Sr. GRC Analyst

📋 Description

• Automated compliance monitoring against PCI-DSS, NIST CSF v2, SOC 1/2.
• Leverage AI tools and LLMs to accelerate risk assessments and doc generation.
• Code-assisted evidence collection for external audits (SOC 1, PCI Level 1).
• Oversee IAM and quarterly access reviews; explore automated provisioning audits.
• Collaborate with engineering, DevOps, and product to bake compliance into CI/CD.

🎯 Requirements

• B.S. in Computer Science, Information Systems, Cyber Security, or related field.
• 5–7 years in GRC or security engineering (SaaS/FinTech/cloud-native).
• Solid cloud security knowledge (AWS/Azure/GCP).
• Hands-on scripting with Python, Bash, PowerShell to automate GRC tasks.
• AI-savvy with experience using productivity tools, prompts, or LLMs.
• Framework fluency: PCI-DSS, NIST (800-53/CSF), SOC 1/2 Type II.

🎁 Benefits

• Hybrid/remote options with digital-first collaboration.
• Competitive salary and 401(k) with 5% company match.
• Flexible time off, paid parental leave, wellness allowance, health coverage.
• Udemy access, childcare assistance, pet insurance, Beneplace perks.