Senior GRC Analyst
United StatesFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 4 to 6 years
- Required Skills
- Risk Management
Requirements
- 4 to 6 years of experience in Information Security, Governance, Risk, and Compliance (GRC) roles
- Proven experience building or managing enterprise risk management programs
- Strong understanding of compliance frameworks and standards such as ISO 27001, SOC 2, NIST 800-53, GDPR
- Experience with third-party/vendor risk management and security assessment processes
- Familiarity with AI governance frameworks such as ISO 42001 or NIST AI RMF
- Knowledge of cloud platforms such as AWS, Azure, or GCP
- Excellent written and verbal communication skills
- Strong organizational and analytical skills
- Experience with GRC tools such as ServiceNow GRC, OneTrust, Anecdotes, or similar platforms is a plus
- Relevant certifications such as CRISC, CISA, CISSP, or CCSK are preferred
Responsibilities
- Lead the development and continuous improvement of enterprise risk management programs
- Drive compliance initiatives aligned with frameworks such as SOC 2, ISO 27001, ISO 27701, ISO 42001, NIST 800-53, and GDPR
- Design and maintain unified control frameworks while identifying compliance gaps
- Conduct and coordinate internal audits, evidence gathering, and auditor collaboration
- Own third-party risk management processes and vendor assessments
- Establish AI governance policies, assessment methodologies, and operational controls
- Partner with Engineering, Product, Legal, IT, and Security teams
- Develop compliance metrics, dashboards, and executive reporting
- Support automation and monitoring strategies for compliance controls
View Full Description & ApplyYou'll be redirected to the employer's site
