Senior Staff Analyst, GRC

📋 Description

• Governance: develop and maintain a GRC strategy and roadmap.
• Risk Mgmt: implement periodic risk assessment and scorecards.
• Compliance: ensure ISO, NIST, SOC2, GDPR/CCPA compliance.
• Partner with Legal/IT/Finance to align GRC programs.
• Define data lifecycle controls and reporting across domains.

🎯 Requirements

• 10+ years building integrated GRC frameworks.
• Strong knowledge of regulatory frameworks and tools.
• Experience delivering cross-functional product/enterprise controls.
• Industry certifications: CISA, CISSP, CISM, CRISC.
• Hands-on with SIEM and BI Tools.
• Ability to develop RCA and remediation plans.

🎁 Benefits

• Generous performance-based bonus.
• Medical, dental, and vision coverage.
• Retirement contributions with immediate vesting.
• Wellness days and company-wide events.
• Birthday holiday and home office stipend.
• Annual professional development budget.