Blue Sky Innovative Solutions
GRC Analyst II or III - Audit & Framework Interpretation Specialist
Blue Sky Innovative Solutions, Dayton, Ohio, United States, 45444
Position Summary:
Blue Sky Innovative Solutions is seeking a GRC Analyst II or III with strong experience in interpreting compliance frameworks and preparing audit evidence. This position is focused on enabling audit readiness by identifying and gathering artifacts aligned with established controls, rather than building new operational systems. The ideal candidate will work closely with internal and external auditors and collaborate with IT and business stakeholders to validate compliance through existing controls.
Key Responsibilities:
Interpret security and privacy frameworks such as NIST 800-53, SOC 2, and HIPAA to determine audit requirements and evidence expectations. Assist IT and business teams in identifying, collecting, and submitting relevant artifacts. Support internal and external audits by preparing and reviewing control evidence. Maintain a repository of reusable documentation and audit-ready control mappings. Collaborate with compliance leads and auditors to respond to audit inquiries and findings. Advise stakeholders on best practices for audit documentation, evidence quality, and process improvement. Track audit timelines, deliverables, and closure of findings. Required Qualifications:
3-6 years of experience in compliance, audit preparation, or GRC roles Solid understanding of frameworks such as NIST 800-53, SOC 2, HIPAA, and other regulatory requirements Previous experience supporting audits or serving as an auditor is highly desirable Excellent communication and stakeholder engagement skills Strong organizational and documentation abilities with attention to detail Education and Certifications:
Bachelor's degree in Information Assurance, Risk Management, Business Administration, or related field Preferred certifications: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Internal Auditor (CIA)
About Blue Sky Blue Sky Innovative Solutions (Blue Sky) assists its federal, state and local, and commercial clients with solving their toughest challenges in the areas of IT Infrastructure Support and Engineering; Application Development and Maintenance; Program and Project Management; and Management Consulting. Find out more about Blue Sky at www.bsis-llc.com. Blue Sky is an equal opportunity employer and recruits mission-oriented, proactive, skilled candidates from across the United States. As an SBA certified HUBZone small business, Blue Sky has a special interest in recruiting and hiring personnel who reside in HUBZones. To determine whether you reside in a HUBZone, visit http://map.sba.gov/hubzone/maps/. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Key Responsibilities:
Interpret security and privacy frameworks such as NIST 800-53, SOC 2, and HIPAA to determine audit requirements and evidence expectations. Assist IT and business teams in identifying, collecting, and submitting relevant artifacts. Support internal and external audits by preparing and reviewing control evidence. Maintain a repository of reusable documentation and audit-ready control mappings. Collaborate with compliance leads and auditors to respond to audit inquiries and findings. Advise stakeholders on best practices for audit documentation, evidence quality, and process improvement. Track audit timelines, deliverables, and closure of findings. Required Qualifications:
3-6 years of experience in compliance, audit preparation, or GRC roles Solid understanding of frameworks such as NIST 800-53, SOC 2, HIPAA, and other regulatory requirements Previous experience supporting audits or serving as an auditor is highly desirable Excellent communication and stakeholder engagement skills Strong organizational and documentation abilities with attention to detail Education and Certifications:
Bachelor's degree in Information Assurance, Risk Management, Business Administration, or related field Preferred certifications: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Internal Auditor (CIA)
About Blue Sky Blue Sky Innovative Solutions (Blue Sky) assists its federal, state and local, and commercial clients with solving their toughest challenges in the areas of IT Infrastructure Support and Engineering; Application Development and Maintenance; Program and Project Management; and Management Consulting. Find out more about Blue Sky at www.bsis-llc.com. Blue Sky is an equal opportunity employer and recruits mission-oriented, proactive, skilled candidates from across the United States. As an SBA certified HUBZone small business, Blue Sky has a special interest in recruiting and hiring personnel who reside in HUBZones. To determine whether you reside in a HUBZone, visit http://map.sba.gov/hubzone/maps/. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.