GRC Analyst

Tasks

• Coordinate enterprise risk and compliance programs
• Coordinate external audits
• Handle policy exceptions
• Maintain continuous evidence collection
• Maintain policy lifecycle
• Manage compliance documentation
• Manage vendor risk assessments
• Monitor continuous controls
• Operationalize controls with engineering
• Own audit readiness activities
• Respond to security questionnaires
• Support remediation follow ups
• Support security awareness initiatives
• Support vulnerability management processes
• Track policy violations

Perks/Benefits

• Annual company retreats
• Co-working spaces access
• Flexible time off
• Fully remote
• High quality equipment provided
• Home office setup support
• Learning and development budget
• Private medical insurance

Skills/Tech-stack

AI Act | Access reviews | Audit Readiness | Continuous Control Monitoring | Continuous control | Control monitoring | DORA | Drata | Due Diligence | EU AI | EU AI Act | Evidence management | GDPR | GRC platforms | Governance Risk | Governance Risk and Compliance | IAM | ISO 27001 | NIS2 | OneTrust | PCI DSS | Policy governance | Risk Assessment | Risk Management | Risk and Compliance | SOC 2 | Security Questionnaires | Third Party | Third-party due diligence | Vanta | Vendor Risk | Vendor Risk Assessment