Pole Star Defense

About the Company

At Pole Star Defense, we develop and implement pioneering maritime intelligence technologies to protect our customers’ vessels, people, maritime domain, and reputation.

Our customizable, secure, and scalable solutions are designed to enable time-critical decisions and mitigate risk across all facets of maritime activity - from the monitoring of territorial waters, to in-depth vessel investigations, SOLAS, and everything in-between.

Our commitment to mission critical government and defense operations enables you to access best-in-class risk and vessel intelligence to stay ahead of regulation affecting government in the maritime space.

Listed Jobs

Company Name

Pole Star Defense

Job Title

GRC Analyst II - Maritime Defense

Job Description

Job Title: GRC Analyst II – Maritime Defense Role Summary: Responsible for supporting and continuously improving the organization's Governance, Risk, and Compliance (GRC) programs. Ensures adherence to CMMC Level 1 & 2, ISO 27001, ISO 9001, NIST SP 800‑53, NIST SP 800‑171, and related regulatory requirements. Works cross-functionally with IT, Security, and business stakeholders to conduct audits, gap analyses, control testing, and maintain audit‑ready documentation. Expections: - 2–5 years of experience in GRC, cybersecurity, IT audit, or IAM governance. - Proficient with CMMC, NIST, ISO frameworks and related compliance controls. - Strong analytical, organizational, and written communication skills. Key Responsibilities: - Execute compliance activities and control implementations for CMMC, ISO, and NIST frameworks. - Conduct internal audits, gap analyses, and readiness assessments. - Collect, manage, and present evidence of control effectiveness. - Collaborate with IT/Security teams to remediate deficiencies and enhance controls. - Develop, update, and review compliance documentation and audit‑readiness materials. - Oversee IAM governance lifecycle (provisioning, access reviews, entitlement certifications, privileged access). - Ensure IAM processes meet CMMC and NIST access control requirements. - Coordinate and manage corporate cybersecurity and compliance training initiatives. - Administer annual, new‑hire, and role‑based training; support phishing awareness campaigns. - Maintain accurate training records for audit purposes. Required Skills: - Governance, Risk & Compliance, cybersecurity, IT audit, or IAM governance experience. - Working knowledge of CMMC 1/2, ISO 27001/ISO 9001, NIST SP 800‑53, NIST SP 800‑171. - Audit, risk assessment, control testing, and compliance documentation experience. - Identity & access governance expertise (RBAC, least privilege, recertification). - Strong analytical, organizational, and written communication abilities. Additional Skills (Optional): - CISA, CMMC RA certification. - Ability to obtain DoD Security Clearance. Required Education & Certifications: Bachelor’s degree in cybersecurity, information technology, business administration, or related field (or equivalent experience).

St. petersburg, United states

Hybrid

Junior

03-02-2026