CrawlJobs Logo
Personify Health Logo Personify Health · IT - Administration

GRC Analyst I

Bosnia and Herzegovina, Tuzla · Job Posted January 25, 2026
Apply Position
Job Link Share

Job Description

We are seeking a motivated and detail-oriented GRC Analyst I to join our Governance, Risk, and Compliance team. This entry-level role offers an exciting opportunity to gain hands-on experience in compliance, risk management, and governance initiatives while contributing to the organization's mission of maintaining robust security and compliance frameworks.

Job Responsibility

  • Assist in the development, implementation, and maintenance of policies, procedures, and standards to support governance objectives
  • Ensure policies are stored, distributed, and tracked appropriately for organizational awareness and compliance
  • Support policy exception tracking and documentation
  • Conduct initial assessments for identified risks, documenting findings, and escalating them to senior team members for further analysis
  • Support risk monitoring activities by collecting data, maintaining risk registers, and preparing reports
  • Assist in tracking mitigation plans and ensuring timely resolution of identified risks
  • Help facilitate compliance activities related to frameworks such as SOC 2, ISO 27001, HIPAA, GDPR, HITRUST CSF and other relevant standards
  • Collect evidence for audits and compliance assessments, ensuring accurate and timely submissions
  • Track findings from audits or assessments and follow up on remediation efforts
  • Assist in the preparation and delivery of employee training on compliance policies and procedures
  • Support awareness campaigns to promote a culture of security and compliance throughout the organization
  • Maintain and update documentation related to compliance, risk management, and governance activities
  • Assist in preparing reports on compliance status, risk metrics, and audit progress for internal stakeholders

Requirements

  • Bachelor’s degree in information security, Computer Science, Business Administration, or a related field
  • 0–2 years of experience in GRC, compliance, risk management, or related fields (internships or academic projects may be considered)
  • Basic understanding of regulatory standards and frameworks (e.g., SOC 2, ISO 27001, GDPR, HIPAA) is a plus
  • Strong organizational and time-management skills, with the ability to handle multiple priorities effectively
  • Excellent attention to detail and accuracy in all tasks
  • Strong written and verbal communication skills
  • Basic proficiency with productivity tools such as Microsoft Office Suite (Excel, Word, PowerPoint)
  • Familiarity with GRC tools or platforms is a plus but not required
  • A willingness to learn and grow in the field of GRC
Personify Health - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

GRC Analyst I

8 matching positions

Grc Analyst

We are seeking a detail-oriented GRC (Governance, Risk, and Compliance) Analyst ...
Location
Location
United States , Austin
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 years of experience in GRC, IT audit, risk management, or information security
  • Experience working within one or more frameworks (SOC 2, ISO 27001, NIST CSF, SOX, etc.)
  • Familiarity with control design, testing methodologies, and audit processes
  • Experience collaborating with cross-functional teams (IT, Security, Legal, Finance)
  • Strong documentation, communication, and organizational skills
Job Responsibility
Job Responsibility
  • Support governance, risk, and compliance programs across IT and business functions
  • Conduct risk assessments, control testing, and gap analysis for systems and processes
  • Assist with audit readiness efforts (internal/external), including evidence collection and documentation
  • Maintain and update policies, procedures, and control frameworks
  • Monitor compliance against frameworks such as SOC 2, ISO 27001, NIST, HIPAA, PCI-DSS, or SOX (as applicable)
  • Track remediation efforts and partner with stakeholders to address audit findings and control gaps
  • Support third-party/vendor risk assessments and ongoing monitoring
  • Leverage GRC tools to manage risk registers, controls, and reporting
  • Provide reporting and dashboards on risk posture and compliance status to leadership
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Senior Cyber Security GRC Analyst

We are currently seeking a Senior Cyber Security GRC Analyst to join FinXL and t...
Location
Location
Australia , North Sydney
Salary
Salary:
Not provided
finxl.com.au Logo
FinXL
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience as a Senior Cyber Security GRC Analyst
  • Strong experience in Cyber Security GRC, Risk, or Compliance roles
  • Experience working with control frameworks such as NIST SP 800-53
  • Experience writing policies, standards, and control documentation from scratch
  • Experience conducting control assurance, testing or audit support activities
  • Experience in stakeholder engagement, running workshops & influencing outcomes
  • Experience implementing security controls
  • Experience in control uplift or transformation programs
  • Experience translating NIST security controls into clear, business-friendly requirements
  • Experience defining control objectives, parameters & implementation guidance aligned to organisational context
Job Responsibility
Job Responsibility
  • Support the definition, documentation & assurance of security controls aligned to NIST SP 800-53
Read More
Arrow Right

