GRC Analyst

📋 Description

• Vendor risk assessment during onboarding per SLA.
• Annual vendor monitoring and re-assessment.
• Maintain vendor inventory and reduce risks with vendors.
• Triage security requests for vendor app/system integrations.
• Mature the classification/management framework for key vendors.
• Develop, maintain, and analyze risk metrics for leadership.

🎯 Requirements

• Bachelor's degree in information systems, eng, or related field.
• 5+ years in security/GRC with vendor risk mgmt.
• Experience with vendor security questionnaires and third-party reviews.
• SOC 2 and ISO 27001 knowledge.
• Cross-functional collaboration with Procurement, IT, Security, Eng, Legal.
• Excellent communication and interpersonal skills.

🎁 Benefits

• Fully remote options with flexible work.
• Offices in San Francisco, New York, Mumbai, Bangalore.
• Work with global teams across multiple regions.
• Mission-driven, privacy and security focused culture.