Peregrine
Governance, Risk & Compliance (GRC) Analyst
Backed by leading investors, Peregrine supports public safety agencies across the country and builds technologies to power critical decision-making for public safety and emergency response organizations. We’re motivated to help institutions solve hard problems through better decision-making and to create safer communities while protecting privacy and civil liberties. We are a team of public service entrepreneurs who value empathy, curiosity, integrity, courage, and excellent execution. If mission-focused work is your north star, come build with us. The Role
We’re looking for a Governance, Risk, and Compliance (GRC) Analyst to strengthen and scale our security and compliance program. You will support the development and maintenance of frameworks that ensure our organization meets key regulatory, contractual, and operational standards across data protection, privacy, and security. You’ll work with engineering, product, and leadership to maintain compliance with frameworks such as SOC 2, CJIS, HIPAA, ISO 27001, NIST 800-53, and FedRAMP as we expand to new markets and government sectors. This role is ideal for someone who is detail-oriented, collaborative, and eager to build structured compliance practices that improve security and trust. What You’ll Do
Support the implementation, tracking, and continuous improvement of compliance frameworks (SOC 2, CJIS, HIPAA, ISO 27001, FedRAMP, NIST 800-53). Manage and organize compliance documentation, internal audits, and evidence collection for internal and external stakeholders. Collaborate with internal teams to update policies, procedures, and controls related to data protection, access management, and incident response. Maintain strong awareness of security best practices in cloud environments (AWS), including GuardDuty, SecurityHub, Amazon Inspector, and AWS Config. Use compliance management tools such as Vanta, Drata, SecureFrame, or HyperProof to streamline reporting and evidence collection. Partner with technical teams to ensure identity and access management (IAM), MFA, and least-privilege principles are properly applied. Contribute to audit readiness and respond to customer and vendor compliance inquiries. Be based in one of our SF, NYC, or Washington, D.C. hubs with a 4 days/week in office requirement. About You
Experience: 5-10 years in information security, compliance, or risk management within regulated industries (e.g., healthcare, finance, or government). Framework Familiarity: Working knowledge of SOC 2, HIPAA, CJIS, FedRAMP, ISO 27001, NIST 800-53, or similar frameworks. Technical Knowledge: Understanding of cloud-native SaaS, microservices, VPCs/VPNs, and identity management concepts such as RBAC and MFA. Detail-Oriented: You thrive on structure, accuracy, and organization—especially when managing documentation and multiple compliance tasks. Collaborative & Curious: You enjoy learning from others, contributing to shared goals, and improving processes. Clear Communicator: You can translate complex security concepts into simple, actionable language for different audiences. Preferred Certifications
Governance & Compliance: CGRC, CISSP, CISA, CIPP/US, HCISPP, CompTIA Security+. Cloud Security: CCSP, CCSK, AWS Security – Specialty, AWS Solutions Architect – Associate, or CompTIA Cloud+. Bonus Points
Experience with public safety, justice, or government agencies, or other highly regulated data environments. Familiarity with CJIS, SOC-2, or overlapping control frameworks. Passion for building scalable, user-friendly compliance systems in a fast-growing organization. Salary Range:
$140,000 - $170,000 Annually + Benefits + Equity (if applicable) + Bonus (if applicable) Actual compensation is influenced by a wide array of factors including skill set, level of experience, and location. Information on benefits is provided by the company. Peregrine Technologies is committed to creating an inclusive environment for all employees. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Seniorities & Employment
Seniority level: Mid-Senior level Employment type: Full-time Job function: Other Industries: Software Development Referrals increase your chances of interviewing at Peregrine. Sign in to set job alerts for “Governance, Risk & Compliance (GRC) Analyst” roles.
#J-18808-Ljbffr
Backed by leading investors, Peregrine supports public safety agencies across the country and builds technologies to power critical decision-making for public safety and emergency response organizations. We’re motivated to help institutions solve hard problems through better decision-making and to create safer communities while protecting privacy and civil liberties. We are a team of public service entrepreneurs who value empathy, curiosity, integrity, courage, and excellent execution. If mission-focused work is your north star, come build with us. The Role
We’re looking for a Governance, Risk, and Compliance (GRC) Analyst to strengthen and scale our security and compliance program. You will support the development and maintenance of frameworks that ensure our organization meets key regulatory, contractual, and operational standards across data protection, privacy, and security. You’ll work with engineering, product, and leadership to maintain compliance with frameworks such as SOC 2, CJIS, HIPAA, ISO 27001, NIST 800-53, and FedRAMP as we expand to new markets and government sectors. This role is ideal for someone who is detail-oriented, collaborative, and eager to build structured compliance practices that improve security and trust. What You’ll Do
Support the implementation, tracking, and continuous improvement of compliance frameworks (SOC 2, CJIS, HIPAA, ISO 27001, FedRAMP, NIST 800-53). Manage and organize compliance documentation, internal audits, and evidence collection for internal and external stakeholders. Collaborate with internal teams to update policies, procedures, and controls related to data protection, access management, and incident response. Maintain strong awareness of security best practices in cloud environments (AWS), including GuardDuty, SecurityHub, Amazon Inspector, and AWS Config. Use compliance management tools such as Vanta, Drata, SecureFrame, or HyperProof to streamline reporting and evidence collection. Partner with technical teams to ensure identity and access management (IAM), MFA, and least-privilege principles are properly applied. Contribute to audit readiness and respond to customer and vendor compliance inquiries. Be based in one of our SF, NYC, or Washington, D.C. hubs with a 4 days/week in office requirement. About You
Experience: 5-10 years in information security, compliance, or risk management within regulated industries (e.g., healthcare, finance, or government). Framework Familiarity: Working knowledge of SOC 2, HIPAA, CJIS, FedRAMP, ISO 27001, NIST 800-53, or similar frameworks. Technical Knowledge: Understanding of cloud-native SaaS, microservices, VPCs/VPNs, and identity management concepts such as RBAC and MFA. Detail-Oriented: You thrive on structure, accuracy, and organization—especially when managing documentation and multiple compliance tasks. Collaborative & Curious: You enjoy learning from others, contributing to shared goals, and improving processes. Clear Communicator: You can translate complex security concepts into simple, actionable language for different audiences. Preferred Certifications
Governance & Compliance: CGRC, CISSP, CISA, CIPP/US, HCISPP, CompTIA Security+. Cloud Security: CCSP, CCSK, AWS Security – Specialty, AWS Solutions Architect – Associate, or CompTIA Cloud+. Bonus Points
Experience with public safety, justice, or government agencies, or other highly regulated data environments. Familiarity with CJIS, SOC-2, or overlapping control frameworks. Passion for building scalable, user-friendly compliance systems in a fast-growing organization. Salary Range:
$140,000 - $170,000 Annually + Benefits + Equity (if applicable) + Bonus (if applicable) Actual compensation is influenced by a wide array of factors including skill set, level of experience, and location. Information on benefits is provided by the company. Peregrine Technologies is committed to creating an inclusive environment for all employees. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Seniorities & Employment
Seniority level: Mid-Senior level Employment type: Full-time Job function: Other Industries: Software Development Referrals increase your chances of interviewing at Peregrine. Sign in to set job alerts for “Governance, Risk & Compliance (GRC) Analyst” roles.
#J-18808-Ljbffr