Sr. GRC Analyst

How you’ll make an impact

• Automated Compliance Monitoring: Review, audit, and monitor security compliance programs against frameworks like PCI-DSS, NIST CSFv2, and SOC 1/2, leveraging automation tools to continuously assess control health
• Process Optimization & AI Integration: Identify opportunities to leverage AI tools and LLMs to accelerate risk assessments, summarize complex regulatory requirements, and streamline process improvements
• Code-Assisted Evidence Collection: Lead and automate evidence collection for external audits (SOC 1, PCI Level 1), reducing manual overhead for engineering and product teams
• Identity & Access Management (IAM): Oversee user access management and quarterly user access reviews, exploring ways to automate provisioning audits and detect anomalies
• Cross-Functional Collaboration: Build and cultivate positive working relationships with engineering, DevOps, and product stakeholders to bake compliance directly into the CI/CD pipeline and cloud infrastructure

Skills that will help you thrive

• Education: B.S. degree in Computer Science, Information Systems, Cyber Security, or a related technical field
• Experience: 5–7 years of GRC or Security Engineering experience, ideally within a SaaS, FinTech, or Cloud-native company
• Solid understanding of Cloud Security compliance (AWS/Azure/GCP)
• Technical & Scripting Skills: Hands-on working experience with command line and scripting languages (Python, Bash, Powershell, etc) to parse logs, query APIs, and automate repetitive GRC tasks
• AI Savvy: Familiarity with utilizing AI productivity tools, prompt engineering, or LLMs to optimize documentation, drafting, or data analysis
• Framework Fluency: Experience with security standards/frameworks such as PCI-DSS, NIST (800-53/CSF), and SOC 1/2 Type II
• Soft Skills: Strong ability to clearly articulate technical risk to non-technical stakeholders and strategically collaborate cross-functionally
• Certifications: CISSP, CISA, CISM, CCSP, or similar security certifications are a plus

Resources to help you prosper

A connected experience: We prioritize high-touch collaboration and flexibility. Whether you are working from our San Francisco or Phoenix offices or joining us as a fully remote team member, we provide the digital-first tools and intentional culture to keep you synced and supported
Invested in your future: A competitive salary and a 401(k) with a 5% company match to help you build long-term financial security
Holistic well-being: We provide the resources you need to thrive, from flexible time off and paid parental leave to an annual wellness allowance and comprehensive health coverage
Professional & personal growth: Take advantage of a suite of premium perks, including Udemy access, childcare assistance, pet insurance, and a bevy of additional savings through Beneplace

Interview process

Recruiter Call: A brief screening to discuss your experience and initial questions
Department Interview: Deeper dive into technical skills and project alignment with the Hiring Manager or team member
Team/Virtual Interview: Meet team members for collaborative discussions, problem-solving, or technical exercises