CrawlJobs Logo

Staff GRC Analyst

vercel.com Logo

Vercel

Location Icon

Location:
United States , San Francisco

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

180000.00 - 270000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

We are looking for a Staff GRC Analyst to join our Governance, Risk, and Compliance (GRC) team. You will have the opportunity to enhance our global compliance posture and further our commitment to managing enterprise risk. Your role will be instrumental in ensuring that our company operates in accordance with security requirements and embodies an environment where it’s everyone’s responsibility. This role will help shape the next iteration of the GRC program and further embed compliance requirements into the business.

Job Responsibility:

  • Own and scale commercial attestation program and audits (i.e., SOC 2, ISO 27001, PCI DSS, etc.) while maintaining alignment with business objectives and market demand
  • Design and strengthen continuous monitoring processes to improve control effectiveness and mature control implementation from audit-ready to always-ready
  • Drive evolution of security and compliance control frameworks that set the direction for proactive risk management
  • Partner with cross-functional stakeholders, acting as a strategic connector to plan, implement, maintain & remediate control activities and supporting requirements (e.g. policies, standards, processes, system configurations, etc.)
  • Champion a culture of compliance accountability and business-enablement across the organization through autonomous program governance and reporting and building trusted relationships

Requirements:

  • Experience managing and running audits, certification programs and enterprise control assessments, including scope planning, defining requirements, policy and standards development, and control testing
  • Deep knowledge of audit processes, evidence requirements, and remediation lifecycle management for security and compliance frameworks (i.e., SOC 2, ISO 27001, PCI DSS)
  • Proven experience owning large-scale GRC programs, collaborating with technical and non-technical teams and driving initiatives to completion

Nice to have:

  • Familiarity with data governance, compliance or software development tools and systems (e.g., Drata, Linear, Github, etc.)
  • Experience supporting cloud, AI-native, and open source development environments and systems
  • Experience with FedRAMP or NIST frameworks, such as 800-53, AI RMF
  • Security certifications (e.g. CISA, CISSP)
What we offer:
  • Competitive compensation package, including equity
  • Inclusive Healthcare Package
  • Learn and Grow - we provide mentorship and send you to events that help you build your network and skills
  • Flexible Time Off
  • We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed

Additional Information:

Job Posted:
April 05, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Vercel - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Staff GRC Analyst

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
United States
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Senior GRC Analyst, Security

The GRC Analyst is responsible for supporting the organization's information sec...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Cybersecurity, or a related field
  • 5+ years of experience in information security, risk management and compliance
  • Strong knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, NIST, CCPA, PCI-DSS, NYDFS, HIPAA)
  • Experience with security & privacy risk assessment and management methodologies
  • Extensive experience in Third Party/Vendor Risk Management (TPRM) with hands-on expertise in managing VRM tools (e.g.,OneTrust, ProcessUnity, Vanta)
  • Experience in supporting security audits (SOC2, Customer & Partners Audits) - At least 2 complete audit cycles of SOC2
  • Excellent communication skills, with the ability to convey complex security concepts to non-technical stakeholders
  • Relevant certifications such as ISO 27001 LA LI, CISA, CRISC are highly desirable
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain information security policies and procedures
  • Ensure alignment of security governance frameworks with business objectives and regulatory requirements
  • Assist in the creation and maintenance of the information security governance structure
  • Conduct information security risk assessments and evaluate the effectiveness of existing controls
  • Identify, assess, and document risks related to information security & privacy across the organization
  • Conduct regular risk assessments for existing and potential vendors
  • Monitor and report on the organization’s information security risk posture
  • Ensure compliance with relevant information security regulations, standards, and frameworks (e.g., ISO 27001, SOC2, ITGC, NIST, PCI-DSS, CCPA, NYDFS, HIPAA)
  • Conduct regular security compliance assessments and audits
  • Track and report on compliance gaps and work with relevant teams to address deficiencies
Read More
Arrow Right

