CrawlJobs Logo

Senior Staff Analyst, GRC

Germany;Canada;Spain;United States;United Kingdom · Job Posted April 23, 2026
Apply Position
Job Link Share

Job Description

Mozilla Corporation is the non-profit-backed technology company that has shaped the internet for the better over the last 25 years. We make pioneering brands like Firefox, the privacy-minded web browser. Now, with more than 225 million people around the world using our products each month, we’re shaping the next 25 years of technology and helping to reclaim an internet built for people, not companies. Our work focuses on diverse areas including AI, social media, security and more. And we’re doing this while never losing our focus on our core mission – to make the internet better for people. The Mozilla Corporation is wholly owned by the non-profit 501(c) Mozilla Foundation. This means we aren’t beholden to any shareholders — only to our mission. Along with thousands of volunteer contributors and collaborators all over the world, Mozillians design, build and distribute open-source software that enables people to enjoy the internet on their terms. The role is part of the Security Function within the broader Mozilla Infrastructure team. The Security team supports Product, Enterprise and GRC functions across the organization aligned with the mission to build a safe & secure internet. This role is responsible for defining, developing and helping implement a Governance, Risk and Compliance framework for both Enterprise and Product verticals. The ideal candidate will be responsible to deliver an integrated framework that aligns security, privacy, regulatory, and risk management initiatives across the organization. The ideal candidate is a collaborative leader with deep domain expertise in information security, regulatory compliance, risk governance, and cross-functional stakeholder engagement.

Job Responsibility

  • Develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives
  • Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues
  • Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Ensure compliance with various regulatory standards and frameworks (ISO, NIST, SOC2, CCPA, GDPR, etc)
  • Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team

Requirements

  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools, )
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change

What we offer

  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Other benefits (life/AD&D, disability, EAP, etc. - varies by country)

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Staff Analyst, GRC

8 matching positions

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Senior GRC Analyst, Security

The GRC Analyst is responsible for supporting the organization's information sec...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Cybersecurity, or a related field
  • 5+ years of experience in information security, risk management and compliance
  • Strong knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, NIST, CCPA, PCI-DSS, NYDFS, HIPAA)
  • Experience with security & privacy risk assessment and management methodologies
  • Extensive experience in Third Party/Vendor Risk Management (TPRM) with hands-on expertise in managing VRM tools (e.g.,OneTrust, ProcessUnity, Vanta)
  • Experience in supporting security audits (SOC2, Customer & Partners Audits) - At least 2 complete audit cycles of SOC2
  • Excellent communication skills, with the ability to convey complex security concepts to non-technical stakeholders
  • Relevant certifications such as ISO 27001 LA LI, CISA, CRISC are highly desirable
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain information security policies and procedures
  • Ensure alignment of security governance frameworks with business objectives and regulatory requirements
  • Assist in the creation and maintenance of the information security governance structure
  • Conduct information security risk assessments and evaluate the effectiveness of existing controls
  • Identify, assess, and document risks related to information security & privacy across the organization
  • Conduct regular risk assessments for existing and potential vendors
  • Monitor and report on the organization’s information security risk posture
  • Ensure compliance with relevant information security regulations, standards, and frameworks (e.g., ISO 27001, SOC2, ITGC, NIST, PCI-DSS, CCPA, NYDFS, HIPAA)
  • Conduct regular security compliance assessments and audits
  • Track and report on compliance gaps and work with relevant teams to address deficiencies
Read More
Arrow Right

