Portfolio Jobs

Discover opportunities across our network of companies

Cybersecurity Audit Analyst

Vestigo Aerospace

Accounting & Finance, IT

Huntsville, AL, USA

USD 74,800-110k / year

Posted on Jun 11, 2026

Apply now

Show Map

Location355 Quality Circle Northwest, Suite A, Huntsville, AL, 35806, United States
Base Pay$74,800.00 - $110,000.00 / Year
Employee TypeFT Exempt

Description

OVERVIEW OF POSITION:

The Cybersecurity Analyst (GRC) is responsible for supporting the organization’s Governance, Risk, and Compliance (GRC) program. This role focuses on maintaining cybersecurity documentation, coordinating audit activities, supporting regulatory compliance efforts, and managing administrative functions of the cybersecurity program.

This is an individual contributor role with no direct supervisory responsibilities.

ESSENTIAL JOB FUNCTIONS:

Perform Application Portfolio maintenance including various attributes related to enterprise software lifecycle management and cybersecurity lifecycle attributes.
Assist with control mapping and data maintenance related to enterprise applications, software, and systems.
Coordinate project related activities, to include technology and compliance projects.
Coordination of enterprise technology and cybersecurity invoices, approvals, and oversight including financial coding and cost tracking for expenditures.

Governance and Compliance

Maintain cybersecurity policies, procedures, and standards in alignment with applicable frameworks.
Track compliance requirements and ensure documentation is current and complete.
Assist in implementation and monitoring of security protocols.
Support ongoing compliance initiatives and reporting requirements.

Audit Coordination and Support

Prepare for and support internal and external audits.
Coordinate audit requests, including collection and organization of required documentation.
Maintain audit artifacts and ensure readiness for review.
Track audit findings and support remediation efforts through closure.

Risk Management

Assist in conducting risk assessments and documenting results.
Maintain and update risk registers.
Track mitigation plans and follow up on remediation activities.
Support third-party and vendor risk management processes.

Cybersecurity Program Administration

Maintain records related to access reviews, training compliance, and security activities.
Coordination of enterprise technology and cybersecurity invoices, approvals, and oversight including financial coding and cost tracking for expenditures.
Support documentation and tracking security incidents.
Manage administrative workflows related to the cybersecurity program.
Ensure proper retention and organization of compliance documentation.

Cross-Functional Support

Collaborate with BTS, Engineering, Quality, and Operational teams to support compliance and security initiatives.
Provide guidance on cybersecurity policies and procedures as needed.
Support continuous improvement of cybersecurity and compliance processes.

SKILLS • EXPERIENCE • EDUCATION

Bachelor’s degree in Cybersecurity, Information Systems, or related field, or equivalent experience.
2-5 years of experience in cybersecurity, compliance, or GRC related functions.
Experience supporting audits and compliance programs.
Working knowledge of cybersecurity frameworks.
Strong organizational skills and attention to detail.
Strong documentation and recordkeeping skills.
Ability to manage multiple tasks and meet deadlines.
Experience with CMMC or Department of Defense (DoD) compliance requirements.
Experience in manufacturing or regulatory industry environment.
Relevant certifications (E.G. Security+. CISA, CISM, or similar).
Experience with GRC or compliance management tools.
Experience or strong familiarity with CMMC, NIST 800-171, SOX 404, and/or related cybersecurity compliance requirements.
SOX (Sarbanes-Oxley Act) compliance (Section 404, ICFR, etc) experience and/or related compliance control mapping experience in a regulated environment preferred.
Experience with Risk Management Frameworks and Risk Assessments preferred.

ADDITIONAL INFORMATION:

This job description is intended to describe the general nature and level of work being performed. It is not an exhaustive list of all responsibilities, duties, or skills required. Employees may be required to perform other job-related duties as assigned, consistent with business needs and applicable law.

Due to the nature of our work and applicable U.S. export control laws, this position requires International Traffic in Arms Regulations (ITAR) eligibility. Only individuals who qualify as a “U.S. person” as defined by ITAR (U.S. citizens, U.S. permanent residents, refugees, or asylees), unless specified otherwise within job description, are eligible for employment.

Applied Aerospace & Defense (“AA&D”) is committed to equal employment opportunity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, veteran or military status, or any other characteristic protected by applicable federal, state, or local law.

Applicants who require reasonable accommodation for any part of the application or hiring process due to disability, medical condition, or other protected reason may contact the Human Resources Department. Requests will be reviewed in accordance with applicable law.

Where required by law, the applicable pay range and a summary of benefits and other compensation for this position will be provided.

Apply now

See more open positions at Vestigo Aerospace

We invest in cross-sector innovation-driven enterprises through our core pillars of Community, Capital and Acceleration.

As the #1 seed and early-stage venture capital firm in the Great Lakes Region and Top 20 in the World, we are building a robust innovation ecosystem with companies, customers and mission-critical partners that fuel founders.

GET IN TOUCH