CrawlJobs Logo

Senior Staff Analyst, GRC

mozilla.org Logo

Mozilla

Location Icon

Location:

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The role is part of the Security Function within the broader Mozilla Infrastructure team. The Security team supports Product, Enterprise and GRC functions across the organization aligned with the mission to build a safe & secure internet. This role is responsible for defining, developing and helping implement a Governance, Risk and Compliance framework for both Enterprise and Product verticals. The ideal candidate will be responsible to deliver an integrated framework that aligns security, privacy, regulatory, and risk management initiatives across the organization. The ideal candidate is a collaborative leader with deep domain expertise in information security, regulatory compliance, risk governance, and cross-functional stakeholder engagement.

Job Responsibility:

  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team

Requirements:

  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
What we offer:
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Other benefits (life/AD&D, disability, EAP, etc. - varies by country)
  • Flexible work environment
  • Industry-leading paid parental leave (up to 26 weeks of fully paid leave for childbearing parents and up to 12 weeks for non-childbearing parents)
  • Reimbursement for professional development (up to $3,000/year)
  • A work setup including the latest hardware and software of your choice

Additional Information:

Job Posted:
March 19, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Mozilla - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Staff Analyst, GRC

Senior Staff Analyst, GRC

Mozilla Corporation is the non-profit-backed technology company that has shaped ...
Location
Location
Germany;Canada;Spain;United States;United Kingdom
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools, )
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives
  • Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues
  • Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Ensure compliance with various regulatory standards and frameworks (ISO, NIST, SOC2, CCPA, GDPR, etc)
  • Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
United States
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Senior GRC Analyst, Security

The GRC Analyst is responsible for supporting the organization's information sec...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Cybersecurity, or a related field
  • 5+ years of experience in information security, risk management and compliance
  • Strong knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, NIST, CCPA, PCI-DSS, NYDFS, HIPAA)
  • Experience with security & privacy risk assessment and management methodologies
  • Extensive experience in Third Party/Vendor Risk Management (TPRM) with hands-on expertise in managing VRM tools (e.g.,OneTrust, ProcessUnity, Vanta)
  • Experience in supporting security audits (SOC2, Customer & Partners Audits) - At least 2 complete audit cycles of SOC2
  • Excellent communication skills, with the ability to convey complex security concepts to non-technical stakeholders
  • Relevant certifications such as ISO 27001 LA LI, CISA, CRISC are highly desirable
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain information security policies and procedures
  • Ensure alignment of security governance frameworks with business objectives and regulatory requirements
  • Assist in the creation and maintenance of the information security governance structure
  • Conduct information security risk assessments and evaluate the effectiveness of existing controls
  • Identify, assess, and document risks related to information security & privacy across the organization
  • Conduct regular risk assessments for existing and potential vendors
  • Monitor and report on the organization’s information security risk posture
  • Ensure compliance with relevant information security regulations, standards, and frameworks (e.g., ISO 27001, SOC2, ITGC, NIST, PCI-DSS, CCPA, NYDFS, HIPAA)
  • Conduct regular security compliance assessments and audits
  • Track and report on compliance gaps and work with relevant teams to address deficiencies
Read More
Arrow Right
New

Veterinary Surgeon – Independent Practice

Are you a Veterinary Surgeon looking to work within a genuinely independent prac...
Location
Location
United Kingdom , Canning Town
Salary
Salary:
55000.00 - 80000.00 GBP / Year
compass-associates.com Logo
Compass Associates
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • MRCVS Veterinary Surgeon
  • Minimum of 18 months’ clinical experience
  • Confident managing routine cases within a first opinion setting
  • Comfortable working both independently and as part of a small team
  • Strong communication skills with a client-focused approach
Job Responsibility
Job Responsibility
  • Well-balanced working day combining structured consultation time with dedicated periods for case management and clinical follow-up
  • Working within a first opinion environment seeing a broad mix of routine and medical cases
  • Managing the majority of cases in-house with surgical procedures carried out on-site
  • Saturdays on rotation
  • No out-of-hours, Sundays, or bank holiday commitments
What we offer
What we offer
  • Salary negotiable depending on experience
  • CPD allowance (flexible and open to discussion)
  • No out-of-hours, Sundays, or bank holidays
  • Saturdays on rotation
  • On-site parking
  • Pension Scheme
  • Holiday Allowance
  • Staff Benefits
Read More
Arrow Right
New

