CrawlJobs Logo

Senior Staff Analyst, GRC

mozilla.org Logo

Mozilla

Location Icon

Location:
Germany;Canada;Spain;United States;United Kingdom

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Mozilla Corporation is the non-profit-backed technology company that has shaped the internet for the better over the last 25 years. We make pioneering brands like Firefox, the privacy-minded web browser. Now, with more than 225 million people around the world using our products each month, we’re shaping the next 25 years of technology and helping to reclaim an internet built for people, not companies. Our work focuses on diverse areas including AI, social media, security and more. And we’re doing this while never losing our focus on our core mission – to make the internet better for people. The Mozilla Corporation is wholly owned by the non-profit 501(c) Mozilla Foundation. This means we aren’t beholden to any shareholders — only to our mission. Along with thousands of volunteer contributors and collaborators all over the world, Mozillians design, build and distribute open-source software that enables people to enjoy the internet on their terms. The role is part of the Security Function within the broader Mozilla Infrastructure team. The Security team supports Product, Enterprise and GRC functions across the organization aligned with the mission to build a safe & secure internet. This role is responsible for defining, developing and helping implement a Governance, Risk and Compliance framework for both Enterprise and Product verticals. The ideal candidate will be responsible to deliver an integrated framework that aligns security, privacy, regulatory, and risk management initiatives across the organization. The ideal candidate is a collaborative leader with deep domain expertise in information security, regulatory compliance, risk governance, and cross-functional stakeholder engagement.

Job Responsibility:

  • Develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives
  • Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues
  • Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Ensure compliance with various regulatory standards and frameworks (ISO, NIST, SOC2, CCPA, GDPR, etc)
  • Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team

Requirements:

  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools, )
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
What we offer:
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Other benefits (life/AD&D, disability, EAP, etc. - varies by country)

Additional Information:

Job Posted:
April 23, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Mozilla - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
Unlock more languages and countries
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Staff Analyst, GRC

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
United States
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Senior GRC Analyst, Security

The GRC Analyst is responsible for supporting the organization's information sec...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Cybersecurity, or a related field
  • 5+ years of experience in information security, risk management and compliance
  • Strong knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, NIST, CCPA, PCI-DSS, NYDFS, HIPAA)
  • Experience with security & privacy risk assessment and management methodologies
  • Extensive experience in Third Party/Vendor Risk Management (TPRM) with hands-on expertise in managing VRM tools (e.g.,OneTrust, ProcessUnity, Vanta)
  • Experience in supporting security audits (SOC2, Customer & Partners Audits) - At least 2 complete audit cycles of SOC2
  • Excellent communication skills, with the ability to convey complex security concepts to non-technical stakeholders
  • Relevant certifications such as ISO 27001 LA LI, CISA, CRISC are highly desirable
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain information security policies and procedures
  • Ensure alignment of security governance frameworks with business objectives and regulatory requirements
  • Assist in the creation and maintenance of the information security governance structure
  • Conduct information security risk assessments and evaluate the effectiveness of existing controls
  • Identify, assess, and document risks related to information security & privacy across the organization
  • Conduct regular risk assessments for existing and potential vendors
  • Monitor and report on the organization’s information security risk posture
  • Ensure compliance with relevant information security regulations, standards, and frameworks (e.g., ISO 27001, SOC2, ITGC, NIST, PCI-DSS, CCPA, NYDFS, HIPAA)
  • Conduct regular security compliance assessments and audits
  • Track and report on compliance gaps and work with relevant teams to address deficiencies
Read More
Arrow Right
New

Principal Specialist, Talent Partnership, Enterprise

Every year, we help hundreds of thousands of people find rewarding jobs in the e...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 10, 2026
Flip Icon
Requirements
Requirements
  • Content Management
  • Records Management
  • Document Management
  • Candidate Screening
  • Applicant Tracking Systems (ATS)
  • Talent Pipeline
  • Data Privacy
  • KPI Reporting
  • Data Entry
  • Relationship Management
Job Responsibility
Job Responsibility
  • Creates detailed candidate profiles for clients by utilizing validated talent pool, summarizing their skills, experience, and fit for the role
  • Matches candidate skills, experiences, and aspirations to client job specifications, ensuring the best fit for short-term and long-term staffing in the area of logistics, industrial and skilled trades, contact center, hospitality, and retail
  • Provides a positive candidate experience throughout the recruitment process of Enterprise, ensuring timely communication and feedback
  • Builds and maintains a pipeline of qualified candidates for current and future job openings through simultaneous promotion of all interest, conversation on candidate's basic needs, job security, income continuation, and career path customization
  • Monitors diversity metrics within recruitment processes of operational roles and take actions to improve representation where needed
  • Gathers feedback from candidates regarding their recruitment experience and implements improvements in collaboration with client based on this feedback
  • Tracks and reports on the time-to-fill metrics for each role to ensure client satisfaction and timely recruitment for operational roles
  • develop and maintain relationships with clients to ensure a good understanding of their current andfuture priorities
Read More
Arrow Right
New

