remote

GRC Analyst

GRC Analyst role involves managing Security & Compliance risk, conducting audits, and ensuring timely resolution to findings or issues. Collaborates with internal teams and external partners to drive risk management and compliance initiatives.

About the role

Role Overview

We are seeking a detail-oriented Governance Risk and Compliance (GRC) Analyst to join our Security and Compliance team. The GRC Analyst will work in a collaborative fashion with our internal teams and external partners to manage Security & Compliance risk.

What You Will Do

Conducts audits of internal information security, compliance and privacy processes. Ensures timely resolution to all audit and risk assessment findings or issues. Manages OneTrust GRC reporting portal.

Why It Might Be a Fit

We're looking for team players who want to challenge themselves within a growing company, and are as comfortable talking with senior management about information risk, as they are with IT staff.

Requirements

Direct experience with achieving successful annual PCI Compliance, SSAE18 SOC 2 attestations and/or ISO 27001 certifications
1-3 years of experience leading information security audits with a preference for IS0 27001 and SOC 2 audits or assessments
1-3 years of experience as an IT, security or compliance analyst, with experience developing security strategy and policy.
Experience authoring policies and procedures
Solid knowledge of ISO 27001, NIST 800-53, NIST 800-171, NIST CSF
Experience with full Governance, Risk Management and Compliance Lifecycle
Personal integrity
Self-motivated, self-disciplined, and self-governed. You hold yourself to a higher standard than others.
Highly consultative and collaborative nature.
Excellent communications and presentation skills, with the ability to convey complex technology concepts to non-technology stakeholders.
The discipline to work effectively from remote location.
Degree in computer science, information systems, information security, or a related discipline. Equivalent work experience will also be considered
Experience with Payment Card Industry (PCI) Compliance
Excellent analytical and stakeholder engagement skills
Strong organization and planning skills
Successfully pass background check
Must be able to lawfully work within the US and have unrestricted work authorization for US
Ability to travel up to 15% if required

Benefits

Medical, Dental, and Vision benefits
Employee rewards and recognitions program
Total Rewards Package
Wellness
Sustainability
DE&I initiatives
Mental Health Support

Originally posted on Himalayas

About the role

Role Overview

What You Will Do

Why It Might Be a Fit

We're looking for team players who want to challenge themselves within a growing company, and are as comfortable talking with senior management about information risk, as they are with IT staff.

Requirements

Direct experience with achieving successful annual PCI Compliance, SSAE18 SOC 2 attestations and/or ISO 27001 certifications
1-3 years of experience leading information security audits with a preference for IS0 27001 and SOC 2 audits or assessments
1-3 years of experience as an IT, security or compliance analyst, with experience developing security strategy and policy.
Experience authoring policies and procedures
Solid knowledge of ISO 27001, NIST 800-53, NIST 800-171, NIST CSF
Experience with full Governance, Risk Management and Compliance Lifecycle
Personal integrity
Self-motivated, self-disciplined, and self-governed. You hold yourself to a higher standard than others.
Highly consultative and collaborative nature.
Excellent communications and presentation skills, with the ability to convey complex technology concepts to non-technology stakeholders.
The discipline to work effectively from remote location.
Degree in computer science, information systems, information security, or a related discipline. Equivalent work experience will also be considered
Experience with Payment Card Industry (PCI) Compliance
Excellent analytical and stakeholder engagement skills
Strong organization and planning skills
Successfully pass background check
Must be able to lawfully work within the US and have unrestricted work authorization for US
Ability to travel up to 15% if required

Benefits

Medical, Dental, and Vision benefits
Employee rewards and recognitions program
Total Rewards Package
Wellness
Sustainability
DE&I initiatives
Mental Health Support

Originally posted on Himalayas

GRC Analyst

About the role

GRC Analyst

About the role

Skills