About the Role
This role is responsible for maintaining and advancing the organization's governance, risk, and compliance posture through proactive assessment, documentation, and improvement of controls, policies, and audit readiness.
Responsibilities
- Evaluate and monitor internal controls related to information security and compliance
- Lead and coordinate internal and external audit activities
- Develop and maintain compliance documentation for standards such as SOC 2 and ISO 27001
- Assess risks across systems, processes, and third-party vendors
- Support the implementation and enforcement of security policies
- Track and report on compliance metrics and risk indicators
- Collaborate with cross-functional teams to address audit findings and remediate gaps
- Maintain the organization’s compliance posture through continuous monitoring
- Manage evidence collection and preparation for certification audits
- Conduct risk assessments and contribute to risk treatment plans
- Ensure alignment with regulatory and industry requirements
- Support incident response efforts from a compliance perspective
- Assist in updating and distributing governance materials
- Drive improvements in GRC processes using automation and tooling
- Stay current on evolving regulations, threats, and compliance best practices
- Facilitate compliance training and awareness initiatives
- Work with legal and privacy teams on data protection obligations
- Document control environments and process workflows
- Provide input on compliance requirements for new projects and systems
- Support vendor risk management assessments
- Maintain the GRC tracking system with up-to-date status and deadlines
- Escalate critical risks and compliance issues to leadership
- Ensure consistency between control design and operational execution
- Contribute to internal policy development and review cycles
- Promote a culture of compliance and accountability across departments
Compensation
Competitive salary and benefits package
Work Arrangement
Hybrid work model with flexibility for remote and in-office collaboration
Team
Part of the Information Security team, working closely with risk, compliance, and technology stakeholders
Why This Role Matters
- This position plays a critical part in maintaining trust and regulatory compliance as the organization scales its technology and customer base.
- The analyst ensures that security and governance keep pace with innovation while meeting strict industry standards.
What We Value
- We prioritize clear communication, ownership, and a proactive approach to risk management.
- Candidates who combine technical knowledge with practical judgment will thrive in this role.
Available for qualified candidates requiring sponsorship