AI Engineer

As our next AI Engineer, you will contribute to solving meaningful challenges ac...
Location
Location
Spain; Denmark , København
Salary
Salary:
Not provided
life-science-talent-solutions.dk Logo
Life Science Talent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong Python skills and solid software engineering fundamentals
  • Hands-on experience with at least one major cloud (AWS, Azure, or GCP)
  • Deep, hands-on experience with enterprise LLMs and their APIs (e.g. Anthropic/Claude, OpenAI, Google), including tool/function calling, structured outputs, and the Model Context Protocol (MCP)
  • Experience building agentic systems with modern orchestration frameworks such as Pydantic AI, LangGraph, OpenAI Agents SDK, AutoGen / Microsoft Agent Framework, or LlamaIndex
  • Strong command of retrieval techniques including RAG and graph-RAG, vector search, embeddings, reranking, and document-processing pipelines
  • Practical context-engineering skills and the ability to consistently improve AI quality through prompt and context design
  • Experience with evals and observability as first-class concerns, including evaluation suites, tracing, regression testing, reliability, latency, and cost management
  • Familiarity with tooling such as LangSmith, Langfuse, Braintrust, Arize Phoenix, MLflow, DeepEval, or Promptfoo
  • A solid foundation in data science fundamentals, data analysis, and statistical thinking
  • Strong communication skills in English
Job Responsibility
Job Responsibility
  • Design, build, and ship AI-powered tools that help life science teams create, review, and manage critical documents and data
  • Build features such as grounded retrieval, summarisation, document comparison, question answering, and content classification with traceability back to source
  • Design agentic workflows capable of handling complex business processes
  • Build evaluation frameworks and observability capabilities that ensure reliability and quality
  • Ensure solutions are secure, auditable, and scalable in regulated cloud environments (AWS, Azure, GCP)
  • Collaborate closely with clinical, regulatory, quality, and commercial experts to understand their workflows and implement AI solutions that create measurable value
What we offer
What we offer
  • Support for health and wellbeing, covering physical, mental, and social needs
  • Flexible ways of working, built on trust, autonomy, and balance
  • Ongoing learning and professional development throughout your career
  • A modern work setup, with the tools and equipment needed to do great work
  • Recognition of performance and impact, linked to contribution and results
  • The opportunity to work on challenges that make a meaningful difference for patients and healthcare systems worldwide
  • Fulltime
Read More
Arrow Right

Senior Research Scientist - Peptide Chemistry & Formulation

We are seeking a Senior Research Scientist to join our Pharmaceutical Research &...
Location
Location
Sweden , Lund
Salary
Salary:
Not provided
life-science-talent-solutions.dk Logo
Life Science Talent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • M.Sc. or Ph.D. in organic chemistry, pharmaceutical/medicinal chemistry or a closely related discipline
  • Minimum 5 years of post-doctoral or industrial experience in peptide chemistry, with demonstrable expertise in both formulation development and analytical characterization
  • Strong understanding of peptide degradation mechanisms (hydrolysis, oxidation, racemisation, aggregation) and experience with stability assessment and optimization
  • Track record of contributing to CMC regulatory dossiers (IND/CTA or NDA/MAA), with familiarity of ICH Q8–Q11 guidelines
  • Experience working in structured, cross-functional project teams with demonstrated ability to deliver results independently
Job Responsibility
Job Responsibility
  • Design, develop, and optimize formulations for peptide APIs using Camurus’ FluidCrystal® platform and other formulation technologies as appropriate
  • Develop and refine formulation strategies including long-acting injectable and depot systems
  • Evaluate internal and external assets and formulation approaches to support business development activities
  • Contribute to CMC sections of IND/CTA and NDA/MAA regulatory dossiers
  • Support technology transfer activities to internal manufacturing operations and external partners
  • Act as a scientific expert in cross-functional project teams spanning R&D, quality, and manufacturing
  • Keep up to date with developments in peptide drug delivery, formulation science, and relevant analytical technologies
What we offer
What we offer
  • International work environment and corporate culture
  • Possibility for individual development and growth
  • Fulltime
Read More
Arrow Right

Audience Development Lead

We are looking for a confident, commercially minded Audience Development Lead to...
Location
Location
United Arab Emirates , Dubai
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Excellent spoken and written English
  • Confident and professional telephone manner
  • Comfortable speaking with senior executives and decision-makers
  • Strong communication and relationship-building skills
  • Highly organised with strong attention to detail
  • Self-motivated and proactive
  • Comfortable working to targets and deadlines
  • Strong research skills
  • Experience in events, media, sales, audience development, recruitment, business development, stakeholder engagement or customer-facing roles
Job Responsibility
Job Responsibility
  • Identify and engage senior business leaders across key industries
  • Build relationships with C-level executives, government stakeholders and industry influencers
  • Conduct outreach through phone, email and LinkedIn
  • Clearly communicate the value of MEED's events, awards and content programmes
  • Secure participation from high-quality attendees across events, roundtables, webinars and awards
  • Support guest experience across flagship events, webinars and industry roundtables
  • Ensure participation aligns with event objectives and client expectations
  • Maintain accurate records of engagement activity and attendance forecasts
  • Provide regular progress updates against targets
  • Identify organisations and projects suitable for award submissions
Read More
Arrow Right

