Senior Governance, Risk, Compliance (GRC) Analyst

New

United StatesFull-TimeSenior

Salary161,600 - 202,000 USD per year

Apply NowOpens the employer's application page

Job Details

5+ years of experience in Governance, Risk, Compliance, or security risk management roles.
Familiarity with at least two major compliance frameworks such as HITRUST, SOC 2, PCI-DSS, or HIPAA.
Experience using modern GRC platforms such as Vanta, Drata, OneTrust, or similar tools.
Strong ability to communicate complex compliance and risk concepts to both technical and non-technical audiences.
Proven experience building scalable, repeatable compliance and risk processes in fast-paced environments.
Strong collaboration skills with cross-functional teams including Engineering, Legal, Privacy, and IT.
Interest in leveraging AI and automation to improve GRC operations and efficiency.

Support audit readiness and ongoing compliance for frameworks such as HITRUST, SOC 2, PCI-DSS, and HIPAA, including evidence collection, control tracking, and remediation coordination.
Build and manage the third-party risk management program, including vendor assessments, security questionnaires, SOC/ISO reviews, and risk scoring processes.
Design and operate a scalable security awareness program, including training modules, phishing simulations, and compliance tracking.
Maintain and enhance the centralized risk register, ensuring risks are properly identified, assessed, tracked, and communicated to stakeholders.
Partner with Engineering, Privacy, Legal, and IT teams to integrate compliance requirements into product and operational workflows.
Support continuous improvement of GRC processes using automation and AI-enabled tooling.
Provide reporting and insights on risk posture, compliance status, and control effectiveness to security leadership.

View Full Description & ApplyYou'll be redirected to the employer's site