GRC Analyst
Morrisville, North Carolina, United States
Varonis
The world's only fully automated DSPM. Continuously discover and classify critical data, remove exposures, and stop threats in real-time with AI-powered automation.
GRC Analyst
- Coordinate, answer, and manage customer’s RFIs, security questionnaires, and contract requirements.
- Work with various business units to collect answers to inquiries and validate compliance of answers before sending them back to clients.
- Maintain GRC knowledge base of processes and frequently asked security questions
- Manage vendor due diligence process and help the overall third-party risk management efforts.
- Support other GRC tasks such as security awareness, security control tests, policy reviews and more.
- Strong knowledge of information security principles and practices
- Knowledge with regulatory compliance standards and frameworks such as ISO27001, NIST 800-53, SOC 2, PCI-DSS, and GDPR
- Ability to organize, prioritize, and coordinate multiple work activities while meeting target deadlines.
- Ability to excel in research and analytical tasks as well as working in a team environment
- Excellent verbal and written communication skills.
- Experience analyzing regulatory and contract compliance (including RFI/RFP) – a significant advantage.
- Experience working in software, cybersecurity, or hi-tech industry
- Experience with IT governance, risk, and compliance management in a large global environment
- Experience with content management and automation capabilities of RFP software
- Relevant qualifications, such as CRISC, CISSP, CISM, CISA.
- Strong project management and coordination skills
We invite you to check out our Instagram Page to gain further insight into the Varonis culture!
@VaronisLife
Varonis is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, and other legally protected characteristics.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation CISA CISM CISSP Compliance CRISC GDPR Governance ISO 27001 NIST NIST 800-53 RFPs Risk management SOC SOC 2
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.