Cyber Governance, Risk, and Compliance (GRC) Analyst
About The Position
The Cyber GRC Analyst will support Marigold’s global cybersecurity governance, risk management, and compliance program. This role requires a foundational understanding of cybersecurity principles, regulatory requirements, and industry-accepted practices to help ensure Marigold’s assets are secure and the integrity of our operations is maintained. Protecting customer data is a critical concern for our customers and prospects and is often a key factor in their decision to trust our services. This role plays a meaningful part in providing those assurances while supporting Marigold’s continued growth. In this role, you’ll gain exposure to enterprise and product security controls and collaborate closely with a globally diverse team across product, engineering, infrastructure, legal, and sales.
Requirements
- You’re curious, organized, and motivated by protecting systems, data, and customer trust.
- You’re comfortable managing multiple priorities, working cross-functionally, and translating security concepts into clear, practical guidance for a variety of audiences.
- Experience supporting cybersecurity governance, risk, and compliance activities in a technology-driven environment.
- Solid understanding of information security concepts, controls, and risk management practices.
- Strong time management and organizational skills with the ability to prioritize effectively.
- Excellent written and verbal communication skills across technical and non-technical audiences.
- Ability to work independently while collaborating effectively across teams and organizational levels.
Nice To Haves
- Experience with compliance frameworks such as ISO 27001, SOC, NIST, HITRUST, or CIS Controls.
- Familiarity with cloud security and secure software development lifecycle practices.
- Experience with tools such as Jira, Confluence, Salesforce, Loopio, Safebase, or enterprise GRC platforms.
Responsibilities
- Support the development and implementation of cybersecurity governance, risk, and compliance frameworks tailored to Marigold’s products and services.
- Participate in risk assessments to identify threats, vulnerabilities, and gaps in the company’s security posture.
- Collaborate with internal stakeholders to establish and enforce security policies, standards, and procedures.
- Support compliance initiatives and audits aligned with recognized frameworks and standards such as ISO 27001, SOC, NIST, PCI-DSS, and related controls.
- Coordinate responses to customer security assessments, questionnaires, RFPs, data protection agreements, and audit requests.
- Manage third-party risk assessments and vendor security evaluations to help mitigate supply chain risk.
Benefits
- Competitive benefits including: medical/dental/vision insurance, life/accident/disabilities insurance, supplemental health benefits, FSA, EAP and pet insurance
- Generous time off (we call it Open Time Away) as well as paid holidays and a birthday benefit day off.
- Paid Volunteer Time
- 401k plan with a company match on your contributions.
- Employee-centric and supportive remote work environment with flexibility.
- Support for life events including paid parental leave.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
1,001-5,000 employees