Maintenance Manager

Maintenance Manager duties will include: Lead and manage the maintenance team to...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in a maintenance management role within a hotel or similar environment
  • Strong knowledge of building systems, including plumbing, electrical, HVAC, and carpentry
  • Excellent understanding of health and safety regulations and best practices
  • Exceptional leadership and team management skills
  • Strong problem-solving abilities and attention to detail
  • Ability to manage multiple projects and priorities effectively
  • Proficiency in maintenance management software and Microsoft Office applications
  • Excellent communication and interpersonal skills
  • Relevant technical certifications or qualifications are desirable
Job Responsibility
Job Responsibility
  • Lead and manage the maintenance team to ensure efficient operation of the hotel's physical infrastructure
  • Develop and implement a comprehensive preventive maintenance program
  • Oversee all maintenance activities, including plumbing, electrical, HVAC, and carpentry
  • Ensure compliance with health and safety regulations and hotel standards
  • Conduct regular inspections of hotel facilities to identify and address maintenance needs
  • Coordinate with external contractors and service providers for specialized repairs and projects
  • Manage the maintenance budget, including forecasting and controlling expenses
  • Maintain accurate records of maintenance activities, including repairs, inspections, and service requests
  • Respond promptly to maintenance requests from guests and staff, ensuring minimal disruption to operations
  • Develop and implement training programs for the maintenance team to enhance skills and knowledge
What we offer
What we offer
  • A competitive salary
  • 28 days paid holiday
  • Discounted hotel room rates across our hotels, for you and friends and family
  • Fantastic Training and Development opportunities
  • Free Meals on shift
  • Pension cover
  • Unrivalled Career Progression prospects
  • Fulltime
Read More
Arrow Right

Administrative Assistant

We are looking for a detail-oriented Administrative Assistant to support HR-rela...
Location
Location
United States , Houston
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in administrative support, HR operations, employee services, or a related office environment
  • Strong customer service and communication skills with the ability to handle inquiries professionally and clearly
  • Proficiency in Microsoft Office applications, including Excel, Word, Outlook, and PowerPoint
  • Ability to manage documentation, maintain accurate records, and work carefully within databases or online systems
  • Familiarity with HR processes such as payroll, benefits, onboarding, leave administration, or employee record management
  • Strong organizational skills with the ability to prioritize multiple tasks and meet deadlines in a fast-paced setting
  • Ability to work collaboratively across departments and support issue resolution through effective follow-up and coordination
Job Responsibility
Job Responsibility
  • Manage incoming employee questions related to HR policies, procedures, and workplace practices, ensuring each request is addressed promptly and accurately
  • Record, track, and close employee interactions in electronic systems while maintaining complete and organized documentation
  • Support the resolution of escalated concerns by coordinating with internal HR teams and other departments to provide effective follow-up
  • Contribute to onboarding and team development by assisting with the training of new staff members and sharing process knowledge
  • Collaborate with shared services groups such as payroll, benefits, recruiting, IT, and security to ensure employee support activities are completed thoroughly
  • Maintain filing systems, prepare reports, update templates, conduct research, and organize department materials as needed
  • Process employee pay-related updates, including merit increases, promotions, and compensation adjustments, and verify that all required information is entered correctly
  • Respond to routine payroll, timekeeping, and benefits questions, serving as a point of contact between employees, managers, and service teams to resolve issues
  • Coordinate documentation and follow-up for leaves of absence, disability claims, workers’ compensation matters, accommodations, and new employee paperwork, ensuring all required parties remain informed
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right