Staff Risk & Compliance Analyst

As a Staff Risk & Compliance Analyst in the Power IT GRC function, you will supp...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
themuse.com Logo
The Muse
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Support governance framework
  • Assist in maintaining IT governance structure
  • Support SOX Compliance Management
  • Lead End-to-End Deficiency Management
  • Support key control domains (ERP control areas)
  • Support policy development
  • Support risk management
  • Support compliance audits
  • Monitor regulatory adherence (SOX, NIS2, GDPR)
  • Support training and awareness
Job Responsibility
Job Responsibility
  • Support day-to-day IT GRC activities
  • Contribute to Power segment's SOX assurance
  • Assist in advancing multi-year control rationalization and automation roadmap
  • Develop expertise in governance, risk, and compliance
What we offer
What we offer
  • Health Insurance
  • Health Reimbursement Account
  • Dental Insurance
  • Vision Insurance
  • Life Insurance
  • Short-Term Disability
  • Long-Term Disability
  • FSA
  • FSA With Employer Contribution
  • HSA
  • Fulltime
Read More
Arrow Right

Security Analyst

As a Security Analyst, you will be a key player in our IT security team, focusin...
Location
Location
United States , Tallahassee
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Lead the technical execution of security-related projects, focusing on system hardening and network security
  • Engage in effective communication and collaboration with various teams to meet specific security standards
  • Utilize your expertise in firewalls, Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), and encryption to ensure secure configurations
  • Conduct comprehensive vulnerability assessments and devise relevant remediation strategies
  • Manage security tools and provide support for incident response, ensuring the seamless integration of security platforms
  • Ensure strict adherence to Criminal Justice Information Services (CJIS) and State of Florida regulations
  • Work closely with Governance, Risk, and Compliance (GRC) teams to address audit gaps
  • Document and provide training on cybersecurity solutions and processes with a focus on CJIS and State regulations
  • Reengineer security processes for improved efficiency and compliance
  • Stay informed about emerging threats and technologies, providing support for cybersecurity issues
Job Responsibility
Job Responsibility
  • Lead the technical execution of security-related projects, focusing on system hardening and network security
  • Engage in effective communication and collaboration with various teams to meet specific security standards
  • Utilize your expertise in firewalls, Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), and encryption to ensure secure configurations
  • Conduct comprehensive vulnerability assessments and devise relevant remediation strategies
  • Manage security tools and provide support for incident response, ensuring the seamless integration of security platforms
  • Ensure strict adherence to Criminal Justice Information Services (CJIS) and State of Florida regulations
  • Work closely with Governance, Risk, and Compliance (GRC) teams to address audit gaps
  • Document and provide training on cybersecurity solutions and processes with a focus on CJIS and State regulations
  • Reengineer security processes for improved efficiency and compliance
  • Stay informed about emerging threats and technologies, providing support for cybersecurity issues
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • eligible to enroll in our company 401(k) plan
  • Fulltime
Read More
Arrow Right
New

Merchandiser Stocker

The Merchandiser is responsible for providing high-quality merchandising support...
Location
Location
United States , Dubuque
Salary
Salary:
19.52 - 20.55 USD / Hour
keurigdrpepper.com Logo
Keurig Dr Pepper
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to lift-up to 50 lbs repeatedly
  • Capability to push and pull up to 100 lbs repeatedly
  • Possession of a valid driver's license
  • Access to a dependable and reliable vehicle
  • Proof of Vehicle Insurance
Job Responsibility
Job Responsibility
  • Stocking and displaying products on shelves/coolers at large accounts within a set territory
  • Reporting directly to assigned stores for scheduled shifts
  • Covering routes as assigned
  • Using personal vehicle to travel among stores in territory
  • Using company-issued phone to clock in/out and track mileage
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • Paid Time Off
  • 401(k) program with employer match
  • Child & Elder Care
  • Adoption Benefits
  • Paid Parental Leave
  • Fertility Benefits
  • Employee Resource Groups
  • Parttime
Read More
Arrow Right
New

Corporate Food Service Manager

Aramark’s Management Accelerator Program (MAP) is an immersive experience that b...
Location
Location
United States , Beaverton
Salary
Salary:
60000.00 USD / Year
aramark.com Logo
Aramark
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Graduating between December 2025 and August 2026
  • Degree or background in hospitality, business, culinary, food service, or facilities management preferred
  • Excellent verbal, written, and professional communication skills
  • Willing to work flexible hours, which may include nights, weekends or holidays
  • Must be eligible to work in the U.S. without sponsorship
Job Responsibility
Job Responsibility
  • Craft and execute innovative dining solutions
  • Gain team management experience
  • Ensure smooth operations in a fast-paced environment
What we offer
What we offer
  • Medical, dental, vision, and work/life resources
  • Retirement savings plans like 401(k)
  • Paid days off such as parental leave and disability coverage
  • Fulltime
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy