CrawlJobs Logo
SNI sp. z o.o. Logo SNI sp. z o.o. · IT - Software Development

GRC Business Analyst

· Job Posted February 08, 2026
Apply Position
Job Link Share

Job Responsibility

  • Gathering, analyzing, and documenting business requirements related to audit, compliance, and financial control processes
  • Translating business and regulatory needs into clear, structured functional and non-functional requirements for GRC applications
  • Collaborating closely with developers, architects, and QA teams throughout the full software development lifecycle
  • Supporting the design and development of GRC solutions covering risk management, internal controls, and compliance (e.g. ICOFR / ICSR)
  • Facilitating workshops and meetings with business stakeholders to clarify requirements, processes, and expected outcomes
  • Defining and discussing system integrations with upstream and downstream financial systems
  • Acting as a bridge between business, compliance, audit, and IT teams to ensure alignment and mutual understanding
  • Supporting user acceptance testing (UAT) by preparing test scenarios, validating solutions, and ensuring requirements are met
  • Identifying process gaps, control weaknesses, or inefficiencies and supporting the design of improved control frameworks
  • Documenting business processes, control descriptions, risk and control mappings, and system workflows in a clear and structured manner

Requirements

  • Minimum 3 years of experience as a Business Analyst, Consultant, or similar role within audit, compliance, risk management, finance, or governance environments
  • Solid understanding of audit concepts, internal controls, financial risks, and control environments
  • Strong analytical skills with the ability to break down complex problems into structured requirements and solutions
  • Excellent communication skills, with the ability to work effectively with both technical and non-technical stakeholders
  • High level of ownership, attention to detail, and accountability
SNI sp. z o.o. - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

GRC Business Analyst

8 matching positions

Grc Analyst

We are seeking a detail-oriented GRC (Governance, Risk, and Compliance) Analyst ...
Location
Location
United States , Austin
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 years of experience in GRC, IT audit, risk management, or information security
  • Experience working within one or more frameworks (SOC 2, ISO 27001, NIST CSF, SOX, etc.)
  • Familiarity with control design, testing methodologies, and audit processes
  • Experience collaborating with cross-functional teams (IT, Security, Legal, Finance)
  • Strong documentation, communication, and organizational skills
Job Responsibility
Job Responsibility
  • Support governance, risk, and compliance programs across IT and business functions
  • Conduct risk assessments, control testing, and gap analysis for systems and processes
  • Assist with audit readiness efforts (internal/external), including evidence collection and documentation
  • Maintain and update policies, procedures, and control frameworks
  • Monitor compliance against frameworks such as SOC 2, ISO 27001, NIST, HIPAA, PCI-DSS, or SOX (as applicable)
  • Track remediation efforts and partner with stakeholders to address audit findings and control gaps
  • Support third-party/vendor risk assessments and ongoing monitoring
  • Leverage GRC tools to manage risk registers, controls, and reporting
  • Provide reporting and dashboards on risk posture and compliance status to leadership
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Lead Analyst, Business Continuity & Disaster Recovery (Governance, Risk and Compliance)

Own and drive Burlington’s enterprise Business Continuity and Disaster Recovery ...
Location
Location
United States , Edgewater Park
Salary
Salary:
95000.00 - 150000.00 USD / Year
Burlington
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, or related field
  • 7+ years of experience in Business Continuity and Disaster Recovery (BCDR)
  • Experience supporting or governing an enterprise-scale BCDR program
  • Strong experience with BIA, RTO/RPO definition, and application tiering
  • Experience leading disaster recovery testing (tabletop and failover)
  • Experience working across business, infrastructure, and application teams
  • Experience in hybrid (on-prem and cloud) environments
  • Experience with BCDR/GRC tools (e.g., SharePoint, Power Automate, ServiceNow, Archer)
  • Experience developing executive-level reporting and communicating risk and resilience topics to leadership
Job Responsibility
Job Responsibility
  • Lead enterprise-wide BIA to identify and prioritize critical business processes
  • Define recovery priorities and RTO/RPO targets based on operational and financial impact
  • Maintain enterprise application inventory and ensure alignment with BCDR scope
  • Define and enforce application tiering, including required RTO, RPO, and testing expectations
  • Assess and tier new applications as part of onboarding and change processes
  • Define and enforce BCDR standards, templates, and requirements for Business Continuity Plans (BCPs) and Disaster Recovery Plans (DRPs)
  • Guide business and IT teams in developing and maintaining their plans
  • Review plans for completeness, accuracy, and executability
  • Provide input on disaster recovery design (e.g., failover approaches, redundancy, dependencies) to ensure alignment with recovery requirements
  • Validate through testing that recovery capabilities meet defined RTO/RPO targets
What we offer
What we offer
  • Competitive wages
  • Flexible hours
  • Associate discount
  • Medical, dental and vision coverage including life and disability insurance
  • Paid time off
  • Paid holidays
  • 401(k) plan
  • Training and development opportunities
  • Fulltime
Read More
Arrow Right