Senior Staff Analyst, GRC

Mozilla Corporation is the non-profit-backed technology company that has shaped ...
Location
Location
Germany;Canada;Spain;United States;United Kingdom
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools, )
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives
  • Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues
  • Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Ensure compliance with various regulatory standards and frameworks (ISO, NIST, SOC2, CCPA, GDPR, etc)
  • Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Information Security GRC Analyst

Our Financial Services client has an exciting vacancy within their Information S...
Location
Location
United Kingdom , Liverpool
Salary
Salary:
40000.00 - 50000.00 GBP / Year
brosterbuchanan.com Logo
Broster Buchanan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2 – 3 years’ experience in information security roles
  • Experience with risk assessment methodologies
  • Excellent analytical and problem-solving skills with attention to detail
  • Strong communication skills with the ability to explain complex security concepts to non – technical stakeholders
  • Knowledge of information security frameworks such as ISO 27001 or NIST
  • Eligibility to work in the UK
Job Responsibility
Job Responsibility
  • Work with all parties across the business to identify and assess risk and ensure mitigations are tracked to completion
  • Support the development and maintenance of information security policies, standards and procedures in line with regulatory frameworks and industry standards
  • Support third party risk management processes
  • Work with Security Operations and IT teams to provide oversight of vulnerability assessments and remediation activities
  • Manage security architecture reviews for new systems and services
  • Evaluate security controls and recommending improvements
  • Support the implementation of security tools and technologies
  • Provide oversight of the security incident management process
  • Provide security metrics for interested parties at all levels
  • Support the security awareness programme to promote a culture of security within all levels of the Group
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Grc Analyst

We are looking for a proactive and analytical GRC Analyst to join our CISO team....
Location
Location
India , Pune
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Risk Management, or related field
  • 2+ years of experience in GRC, enterprise risk management, or information security roles
  • Experience supporting SOC 2 and/or ISO 27001 audits
  • Working knowledge of privacy regulations and information security frameworks (e.g., NIST, CIS, ISO 27001, GDPR)
  • Experience with GRC platforms or risk management tools (e.g., OneTrust, ServiceNow, Archer) is an advantage
  • Familiarity with cloud security concepts (AWS, Azure, GCP) and SaaS environments
  • One or more of the following Certificates (Highly desirable): CISSP, CRISC, CISA, CISM, CGRC
Job Responsibility
Job Responsibility
  • Maintain and continuously improve the Enterprise Risk Management framework
  • Facilitate enterprise-wide risk assessments across business units
  • Develop and maintain risk taxonomy, scoring methodology, and risk registers
  • Define and monitor Key Risk Indicators (KRIs) and risk metrics
  • Conduct control effectiveness reviews in partnership with control owners
  • Support risk assessments related to cloud, SaaS, AI, and emerging technologies
  • Ensure compliance with relevant laws, regulations, and standards (e.g., SOC 2, ISO 27001, NIST, GDPR)
  • Support internal and external audits, including evidence collection, documentation preparation, and stakeholder coordination
  • Collaborate with cross-functional teams, including Legal, Procurement, R&D, and IT, to address GRC-related matters
  • Assist in the continuous improvement of GRC programs and initiatives
What we offer
What we offer
  • great work environment
  • professional development
  • challenging careers
  • competitive compensation
  • great work-life balance
  • great benefits and perks throughout the year
  • Fulltime
Read More
Arrow Right

Staff GRC Analyst

We are looking for a Staff GRC Analyst to join our Governance, Risk, and Complia...
Location
Location
United States , San Francisco
Salary
Salary:
180000.00 - 270000.00 USD / Year
vercel.com Logo
Vercel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience managing and running audits, certification programs and enterprise control assessments, including scope planning, defining requirements, policy and standards development, and control testing
  • Deep knowledge of audit processes, evidence requirements, and remediation lifecycle management for security and compliance frameworks (i.e., SOC 2, ISO 27001, PCI DSS)
  • Proven experience owning large-scale GRC programs, collaborating with technical and non-technical teams and driving initiatives to completion
Job Responsibility
Job Responsibility
  • Own and scale commercial attestation program and audits (i.e., SOC 2, ISO 27001, PCI DSS, etc.) while maintaining alignment with business objectives and market demand
  • Design and strengthen continuous monitoring processes to improve control effectiveness and mature control implementation from audit-ready to always-ready
  • Drive evolution of security and compliance control frameworks that set the direction for proactive risk management
  • Partner with cross-functional stakeholders, acting as a strategic connector to plan, implement, maintain & remediate control activities and supporting requirements (e.g. policies, standards, processes, system configurations, etc.)
  • Champion a culture of compliance accountability and business-enablement across the organization through autonomous program governance and reporting and building trusted relationships
What we offer
What we offer
  • Competitive compensation package, including equity
  • Inclusive Healthcare Package
  • Learn and Grow - we provide mentorship and send you to events that help you build your network and skills
  • Flexible Time Off
  • We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed
  • Fulltime
Read More
Arrow Right