Job Information
SAM LLC IT GRC Analyst in Austin, Texas
Who We Are
Founded in 1994, Surveying And Mapping, LLC (SAM) is a nationwide leader in geospatial and construction-phase solutions. With more than 50 offices and 1,600 professionals, we deliver the scale, technology, and expertise needed to support projects of any size. SAM streamlines project delivery through a single, coordinated team, offering in-house capabilities across land surveying, aerial mapping, subsurface utility engineering (SUE), utility coordination (UC), GIS, BIM, and construction engineering inspection (CEI).
By combining advanced technology, digital workflows, and decades of experience, we provide accurate, actionable data that helps clients move critical infrastructure projects forward with confidence. At SAM, you’ll be part of a team that values innovation, growth, and the opportunity to make a tangible impact on the built environment.
Your Impact at SAM
We are seeking a motivated and detail-oriented IT GRC (Governance, Risk, Compliance) Analyst to join our growing Information Security team. This role is ideal for professionals with a strong foundation in cybersecurity compliance and risk management who are eager to take ownership of key security and compliance initiatives.
As a foundational member of our expanding security program, you will play a critical role in developing policies, managing risk, and ensuring compliance with industry-recognized frameworks such as SOC 2, NIST Risk Management Framework (RMF), and the Cybersecurity Maturity Model Certification (CMMC). You may also contribute to high-impact projects, including Mergers & Acquisitions (M&A) due diligence.
This is an exciting opportunity for someone who thrives in a fast-paced, collaborative environment and wants to help shape the future of security and compliance within a rapidly scaling organization. The ideal candidate will be able to perform each of these essential duty satisfactorily:
Conduct risk assessments, identify security gaps, and recommend remediation strategies to enhance the organization’s security posture.
Support internal and external security audits, including SOC 2 readiness and CMMC certification efforts.
Participate in security assessments of potential clients or vendors, ensuring alignment with organizational security standards.
Contribute to the development and implementation of cybersecurity awareness and training programs.
Collaborate with IT, Legal, and Executive Leadership to provide insights on compliance status, security risks, and regulatory changes.
What You Bring to SAM
4+ years of experience in IT security, risk management, or compliance related roles.
Familiarity with industry-standard compliance frameworks (e.g., SOC 2, NIST RMF, CMMC)
Familiarity with data privacy regulations (GDPR, HIPPA, etc)
Excellent verbal and written communication skills
Strong analytical and problem-solving skills with attention to detail.
LOCAL TO AUSTIN, TX area
Certifications and/or Licensing Requirements
Desire to pursue industry related certifications: Security+, CISA, CGRC, etc.
Our Perks
• Health and Wellness Benefits: BlueCross BlueShield health insurance coverage begins the month after your hire date, Free Vision + Dental plans for employees, company-paid premiums for Long-term disability/Life Insurance (with HSA + FSA plans), SAM Cares program focused on holistic well-being
• Financial Benefits: Employee Referral Rewards Program of $1K, $2,500 or $5K, Fidelity retirement plans with a 5% company match, tuition reimbursement, optional cellphone stipend
• Work-Life Balance: Paid time off including vacation/sick/holidays, parental leave to support families
• Professional Development: Customized career development plan for licensing and certifications, Project Manager Business Academy, CAD Training Program, Individual Development Plans/Career Check-Ins, SAM WINS - our initiative for women-focused leadership and development, Milestone Anniversary Recognition, SAMbassador mentorship program
• Perks and Discounts: Access to “Perks at Work” for discounts on wellness + travel + leisure and everyday purchases, company-sponsored events, free office snacks
• Culture and Awards/Achievements: SAM Named 2023 Top Workplace USA for Second Consecutive Year; 2023 SAM Ranks No. 88 on ENR Top 500 Design Firms
4+ years of experience in IT security, risk management, or compliance related roles.
Familiarity with industry-standard compliance frameworks (e.g., SOC 2, NIST RMF, CMMC)
Familiarity with data privacy regulations (GDPR, HIPPA, etc)
Excellent verbal and written communication skills
Strong analytical and problem-solving skills with attention to detail.
LOCAL TO AUSTIN, TX area
Certifications and/or Licensing Requirements
Desire to pursue industry related certifications: Security+, CISA, CGRC, etc.
We are seeking a motivated and detail-oriented IT GRC (Governance, Risk, Compliance) Analyst to join our growing Information Security team. This role is ideal for professionals with a strong foundation in cybersecurity compliance and risk management who are eager to take ownership of key security and compliance initiatives.
As a foundational member of our expanding security program, you will play a critical role in developing policies, managing risk, and ensuring compliance with industry-recognized frameworks such as SOC 2, NIST Risk Management Framework (RMF), and the Cybersecurity Maturity Model Certification (CMMC). You may also contribute to high-impact projects, including Mergers & Acquisitions (M&A) due diligence.
This is an exciting opportunity for someone who thrives in a fast-paced, collaborative environment and wants to help shape the future of security and compliance within a rapidly scaling organization. The ideal candidate will be able to perform each of these essential duty satisfactorily:
Conduct risk assessments, identify security gaps, and recommend remediation strategies to enhance the organization’s security posture.
Support internal and external security audits, including SOC 2 readiness and CMMC certification efforts.
Participate in security assessments of potential clients or vendors, ensuring alignment with organizational security standards.
Contribute to the development and implementation of cybersecurity awareness and training programs.
Collaborate with IT, Legal, and Executive Leadership to provide insights on compliance status, security risks, and regulatory changes.