Senior GRC Analyst

📋 Description

• Lead policy development, audits, and improvements for SOC 2, PCI DSS 4.0, ISO 27001.
• Execute and document internal control testing across IT, security, cloud, and operations.
• Identify root causes of control deficiencies; recommend remediation.
• Conduct interviews, walkthroughs, and assessments with stakeholders.
• Monitor cloud environments (GCP, AWS, ERP) to validate controls.
• Present audit findings and risk exposures to leadership.

🎯 Requirements

• Bachelor’s degree in Accounting, Finance, Information Systems, or related field.
• Minimum 5 years in GRC, IT audit, security compliance, or related field.
• Proficiency in SOC 2, PCI DSS 4.0, and ISO 27001.
• Experience using AI-powered tools or automation to improve audit workflows.
• Strong analytical and problem-solving skills; ability to recommend remediation.
• Strong written and verbal communication to present findings.

🎁 Benefits

• Flexible remote and hybrid options, generous vacation and recharge days.
• Comprehensive medical, dental, and vision coverage, including fertility benefits.
• HSA/FSA options and employer-paid disability benefits.
• 401(k) with employer matching.
• Wellness programs, onsite gym, mental health resources, and challenges.
• Entrata Cares volunteer and community giving programs.