic locations, subject to approval ...

Wood Plc

Senior Risk Assessor

Knoxville, TN ยท On-site +1

Overview / Responsibilities Overview Wood Environment & Infrastructure Solutions is seeking a ... For candidates not in those locations, we would consider fully remote work for a highly qualified ...

Wood Plc

Senior Risk Assessor

Nashville, TN ยท On-site +1

Overview / Responsibilities Overview Wood Environment & Infrastructure Solutions is seeking a ... For candidates not in those locations, we would consider fully remote work for a highly qualified ...

JLL

Director, Value and Risk Advisory

Nashville, TN ยท Remote

Partner with (coach) analyst i's, senior analysts and/or associates to complete assignments Our ... Remote -Atlanta, GA, Charlotte, NC, Nashville, TN, Raleigh, NC If this resonates with you, we ...

Levelociti

Remote Audit Senior - 80k-110k

Nashville, TN ยท Remote

$80K - $110K/yr

Supervise and mentor junior staff in a remote environment * Conduct risk assessments and develop ... Excellent communication, analytical, and organizational skills * Proficiency with remote ...

Semiserve

Cybersecurity Analyst

Brentwood, TN ยท Remote

Document remediation procedures, exceptions, and risk acceptance records. Maintain accurate records ... Environment Remote - 8:30am - 5:30pm Education:Employment Type: CONTRACTOR

Direct Counsel

Senior Conflicts Analyst

Nashville, TN ยท On-site +1

$100K - $120K/yr

About the Role The Senior Conflicts Analyst will play a key role in supporting the firm's Risk ... Hybrid and remote-friendly arrangements available. * Professional Environment: Collaborative ...

next page

Showing results 1-20

All JobsRemote Environmental Risk Analyst JobsRemote Environmental Risk Analyst Jobs in Tennessee

Remote Environmental Risk Analyst information

What is the difference between Remote Environmental Risk Analyst vs Remote Environmental Consultant?

AspectRemote Environmental Risk AnalystRemote Environmental Consultant
Required CredentialsBachelor's in Environmental Science, Risk Management certificationsBachelor's or higher in Environmental Science, Consulting certifications
Work EnvironmentData analysis, risk assessment, reportingClient advisories, project management, site assessments
Employer & Industry UsageCorporations, government agencies, environmental firmsConsulting firms, private companies, NGOs

While both roles focus on environmental issues, Remote Environmental Risk Analysts primarily assess and quantify risks using data, whereas Remote Environmental Consultants provide strategic advice and solutions to clients. The roles often overlap in credentials and industry usage, but differ in daily tasks and focus areas.

What are the most commonly searched types of Environmental Risk Analyst jobs in Tennessee? The most popular types of Environmental Risk Analyst jobs in Tennessee are:
What are popular job titles related to Remote Environmental Risk Analyst jobs in Tennessee? For Remote Environmental Risk Analyst jobs in Tennessee, the most frequently searched job titles are:
What job categories do people searching Remote Environmental Risk Analyst jobs in Tennessee look for? The top searched job categories for Remote Environmental Risk Analyst jobs in Tennessee are:
What cities in Tennessee are hiring for Remote Environmental Risk Analyst jobs? Cities in Tennessee with the most Remote Environmental Risk Analyst job openings:
Remote Environmental Risk Analyst jobs near you
Infographic showing various Remote Environmental Risk Analyst job openings in Tennessee as of June 2026, with employment types broken down into 89% Full Time, 8% Part Time, and 3% Contract. Highlights an 95% Physical, 1% Hybrid, and 4% Remote job distribution.

