CrawlJobs Logo
Mozilla Logo Mozilla · IT - Administration

Senior Staff Analyst, GRC

· Job Posted March 25, 2026
Apply Position
Job Link Share

Job Description

The role is part of the Security Function within the broader Mozilla Infrastructure team. The Security team supports Product, Enterprise and GRC functions across the organization aligned with the mission to build a safe & secure internet. This role is responsible for defining, developing and helping implement a Governance, Risk and Compliance framework for both Enterprise and Product verticals. The ideal candidate will be responsible to deliver an integrated framework that aligns security, privacy, regulatory, and risk management initiatives across the organization. The ideal candidate is a collaborative leader with deep domain expertise in information security, regulatory compliance, risk governance, and cross-functional stakeholder engagement.

Job Responsibility

  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team

Requirements

  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change

What we offer

  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Other benefits (life/AD&D, disability, EAP, etc. - varies by country)
  • Flexible work environment
  • Industry-leading paid parental leave (up to 26 weeks of fully paid leave for childbearing parents and up to 12 weeks for non-childbearing parents)
  • Reimbursement for professional development (up to $3,000/year)
  • A work setup including the latest hardware and software of your choice
Mozilla - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Staff Analyst, GRC

8 matching positions

Senior Staff Analyst, GRC

Mozilla Corporation is the non-profit-backed technology company that has shaped ...
Location
Location
Germany;Canada;Spain;United States;United Kingdom
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools, )
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives
  • Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues
  • Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Ensure compliance with various regulatory standards and frameworks (ISO, NIST, SOC2, CCPA, GDPR, etc)
  • Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
United States
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Senior GRC Analyst, Security

The GRC Analyst is responsible for supporting the organization's information sec...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Cybersecurity, or a related field
  • 5+ years of experience in information security, risk management and compliance
  • Strong knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, NIST, CCPA, PCI-DSS, NYDFS, HIPAA)
  • Experience with security & privacy risk assessment and management methodologies
  • Extensive experience in Third Party/Vendor Risk Management (TPRM) with hands-on expertise in managing VRM tools (e.g.,OneTrust, ProcessUnity, Vanta)
  • Experience in supporting security audits (SOC2, Customer & Partners Audits) - At least 2 complete audit cycles of SOC2
  • Excellent communication skills, with the ability to convey complex security concepts to non-technical stakeholders
  • Relevant certifications such as ISO 27001 LA LI, CISA, CRISC are highly desirable
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain information security policies and procedures
  • Ensure alignment of security governance frameworks with business objectives and regulatory requirements
  • Assist in the creation and maintenance of the information security governance structure
  • Conduct information security risk assessments and evaluate the effectiveness of existing controls
  • Identify, assess, and document risks related to information security & privacy across the organization
  • Conduct regular risk assessments for existing and potential vendors
  • Monitor and report on the organization’s information security risk posture
  • Ensure compliance with relevant information security regulations, standards, and frameworks (e.g., ISO 27001, SOC2, ITGC, NIST, PCI-DSS, CCPA, NYDFS, HIPAA)
  • Conduct regular security compliance assessments and audits
  • Track and report on compliance gaps and work with relevant teams to address deficiencies
Read More
Arrow Right

Resident Assistant

If you’re looking for a job that goes beyond the basics to deliver purpose and j...
Location
Location
United States of America , Hillsboro
Salary
Salary:
18.00 - 20.00 USD / Hour
leisurecare.com Logo
Leisure Care
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated experience in a caregiving role
  • Current CNA a plus!
Job Responsibility
Job Responsibility
  • Assists resident with activities of daily living (ADL's) and all personal care skills (bathing, dressing, grooming, toileting)
  • Makes appropriate observations about the resident’s condition in every interaction
  • Records and follows-up with changes in resident’s condition in a timely manner
  • Assists residents with laundry and housekeeping services as needed
What we offer
What we offer
  • Medical, Dental and Vision
  • Early Wage Access (access to earned wages when needed!)
  • 401k
  • 10 days vacation & 1 hour Sick Leave earned for every 30 hours worked
  • Bereavement & Jury Duty Leave
  • 6 Holidays
  • 2 Float Holidays
  • Flexible Spending Accounts (Health and Dependent Care)
  • Meal Discounts
  • Tuition Assistance
  • Fulltime
Read More
Arrow Right

Traffic Management CAD Technician

FM Conway is currently recruiting a Traffic Management CAD Technician to join ou...
Location
Location
United Kingdom , Ipswich
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
July 04, 2026
Flip Icon
Requirements
Requirements
  • Strong knowledge of Traffic Management operations
  • experience using CAD, BricsCAD and Cone 11 software
  • ability to read and translate blueprints and technical drawings
  • ability to work well under pressure, prioritise tasks effectively and have excellent attention to detail
  • M7 Lantra qualification is highly desirable, but not essential
Job Responsibility
Job Responsibility
  • Working within a team of Traffic Management development designers and Project Engineers to ensure that drawings are to a high and legal standard
  • Producing clear drawings, signage placement layouts and diversion route strategies
  • Developing safe and efficient traffic management plans for work sites and road network
  • Carrying out on site assessments as required
  • Designing sites in accordance with Chapter 8 TSM
  • Engaging with Project Teams & Engineers to respond effectively to working methods that require traffic Management designs that conform to a legal standard
What we offer
What we offer
  • Career and professional development
  • 23 days holiday plus bank holidays
  • Life assurance
  • Opportunities for internal and external training
  • Access to a wide range of shopping discounts through Rewarding Great People platform
  • Health and well-being benefits including 24-hour advice lines
  • Support from in-house mental health first aiders
  • Fulltime
Read More
Arrow Right

Registered Nurse, CVOR

Baptist Downtown is hiring a Registered Nurse for our Cardiovascular Operating R...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
baptistjax.com Logo
Baptist Health (Florida)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 1-2 years Operating Room Nursing Experience Required
  • Basic Life Support (BLS) Required
  • Advanced Cardiac Life Support (ACLS) Required
  • Licensed Registered Nurse Required
  • Associate of Science, Nursing
  • Registered Nurse (RN) - State Nursing Boards
  • Driver's License - DMV
  • Basic Life Support (BLS) - AHA
  • Advanced Cardiac Life Support (ACLS) - AHA
Job Responsibility
Job Responsibility
  • Providing for patient needs as recognized through use of the nursing process
  • Supervision of care provided by supportive personnel and coordination of care provided by ancillary services
  • Including patients and significant others (SO)/families in developing an individualized plan of care
  • Education of patients/SO/families to their disease process and plan of care
  • Coordinating and preparing assigned operating room/case
  • Assessment of patient care needs and the anticipation of needs of the case
  • Circulating, scrubbing, assisting on Cardiothoracic and vascular procedures
  • Fulltime
Read More
Arrow Right

Pediatric Occupational Therapist

Wolfson Children's Hospital Rehab Services is hiring a Pediatric Occupational Th...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
baptistjax.com Logo
Baptist Health (Florida)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree (or higher) in Occupational Therapy Required
  • Licensed Occupational Therapist from FL Department of Health Required
  • Basic Life Support (BLS) certification from the American Heart Association Required
  • Pediatric Occupational Therapy in the outpatient setting is strongly preferred
Job Responsibility
Job Responsibility
  • Evaluates and treats patients with developmental, neurological, orthopedic, and medical diagnoses
  • Extensive patient/family education
  • Works with multidisciplinary team care
What we offer
What we offer
  • $1,000 Sign on Bonus
Read More
Arrow Right