GRC Analyst

Morrisville, North Carolina, United States

Varonis

The world's only fully automated DSPM. Continuously discover and classify critical data, remove exposures, and stop threats in real-time with AI-powered automation.

View all jobs at Varonis

Apply now Apply later


GRC Analyst

 We are searching for a junior GRC analyst to join our IT Security team. This position is responsible for handling the intake, prioritization, and completion of security proposals, contracts, and questionnaires to support our global sales organization in addition to participating in GRC operational tasks.  Responsibilities:
  • Coordinate, answer, and manage customer’s RFIs, security questionnaires, and contract requirements.
  • Work with various business units to collect answers to inquiries and validate compliance of answers before sending them back to clients.
  • Maintain GRC knowledge base of processes and frequently asked security questions
  • Manage vendor due diligence process and help the overall third-party risk management efforts.
  • Support other GRC tasks such as security awareness, security control tests, policy reviews and more.
Requirements:
  • Strong knowledge of information security principles and practices
  • Knowledge with regulatory compliance standards and frameworks such as ISO27001, NIST 800-53, SOC 2, PCI-DSS, and GDPR
  • Ability to organize, prioritize, and coordinate multiple work activities while meeting target deadlines.
  • Ability to excel in research and analytical tasks as well as working in a team environment
  • Excellent verbal and written communication skills.
Advantages:
  • Experience analyzing regulatory and contract compliance (including RFI/RFP) – a significant advantage.
  • Experience working in software, cybersecurity, or hi-tech industry
  • Experience with IT governance, risk, and compliance management in a large global environment
  • Experience with content management and automation capabilities of RFP software
  • Relevant qualifications, such as CRISC, CISSP, CISM, CISA.
  • Strong project management and coordination skills


We invite you to check out our Instagram Page to gain further insight into the Varonis culture!
@VaronisLife

Varonis is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, and other legally protected characteristics.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0

Tags: Automation CISA CISM CISSP Compliance CRISC GDPR Governance ISO 27001 NIST NIST 800-53 RFPs Risk management SOC SOC 2

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.