Senior Governance Risk and Compliance (GRC) Analyst and Team Lead

C2 Labs, Inc

Knoxville, TN โ€ข On-site, Remote

Full-time

Posted 12 days ago

Job description

C2 Labs [www.c2labs.com] partners with clients on their IT transformation journey via data-driven IT strategic planning, application rationalization and redevelopment, and innovative research and development of new industry standards and technologies. C2 Labs provides specialized products and services that allow our clients to innovate with speed and scale seamlessly while maintaining a robust and effective security posture. C2 has a unique approach to client success enablement that is empowered by ART (Application Rationalization and Transformation) and SCIENCE (Strategic Client Interview and Engineering to assess, design, and implement Cloud Ecosystems) to couple creative new approaches/technologies with proven methodologies that deliver rapid results.
Must be a US Citizen and capable of passing a Public Trust background investigation.
Job Summary:
As a Senior Governance Risk and Compliance (GRC) Analyst and Team Lead at C2 Labs you will lead a team of security analysts and engineers to implement regulatory frameworks such as the Federal Information Security Modernization Act (FISMA), the Federal Risk Authorization Management Program (FedRAMP) and the State Risk Authorization Management Program (StateRAMP). You will leverage GRC tools to develop security authorization package documentation such as the System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Report (SAR), and the Plan of Actions & Milestones (POA&M) in human readable and machine-readable formats. You will serve as a Subject Matter Expert (SME) at key stakeholder meetings and will develop and maintain client relationships. You will draft security control implementation statements with enough detail to facilitate the testing of the controls and will develop supporting documentation including the Contingency Plan (CP), Incident Response Plan (IRP), and Configuration Management Plan (CMP). As a Senior GRC Analyst your primary responsibility will be to ensure the timely development of the security authorization package in accordance with C2 Labs quality standards. You will be expected to lead multiple teams and will work on up to 2 packages at a time.
Job Responsibilities:
Categorize systems in accordance with Federal Information Processing Standards (FIPS) 199 and National Institute of Standards and Technology (NIST) Special Publication (SP) 800-60. Select and tailor security controls by applying scoping guidance in accordance with NIST SP 800-53 and FedRAMP specific guidance. Document the implementation characteristics for security controls with enough detail to permit the testing of the security control by an independent assessor/Third Party Assessment Organization (3PAO).
  • Develop, review, and update security authorization package documentation to include the System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Report (SAR), and Plan of Actions and Milestones (POA&M).
  • Develop, review, and update supporting documentation including the Contingency Plan (CP), Incident Response Plan (IRP), and Configuration Management Plan (CMP).
  • Conduct Security Impact Assessments (SIAs) on changes to information systems.
  • Create the Control Implementation Summary (CIS)/Customer Responsibility Matrix (CRM) workbook outline Cloud Service Provider (CSP) and customer responsibilities.
  • Develop, review, and update policies and procedures to support the implementation of the NIST 800-53 control families.
  • Leverage the next generation of Governance Risk and Compliance (GRC) tools to automate the creation of the SSP.
  • Review current security assessment and authorization processes and provide recommendations for improvement.
  • Develop Risk Assessment Reports (RAR).
  • Provide guidance on NIST 800-53, FedRAMP, and StateRAMP control requirements.
  • Develop and deliver training to educate stakeholders on the various tasks and activities associated with the RMF.

Qualifications:
  • Minimum 8 years' experience in IT consulting specializing in Governance, Risk, and Compliance using the RMF.
  • CISSP, CISM, or CAP certification, or equivalent preferred
  • Excellent communication and interpersonal skills, with the ability to build a rapport and trust with clients.
  • Knowledge of the cybersecurity industry to include regulatory frameworks such as the National Institute of Standards in Technology (NIST) Risk Management Framework (RMF), Federal Risk Authorization Management Program (FedRAMP), Department of Defense (DoD) Impact Levels (2-6), and the State Risk Authorization Management Program (StateRAMP).
  • Possesses an in-depth understanding of the FedRAMP authorization process and associated templates and deliverables.
  • Must have extensive experience creating security authorization package documentation (i.e., SSP, SAP. SAR, & POA&M) and managing system authorization artifacts for a FedRAMP authorized cloud environment.

Working knowledge of:
  • NIST SP 800-53 Security and Privacy Controls for Federal Information Systems and Organizations
  • FedRAMP Security Controls Baselines (i.e., Low, Moderate, High, and Li-SaaS)
  • StateRAMP Security Control Baselines (i.e., Low Impact Ready, Low Impact Authorized, Moderate Impact Ready, Moderate Impact Authorized)
  • NIST SP 800-37 Guide for Applying the Risk Management Framework to Federal Information Systems
  • Must have strong technical writing skills.
  • Must be able to work independently under only general direction.
  • Must be able to interpret and provide consulting expertise on FedRAMP security requirements.
  • Will serve as an RMF Subject Matter Expert (SME) at key stakeholder meetings.
  • Must have extensive knowledge in reviewing, analyzing, and documenting the secure implementation of logical controls, physical controls, environmental controls, personnel security, and incident handling.
  • Experience preparing monthly continuous monitoring deliverables (e.g., vulnerability scans, POA&Ms, and asset inventory) for submission to the FedRAMP PMO.
  • Must be a US Citizen and capable of passing a Public Trust background investigation.

Apply