Pathology Hub Manager – Private Hospital

We are supporting a leading private hospital group in the appointment of a Patho...
Location
Location
United Kingdom , Exeter
Salary
Salary:
Not provided
compass-associates.com Logo
Compass Associates
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • HCPC registration Biomedical Scientist
  • Strong background within pathology services, with leadership / management desired
  • Demonstrable experience managing teams within a laboratory or diagnostic setting
  • Happy to consider a Senior or Lead BMS looking to step up
  • Knowledge of UKAS accreditation standards and pathology governance frameworks
  • Excellent communication and stakeholder management skills
  • Strong organisational and analytical abilities with experience managing service performance and department budgets
Job Responsibility
Job Responsibility
  • Lead and support multidisciplinary pathology teams across several locations
  • Oversee workforce planning, staffing, training, and performance management activities
  • Ensure laboratory services operate in line with all relevant accreditation and regulatory standards
  • Monitor service performance, identifying opportunities for operational improvement and increased efficiency
  • Support the delivery of quality assurance and governance frameworks across the department
  • Manage departmental budgets and contribute to financial planning and reporting processes
  • Build effective working relationships with internal stakeholders and external service providers
  • Drive service development projects and contribute to wider organisational objectives
What we offer
What we offer
  • 25 days annual leave + bank holidays
  • Private medical Insurance
  • Pension Scheme
  • Gym Membership
  • Cycle to work Scheme
  • Childcare vouchers
  • Employee Assistance Programme
  • Wellbeing benefits plus more
  • Fulltime
Read More
Arrow Right
New

Corporate Communication Intern

OTB is an international fashion group comprising the iconic brands Diesel, Jil S...
Location
Location
Italy , Breganze
Salary
Salary:
Not provided
otb.net Logo
OTB
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Excellent knowledge of Italian & English
  • French, Chinese, Japanese, Korean or other languages are a plus
  • Master’s degree or enrolled in a Master’s degree
  • Ability and passion for corporate copywriting, editing and/or journalism
  • Good knowledge of digital and social platforms
  • Interest for press and media
  • Organizational skills and excellent interpersonal relationship attitude
  • Team working, flexibility, initiative and problem solving
  • Office Pack
  • Graphic design skills are a plus
Job Responsibility
Job Responsibility
  • Support the Public Affairs & Corporate Communication Department in the daily activities
  • Support the daily relations with national and international media
  • Create contents for official communications offline and online
  • Support the management of the social channels and the digital platforms of the Group
  • Support the Internal Communication Team and the communication activities of the OTB Foundation
  • Collect news and take care of the daily corporate media monitoring
  • Liaise with the communication departments of the OTB Group’s Brands and Companies and the different Regions to create synergies and ensure a smooth flow of communication
  • Help building a strong sense of belonging across the companies of the Group through the creation of internal publications, e-mail announcements, online, intranet, video, special projects
  • Contribute to the organization of internal and external events
  • Fulltime
Read More
Arrow Right
New

Clinic Manager

This is an excellent opportunity for a strong healthcare leader looking to step ...
Location
Location
United Kingdom , Ipswich
Salary
Salary:
50000.00 - 55000.00 GBP / Year
compass-associates.com Logo
Compass Associates
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • NMC registration (Level 1 Nurse)
  • Previous experience managing clinical teams and healthcare operations
  • Strong understanding of governance, audits, and quality compliance
  • Experience with workforce management, budgets, and service performance
  • Excellent communication and stakeholder management skills
  • Haemodialysis or renal experience would be highly advantageous
Job Responsibility
Job Responsibility
  • Leading the day-to-day operational management of the clinic(s)
  • Managing staffing, rota planning, and patient scheduling
  • Oversight of audits, governance, compliance, and quality standards
  • Budgetary and financial accountability including P&L oversight
  • Reporting into senior leadership and working closely with the General Manager
  • Supporting staff development, supervision, and training
  • Ensuring compliance with CQC, infection control, H&S, and clinical governance standards
  • Building strong relationships with consultants, stakeholders, and referring organisations
  • Driving continuous improvement initiatives across the service
What we offer
What we offer
  • Salary up to £55,000
  • Monday–Friday working pattern
  • Structured handover and onboarding support
  • Ongoing training and development opportunities
  • Potential future progression into senior clinical leadership roles
  • Opportunity to lead a well-established and supportive team environment
  • Fulltime
Read More
Arrow Right