Senior GRC Analyst
New
D
DockerDeveloper Tooling
Canada; Secondary Locations: France, Germany, Italy, Portugal, Spain, United States, EnglandFull-TimeSenior
Salary72,000 - 110,000 EUR per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 4 to 6 years
- Required Skills
- ComplianceRisk Management
Requirements
- 4 to 6 years of experience in Information Security, Governance, Risk, and Compliance
- Demonstrated experience building or operating an enterprise risk management program
- Experience with third-party risk management
- Working knowledge of security frameworks and standards including ISO 27001, SOC 2, NIST 800-53, and GDPR
- Familiarity with AI governance concepts and emerging frameworks (ISO 42001, NIST AI RMF)
- Experience designing metrics and reporting for GRC programs
- Familiarity with cloud environments (AWS, GCP, Azure)
- Strong written and verbal communication skills
- Track record of building and maturing GRC programs from the ground up
Responsibilities
- Own and drive the compliance program roadmap, aligning framework requirements (SOC 2, ISO 27001, ISO 27701, ISO 42001) with business objectives and product strategy
- Lead cross-functional compliance initiatives with Engineering, Product, Legal, and IT
- Design and maintain Docker’s unified control framework
- Plan and execute internal audits end-to-end
- Perform and lead risk assessments across systems, processes, third-party tools, and cloud configurations
- Own the vendor risk management program
- Draft, review, and maintain corporate security policies
- Establish and report on compliance metrics and KPIs
- Stay current with evolving regulatory and industry standards
View Full Description & ApplyYou'll be redirected to the employer's site
