about 3 hours ago
Responsibilities
- Execute on milestones for end-to-end GRC initiatives in accordance with the Security roadmap.
- Lead internal and external audit engagements.
- Oversee and execute complex control tests and security risk assessments.
- Develop issue and risk treatment plans with owners and test remediation for closure.
- Design high-quality test plans and improve security control test activities.
- Provide GRC technology administration, including user training.
- Mature security governance, training, and awareness programs.
- Improve GRC handbook pages, procedures, and playbooks.
- Design GRC control automation and implement related tasks.
- Execute on quarterly individual Key Results that support team Objectives (OKRs).
Requirements
- 5+ years of experience in a GRC or similar team.
- 1+ years of experience developing automation.
- Experience with security tools and cloud environments (e.g., GRC, Vulnerability Scanners, SIEM, SOAR, AWS).
- Familiarity with industry frameworks, regulations, and standards such as ISO 27001, SOC 2, GDPR, PCI, SOX, NIST.
Benefits
- Health coverage, paid parental leave, and generous paid time-off.
- Quarterly self-care days off and stock options.
- Access to LinkedIn Learning and wellness education sessions.
- Support for employee well-being and personal growth initiatives.