Senior GRC Analyst

Payscale is seeking a highly skilled and experienced Senior GRC Analyst to join our GRC team. In this role, you will be responsible for driving governance, compliance, and risk processes across the organization. You will work closely with all business units to ensure that security controls are effectively designed and implemented to protect the organization's assets, meet regulatory requirements, and manage risk.Key Responsibilities

• Lead security assessments and contribute to continuous improvement of the security program.
• Support internal and external audits and ensure remediation of findings related to cybersecurity.
• Advise on security requirements during design of systems and businesses processes.
• Collaborate with internal teams to conduct cybersecurity risk assessments.
• Support maintenance of risk register and POA&M tracking.
• Collaborate with stakeholders to evaluate and address identified risks.
• Update identification & classification schemes for data, system, and business workflows.
• Monitor compliance policies and standards (e.g., phishing tests, training completion)
• Support security-related customer queries and communications (supporting Sales and GTM).
• Conduct reviews and provide guidance on security clauses in contracts.
• Monitor regulatory and compliance requirements (e.g., GDPR, PCI-DSS) to ensure alignment.
• Support KPI and metrics gathering and reporting on an ongoing basis.

Requirements & Skills

• 5+ years of experience in cybersecurity, with at least 3 years focused on GRC in a SaaS company.
• Industry certifications such as CISSP, CRISC, CISM, or CISA strongly preferred.
• Experience in risk management frameworks such as NIST RMF or ISO27005.
• Experience implementing cybersecurity frameworks (e.g., NIST CSF, ISO27001).
• Experience in compliance tracking and monitoring of regulatory frameworks such as GDPR.
• Experience auditing and assessing cybersecurity controls such as NIST 800-53, ISO, or CIS18.
• Experience with GRC tools (e.g., Archer, Drata, ServiceNow GRC).
• Experience with data and system classification schemes.
• Excellent communication, analytical, and problem-solving skills.
• Ability to influence cross-functional teams and drive security initiatives.
• Experience in a regulated industry (finance, healthcare, government, etc.) a plus.
• Knowledge of cloud hosting audits and risk assessments.
• Experience with business continuity and disaster recovery planning.

About Payscale Payscale stands at the forefront of compensation data technology, pioneering an innovative approach that harnesses advanced AI and up-to-date and reliable market data to align employee and employer expectations. With its suite of solutions—Payfactors, Marketpay, and Paycycle—Payscale empowers 65% of Fortune 500 companies to make strategic compensation decisions. Organizations like Panasonic, ZoomInfo, Chipotle, AccentCare, University of Washington, American Airlines, and Rite Aid rely on its unique combination of actionable data and insights, experienced compensation services, and scalable software to drive business success. By partnering with Payscale, businesses can make confident compensation decisions that fuel growth for both their organization and their people.Create confidence in your compensation. Payscale.To learn more, visit www.payscale.com.Location Payscale Romania has an employee centric hybrid model that provides you the flexibility to do your best work in a space that supports you, while also finding time to collaborate in person in our office for the moments that matter.In our hybrid model, employees can work from the location that works best for them when not in the office.When you work from home, we recommend ensuring that you can meet the following technology, equipment and workspace requirements:

• High-Speed Internet - A stable broadband or fiber connection (satellite is highly discouraged) with a minimum speed of 100 Mbps in a dedicated workspace that has a reliable Wi-Fi signal.
• Device for Multifactor Authentication (MFA/2FA) - smartphone, tablet, etc.

When it matters (usually no more than a few times a year) we take the time to gather in larger groups for in-person events.Payscale has employees across the US, Canada, UK, The Philippines and Romania however we are currently unable to hire in the Quebec Province, Northern Ireland, and Hawaii.Benefits and PerksAll around awesome culture where together we strive to live our 5 values:

• Data informed decision making.
• Customer first. Always.
• Succeed together.
• Relentless about results. Obsessed with excellence.
• Lead the change. Shape the standard.

An open and inclusive environment where you’ll learn and grow through programs and resources like:

• Monthly company All Hands meetings
• Regular opportunities for executive leadership exposure through things like AMAs
• Access to continued learning & development opportunities
• Our commitment to a continuous feedback culture which allows us to drive performance and career growth
• A growing network of Employee Resource Groups
• Company sponsored volunteer hours
• And more!

Our more standard benefits:

• 15 paid Romania public holidays + 2 additional Payscale holidays (Global Mental Health Day & US Independence Day)
• 25 paid days of additional leave
• Supplemental medical covered by Payscale for employees
• Employees can add supplemental for family/spouse/dependents at their own expense
• Additional days of per RO Labor Code that are not included in holidays & additional leave days

Equal Opportunity Employer We embrace equal employment opportunity. Payscale is committed to a policy of equal employment opportunity for all applicants and employees. It is our policy that employees will not be subjected to unlawful discrimination on the basis of race, color, religion, sex, age, national origin, or ancestry, physical or mental disability, veteran or military status, marital status, sexual orientation, political ideology, and any other basis protected by federal, state, or local laws. This policy applies to all terms and conditions of employment, including but not limited to: recruitment, hiring, transfers, promotions, training, discipline, termination, compensation and benefits, performance appraisals, education, and social and recreational programs.We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates, so please don’t hesitate to apply — we’d love to hear from you.If you have a disability or impairment and need assistance with the application process, please email recruiting@payscale.com for support.Fraud AlertPayscale values security and privacy. During your job application and interview process, we will never ask for your personal banking or financial information, social security number, or other sensitive information, if you are unsure if a message is from Payscale, please email recruiting@payscale.com