Peregrine Technologies
Governance, Risk & Compliance (GRC) Analyst
Peregrine Technologies, Washington, District of Columbia, us, 20022
Governance, Risk & Compliance (GRC) Analyst
Washington, D.C. Peregrine supports public safety agencies across the country—empowering public servants to improve operations and make better decisions. Our technology serves more than 30 million Americans. We partner with customers to listen to their needs, learn from their experiences, and develop solutions that help achieve transformational outcomes while protecting privacy and civil liberties. We are a team of public service entrepreneurs who value empathy, curiosity, integrity, courage, and execution. If mission-focused work is your north star, come build with us. We’re just getting started. Our Team
We build software to power critical decision-making for public safety and emergency response organizations. We transform data interaction and decision-making through scalable data platforms. Our team is advised by experts in emergency management, justice, and civil liberties to ensure our technology is effective and trust-enhancing. The Role
We’re looking for a
Governance, Risk, and Compliance (GRC) Analyst
to strengthen and scale our security and compliance program. You’ll support the development and maintenance of frameworks that ensure our organization meets key regulatory, contractual, and operational standards across data protection, privacy, and security. You’ll work with engineering, product, and leadership teams to maintain compliance with SOC 2, CJIS, HIPAA, ISO 27001, NIST 800-53, and FedRAMP as we expand across markets and government sectors. This role is ideal for someone who is detail-oriented, collaborative, and committed to building structured compliance practices that enhance security and trust. What You’ll Do
Support the implementation, tracking, and continuous improvement of compliance frameworks (SOC 2, CJIS, HIPAA, ISO 27001, FedRAMP, NIST 800-53). Manage and organize compliance documentation, internal audits, and evidence collection for internal and external stakeholders. Collaborate with internal teams to update policies, procedures, and controls related to data protection, access management, and incident response. Maintain awareness of security best practices in cloud environments—particularly AWS—including services like GuardDuty, SecurityHub, Amazon Inspector, and AWS Config. Use compliance management tools such as Vanta, Drata, SecureFrame, or HyperProof to streamline reporting and evidence collection. Partner with technical teams to ensure IAM, MFA, and least-privilege principles are applied. Contribute to audit readiness and help respond to customer and vendor compliance inquiries. Based in one of our SF, NYC, or Washington, D.C. hubs with a 4 days/week in-office requirement. About You
Experience: 5-10 years in information security, compliance, or risk management within regulated industries (e.g., healthcare, finance, or government). Framework familiarity: Working knowledge of SOC 2, HIPAA, CJIS, FedRAMP, ISO 27001, NIST 800-53, or similar frameworks. Technical knowledge: Understanding of cloud-native SaaS environments, microservices, VPCs/VPNs, and identity management concepts such as RBAC and MFA. Detail-oriented: Strong focus on structure, accuracy, and organization when managing documentation and multiple tasks. Collaborative and curious: Enjoy learning from others and improving processes. Clear communicator: Able to translate complex security concepts into actionable language for diverse audiences. Preferred Certifications
Governance & Compliance: CGRC, CISSP, CISA, CIPP/US, HCISPP, CompTIA Security+. Cloud Security: CCSP, CCSK, AWS Security – Specialty, AWS Solutions Architect – Associate, CompTIA Cloud+. Bonus Points
Experience with public safety, justice, or government agencies, or other highly regulated data environments. Familiarity with CJIS, SOC-2, or related control frameworks. Interest in building scalable, user-friendly compliance systems in a fast-growing organization. Salary Range:
$140,000 - $170,000 annually + Benefits + Equity (if applicable) + Bonus (if applicable) Actual compensation is influenced by factors including skill set, experience, and location. Benefits information is available here. Peregrine Technologies is committed to creating an inclusive environment. We are an equal opportunity employer. All qualified applicants will receive consideration without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
#J-18808-Ljbffr
Washington, D.C. Peregrine supports public safety agencies across the country—empowering public servants to improve operations and make better decisions. Our technology serves more than 30 million Americans. We partner with customers to listen to their needs, learn from their experiences, and develop solutions that help achieve transformational outcomes while protecting privacy and civil liberties. We are a team of public service entrepreneurs who value empathy, curiosity, integrity, courage, and execution. If mission-focused work is your north star, come build with us. We’re just getting started. Our Team
We build software to power critical decision-making for public safety and emergency response organizations. We transform data interaction and decision-making through scalable data platforms. Our team is advised by experts in emergency management, justice, and civil liberties to ensure our technology is effective and trust-enhancing. The Role
We’re looking for a
Governance, Risk, and Compliance (GRC) Analyst
to strengthen and scale our security and compliance program. You’ll support the development and maintenance of frameworks that ensure our organization meets key regulatory, contractual, and operational standards across data protection, privacy, and security. You’ll work with engineering, product, and leadership teams to maintain compliance with SOC 2, CJIS, HIPAA, ISO 27001, NIST 800-53, and FedRAMP as we expand across markets and government sectors. This role is ideal for someone who is detail-oriented, collaborative, and committed to building structured compliance practices that enhance security and trust. What You’ll Do
Support the implementation, tracking, and continuous improvement of compliance frameworks (SOC 2, CJIS, HIPAA, ISO 27001, FedRAMP, NIST 800-53). Manage and organize compliance documentation, internal audits, and evidence collection for internal and external stakeholders. Collaborate with internal teams to update policies, procedures, and controls related to data protection, access management, and incident response. Maintain awareness of security best practices in cloud environments—particularly AWS—including services like GuardDuty, SecurityHub, Amazon Inspector, and AWS Config. Use compliance management tools such as Vanta, Drata, SecureFrame, or HyperProof to streamline reporting and evidence collection. Partner with technical teams to ensure IAM, MFA, and least-privilege principles are applied. Contribute to audit readiness and help respond to customer and vendor compliance inquiries. Based in one of our SF, NYC, or Washington, D.C. hubs with a 4 days/week in-office requirement. About You
Experience: 5-10 years in information security, compliance, or risk management within regulated industries (e.g., healthcare, finance, or government). Framework familiarity: Working knowledge of SOC 2, HIPAA, CJIS, FedRAMP, ISO 27001, NIST 800-53, or similar frameworks. Technical knowledge: Understanding of cloud-native SaaS environments, microservices, VPCs/VPNs, and identity management concepts such as RBAC and MFA. Detail-oriented: Strong focus on structure, accuracy, and organization when managing documentation and multiple tasks. Collaborative and curious: Enjoy learning from others and improving processes. Clear communicator: Able to translate complex security concepts into actionable language for diverse audiences. Preferred Certifications
Governance & Compliance: CGRC, CISSP, CISA, CIPP/US, HCISPP, CompTIA Security+. Cloud Security: CCSP, CCSK, AWS Security – Specialty, AWS Solutions Architect – Associate, CompTIA Cloud+. Bonus Points
Experience with public safety, justice, or government agencies, or other highly regulated data environments. Familiarity with CJIS, SOC-2, or related control frameworks. Interest in building scalable, user-friendly compliance systems in a fast-growing organization. Salary Range:
$140,000 - $170,000 annually + Benefits + Equity (if applicable) + Bonus (if applicable) Actual compensation is influenced by factors including skill set, experience, and location. Benefits information is available here. Peregrine Technologies is committed to creating an inclusive environment. We are an equal opportunity employer. All qualified applicants will receive consideration without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
#J-18808-Ljbffr