Senior Cybersecurity GRC Analyst

About The Position

Requirements

• In-depth knowledge of cybersecurity standards, regulatory frameworks, and certification requirements, including: Sarbanes-Oxley (SOX) CMMC ISO/IEC 27001:2022 NIST CSF 2.0 NIST Risk Management Framework NIST 800-171
• Strong communication and stakeholder engagement skills.
• Business-level proficiency in written and spoken English.
• Ability to work independently and collaboratively across time zones and cultures.
• Typically 8+ years with bachelor's or equivalent.
• Bachelor's degree or equivalent experience from which comparable knowledge and job skills can be obtained.
• Minimum of six (6) years of experience in cybersecurity GRC roles, preferably in a global enterprise environment.
• Proven experience in conducting risk assessments, gap analyses, and control testing.

Nice To Haves

• Familiarity with GRC platforms and tools such as ServiceNow, AuditBoard, or Onspring.
• Bachelor’s degree in Information Security, Information Technology, or a related field, or equivalent practical experience.
• Professional certifications such as CISSP, CISA, CRISC, or ISO 27001 Lead Auditor are highly desirable.

Responsibilities

• Lead and execute cybersecurity assessments using recognized frameworks such as NIST CSF and ISO/IEC 27001.
• Develop, update, and manage cybersecurity policies, standards, and procedures to meet global regulatory requirements.
• Stay informed about emerging threats, regulatory changes, and industry best practices to guide governance efforts.
• Design and deliver cybersecurity training and awareness programs tailored to global audiences.
• Create and manage internal communications related to cybersecurity initiatives, policies, and compliance updates.
• Conduct risk assessments across business units and regions.
• Maintain and update risk registers, and support the development of mitigation strategies.
• Support third-party risk management by assessing vendor security practices and compliance.
• Support internal and external audit preparation and response activities.
• Monitor and report on compliance status, risk metrics, and control effectiveness.
• Ensure alignment with global compliance requirements, including SOX, CMMC, ISO 27001, NIST CSF, NIST 800-171.

Benefits

• Generous Paid Time Off
• 401K and Pension Plan
• Paid Holidays
• Family Support (Paid Leave, Surrogacy, Adoption)
• Medical, Dental, Vision, and Life Insurance
• Long-term and Short-term Disability Insurance
• Health Savings Account / Flexible Spending Account
• Education Assistance
• Employee Development Resources
• Employee Wellness, Leadership Development and Mentorship Programs