Senior Associate, Talent Partnership, Enterprise

Every year, we help hundreds of thousands of people find rewarding jobs in the e...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 10, 2026
Flip Icon
Requirements
Requirements
  • Relevant experience in a customer service/corporate services or similar high-volume role(RPO/BPO/Recruitment/Sourcing)
  • 0-2 years experience in the recruiting and staffing or customer service industry is preferable
  • Ability to build rapport and maintain positive relationships with candidates, hiring managers, and colleagues contribute to a collaborative and productive recruitment environment
  • Google meet, zoom, skype, cisco webex, MS teams and other scheduling softwares
  • Multiple time-zones across the globe (Americas, Europe, Middle-East, Asia Pacific)
  • Adapting to changing priorities, unexpected challenges, and evolving recruitment needs requires flexibility and the ability to remain composed under pressure
  • Negotiating interview schedules, and other recruitment-related matters requires strong negotiation skills to achieve mutually beneficial outcomes
Job Responsibility
Job Responsibility
  • Manage and oversee the entire recruitment process, including scheduling interviews, coordinating with hiring managers, and facilitating candidate communication
  • Efficiently manage interview schedules for multiple candidates and hiring managers, ensuring that all parties are available and informed of interview times and locations
  • Arrange all logistical aspects of interviews, including booking meeting rooms, coordinating video conferencing facilities, and arranging travel accommodations if necessary
  • Coordinate with hiring managers and interviewers to confirm their availability for scheduled interviews and reschedule as needed to accommodate conflicts or emergencies
  • Coordinate panel interviews involving multiple interviewers, ensuring that all panel members are briefed on the interview format and have access to candidate information beforehand
  • Facilitate virtual interviews via video conferencing platforms, troubleshooting technical issues and ensuring a smooth interview experience for both candidates and interviewers
  • Maintain and update client’s applicant tracking systems and databases to ensure accurate and up-to-date records of candidates and their status in the recruitment pipeline
  • Gather feedback from interviewers following candidate interviews, collating comments and assessments to inform hiring decisions and provide constructive feedback to candidates
  • Maintain accurate records of interview schedules, outcomes, and feedback in the applicant tracking system or recruitment database for future reference and reporting purposes
  • Identify opportunities to streamline and improve the interview coordination process, implementing enhancements to increase efficiency and effectiveness over time
  • Fulltime
Read More
Arrow Right
New

Specialist, Talent Partnership, Enterprise

Every year, we help hundreds of thousands of people find rewarding jobs in the e...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 13, 2026
Flip Icon
Requirements
Requirements
  • Relevant experience in a customer service/corporate services or similar high-volume role (RPO/BPO/Recruitment/Sourcing)
  • 0-2 years experience in the recruiting and staffing or customer service industry is preferable
  • Ability to build rapport and maintain positive relationships with candidates, hiring managers, and colleagues
  • Google meet, zoom, skype, cisco webex, MS teams and other scheduling softwares
  • Multiple time-zones across the globe (Americas, Europe, Middle-East, Asia Pacific)
  • Adapting to changing priorities, unexpected challenges, and evolving recruitment needs
  • Negotiating interview schedules, and other recruitment-related matters requires strong negotiation skills
Job Responsibility
Job Responsibility
  • Manage and oversee the entire recruitment process, including scheduling interviews, coordinating with hiring managers, and facilitating candidate communication
  • Efficiently manage interview schedules for multiple candidates and hiring managers
  • Arrange all logistical aspects of interviews, including booking meeting rooms, coordinating video conferencing facilities, and arranging travel accommodations if necessary
  • Coordinate with hiring managers and interviewers to confirm their availability for scheduled interviews and reschedule as needed
  • Coordinate panel interviews involving multiple interviewers
  • Facilitate virtual interviews via video conferencing platforms, troubleshooting technical issues
  • Maintain and update client’s applicant tracking systems and databases
  • Gather feedback from interviewers following candidate interviews, collating comments and assessments to inform hiring decisions
  • Maintain accurate records of interview schedules, outcomes, and feedback
  • Identify opportunities to streamline and improve the interview coordination process
  • Fulltime
Read More
Arrow Right
New

Spirit Defense - Mid-Level - Quality Assurance Supplier

At Boeing, we innovate and collaborate to make the world a better place. We’re c...
Location
Location
United States , Wichita
Salary
Salary:
77250.00 - 118450.00 USD / Year
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to obtain a U.S. Secret Security Clearance and Special Program Access (for which the U.S. Government requires U.S. Citizenship)
  • 5 - 8 years of experience in manufacturing and operations
  • 5 - 8 years of experience with Quality/Manufacturing Engineering
  • Competent in Root Cause Corrective Action and ability to perform conformity checks
  • Strong ability to read drawings, procedures, First Article Inspections (FAI) and understand contracts
  • Must be willing to travel up to 20% (Domestic and International)
  • HS Diploma or GED
Job Responsibility
Job Responsibility
  • Ensure that suppliers manufacturing, quality system, special processes, and products meet purchase contract requirements, customer requirements and applicable regulatory agency and government regulations
  • Ensures that suppliers document and maintain an approved Quality System to meet the appropriate company or customer requirements
  • This requires planning, organization, and conduction of audits, surveys, and inspections of supplier. Represents the company with suppliers. Ensures that suppliers document and maintain an approved Quality System to meet the appropriate company or customer requirements
  • Work with supplier to submit Notifications of Escapement (NOE) and work to closure with 8D’s
  • Create Control Plans for suppliers and work to keep them on track
What we offer
What we offer
  • health insurance
  • flexible spending accounts
  • health savings accounts
  • retirement savings plans
  • life and disability insurance programs
  • paid and unpaid time away from work
  • Kansas Tax Credit: Join Spirit AeroSystems’ Kansas team and you may be eligible for a $5,000 state of Kansas Aviation tax credit for up to five years
  • Generous company match to your 401(k)
  • Industry-leading tuition assistance program pays your institution directly
  • Fertility, adoption, and surrogacy benefits
  • Fulltime
Read More
Arrow Right