We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Colas Inc. jobs

GRC (Governance Risk and Compliance) Analyst

Colas Inc.
$106,380.00 - $130,020.00 USD
United States, Colorado, Denver
4601 Dtc Boulevard (Show on map)
Mar 28, 2026

Colas IS Support is the information technology arm of the North America business for Colas and is based in Denver, Colorado. Colas ISS strives to make Colas an industry leader through developing custom mobile applications and business intelligence tools, supporting core applications, maintaining our infrastructure, and much more. Through a partnership with the Colas Companies in the USA & Canada Colas IS Support helps empower our employees for success while also providing direct contact with users and other innovators across the organization. To learn more about Colas IS Support visit www.colasiss.com/.

The Colas USA Family of Companies provides competitive pay, outstanding benefits, career advancement opportunities, professional education, and extensive training for every employee. We pride ourselves on upholding the highest standards of safety, environmental conservation, and ethical conduct as we strive to grow our infrastructure products and services through empowering and developing our people, fostering innovation, utilizing new technology, and maximizing vertical integration at all levels of the company's value chain. To learn more about the Colas USA Family of Companies, please visitwww.colasusa.com.

Compensation

Annual Salary Range $106,380.00 - $130,020.00 USDbased on experience

Job Summary

The ideal candidate for the GRC Analyst position would use their skills and experience to ensure the compliance of Colas' GRC program against selected compliance frameworks. Your focus will be in collection of evidence, updating compliance policies, and identifying non-conformance with established policies . You will also be helping implement newly identified compliance frameworks and work to improve operational efficiency within the Colas GRC program

Main Responsibilities

o GRC Ownership: Own the GRC efforts to improve and maintain adherence with selected compliance frameworks (Primarily NIST 800-171 in accordance with CMMC L2 requirements)
o Cybersecurity Audits: Identify non-compliant systems and provide recommendations for remediations.
o Incident Response: Help investigate security breaches and implement mitigation strategies.
o Documentation and Reporting: Maintain comprehensive documentation of the information technology environment.
o Auditing: Periodically audit compliance with our cybersecurity processes.
o Evidence Collection: Collect required evidence to demonstrate Colas is remaining compliant with selected compliance frameworks
o Provide mentorship and strategic guidance to IT teams, translating complex regulatory requirements into actionable technical steps for seamless compliance execution.
o Training: help train internal Colas ISS users on best cybersecurity practices.
o Emerging Technologies: Stay updated with the latest advancements in security technologies and recommend relevant solutions to enhance our security.

Main Responsibilities Continued

o Communication Skills: The ability to convey complex technical concepts to both technical and non-technical stakeholders.
o Collaboration: Working effectively with cross-functional teams, including developers, project managers, and business analysts.
o Problem-Solving: Analyzing issues and developing effective solutions while considering various constraints and trade-offs.
o Leadership: Guiding and mentoring team members and influencing decision-making processes within the team and organization.
o Adaptability: Being open to change and able to adjust to new technologies, tools, and methodologies as they emerge.
o Critical Thinking: Evaluating options and making informed decisions based on analysis and reasoning.
o Time Management: Prioritizing tasks effectively to meet deadlines while balancing multiple projects.
o Empathy: Understanding the perspectives and challenges of team members and stakeholders, which helps in fostering a collaborative environment.

Required Qualifications

o Bachelor's degree in computer science or similar
o Minimum of 5 years experience with maintaining compliance frameworks (NIST 800-171 experience required)
o Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems.
o Experience with Microsoft 365 GCC environments
o Positive attitude and strong work ethic
o Exceptional written, verbal & listening communication skills
o Willing and able to travel in US & Canada 2-3 times per year

Preferred Qualifications

o Technical Experience in triaging security alerts (EDR, AV, SIEM)
o Experience in a Cloud Infrastructure environment (Azure - preferred, AWS)
o One or more current security related certifications (e.g., CISSP, SANS GIAC, etc.)
o One or more cloud security certifications (Azure, AWS, GCP, CCSP)

Colas Inc. and its subsidiaries are an Equal Opportunity Employer. For details on the specifics of this commitment, please click here to view theEEO document.If you are an individual with a disability and require a reasonable accommodation to:

  • to meet the requirements of the role in which you are applying
  • complete any part of the application process
  • access or use the online application process and need an alternative method for applying

Please contact Colas Inc. at 973-290-9082 or send an email toColasRecruiter@colasinc.com.

Applied = 0
MORE JOBS LIKE THIS

(web-bd9584865-kzk4k)