Senior Cyber Security GRC Analyst

We are currently seeking a Senior Cyber Security GRC Analyst to join FinXL and t...
Location
Location
Australia , North Sydney
Salary
Salary:
Not provided
finxl.com.au Logo
FinXL
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience as a Senior Cyber Security GRC Analyst
  • Strong experience in Cyber Security GRC, Risk, or Compliance roles
  • Experience working with control frameworks such as NIST SP 800-53
  • Experience writing policies, standards, and control documentation from scratch
  • Experience conducting control assurance, testing or audit support activities
  • Experience in stakeholder engagement, running workshops & influencing outcomes
  • Experience implementing security controls
  • Experience in control uplift or transformation programs
  • Experience translating NIST security controls into clear, business-friendly requirements
  • Experience defining control objectives, parameters & implementation guidance aligned to organisational context
Job Responsibility
Job Responsibility
  • Support the definition, documentation & assurance of security controls aligned to NIST SP 800-53
Read More
Arrow Right

Senior Staff Analyst, GRC

Mozilla Corporation is the non-profit-backed technology company that has shaped ...
Location
Location
Germany;Canada;Spain;United States;United Kingdom
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools, )
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives
  • Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues
  • Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Ensure compliance with various regulatory standards and frameworks (ISO, NIST, SOC2, CCPA, GDPR, etc)
  • Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Information Security GRC Analyst

Our Financial Services client has an exciting vacancy within their Information S...
Location
Location
United Kingdom , Liverpool
Salary
Salary:
40000.00 - 50000.00 GBP / Year
brosterbuchanan.com Logo
Broster Buchanan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2 – 3 years’ experience in information security roles
  • Experience with risk assessment methodologies
  • Excellent analytical and problem-solving skills with attention to detail
  • Strong communication skills with the ability to explain complex security concepts to non – technical stakeholders
  • Knowledge of information security frameworks such as ISO 27001 or NIST
  • Eligibility to work in the UK
Job Responsibility
Job Responsibility
  • Work with all parties across the business to identify and assess risk and ensure mitigations are tracked to completion
  • Support the development and maintenance of information security policies, standards and procedures in line with regulatory frameworks and industry standards
  • Support third party risk management processes
  • Work with Security Operations and IT teams to provide oversight of vulnerability assessments and remediation activities
  • Manage security architecture reviews for new systems and services
  • Evaluate security controls and recommending improvements
  • Support the implementation of security tools and technologies
  • Provide oversight of the security incident management process
  • Provide security metrics for interested parties at all levels
  • Support the security awareness programme to promote a culture of security within all levels of the Group
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Grc Analyst

We are looking for a proactive and analytical GRC Analyst to join our CISO team....
Location
Location
India , Pune
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Risk Management, or related field
  • 2+ years of experience in GRC, enterprise risk management, or information security roles
  • Experience supporting SOC 2 and/or ISO 27001 audits
  • Working knowledge of privacy regulations and information security frameworks (e.g., NIST, CIS, ISO 27001, GDPR)
  • Experience with GRC platforms or risk management tools (e.g., OneTrust, ServiceNow, Archer) is an advantage
  • Familiarity with cloud security concepts (AWS, Azure, GCP) and SaaS environments
  • One or more of the following Certificates (Highly desirable): CISSP, CRISC, CISA, CISM, CGRC
Job Responsibility
Job Responsibility
  • Maintain and continuously improve the Enterprise Risk Management framework
  • Facilitate enterprise-wide risk assessments across business units
  • Develop and maintain risk taxonomy, scoring methodology, and risk registers
  • Define and monitor Key Risk Indicators (KRIs) and risk metrics
  • Conduct control effectiveness reviews in partnership with control owners
  • Support risk assessments related to cloud, SaaS, AI, and emerging technologies
  • Ensure compliance with relevant laws, regulations, and standards (e.g., SOC 2, ISO 27001, NIST, GDPR)
  • Support internal and external audits, including evidence collection, documentation preparation, and stakeholder coordination
  • Collaborate with cross-functional teams, including Legal, Procurement, R&D, and IT, to address GRC-related matters
  • Assist in the continuous improvement of GRC programs and initiatives
What we offer
What we offer
  • great work environment
  • professional development
  • challenging careers
  • competitive compensation
  • great work-life balance
  • great benefits and perks throughout the year
  • Fulltime
Read More
Arrow Right