Security Analyst GRC - Machinify

Key Responsibilities

• Conduct comprehensive risk assessments and develop mitigation plans across the organization.
• Lead the creation, implementation and maintenance of security policies, procedures and controls.
• Monitor and analyze security events using SIEM platforms, responding to incidents and coordinating remediation.
• Ensure compliance with regulatory frameworks (HIPAA, PCI‑DSS, ISO 27001) through audits and continuous monitoring.
• Collaborate with cross‑functional teams to embed security best practices into product development and operations.

Requirements

• 3+ years of experience in GRC or security operations within a regulated industry.
• Strong knowledge of ISO 27001, HIPAA, PCI‑DSS and related compliance frameworks.
• Hands‑on experience with SIEM tools (e.g., Splunk, QRadar) and incident response.
• Excellent analytical, communication and stakeholder management skills.
• Relevant certifications (CISSP, CISM, CRISC, or equivalent) preferred.