Senior GRC Analyst - Chapel Hill

Wisetech GlobalChapel Hill, NC
91dRemote
Match Resume

About The Position

WiseTech Global is a leading force in empowering and revolutionizing the world's supply chains. Our innovative technologies play a pivotal role in safeguarding the data and ensuring the security of thousands of users globally, including the world's largest freight forwarders. We are dedicated to delivering efficiency, transparency, and confidence through our Governance, Risk, and Compliance (GRC) framework. We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Analyst with expertise in managing acquisitions, integrating them seamlessly into our company's way of working as well as responding to our customer's security questionnaires. The ideal candidate should have 5+ years of direct work experience and a proven track record of successfully navigating the challenges associated with assimilating newly acquired entities into existing business operations. The role requires a keen understanding of regulatory compliance, risk management, and a strategic mindset to ensure smooth and efficient integration processes. The GRC Analyst will play a critical role in enhancing our overall GRC posture and maintaining regulatory compliance for WiseTech Global. Given the close collaboration with technical security teams, the ideal candidate will bring a solid background in technical IT or cybersecurity (e.g. experience as a Network Engineer, Security Analyst, or Systems Administrator), alongside recent and relevant experience in governance, risk, and compliance (GRC).

Requirements

  • 5+ years of hands-on experience in GRC, preferably with a focus on acquisition integration.
  • Strong knowledge of regulatory compliance requirements, risk management frameworks, including ISO 27001, NIST.
  • Experience with SOC1/2, GDPR, and privacy frameworks.
  • Proficiency in information security tools, techniques, and controls.
  • Experience with metrics and KPIs to measure and track information security risk.
  • Ability to develop policies, standards, and guidelines.
  • ISO27001:2022 Lead Implementer and lead auditor certifications are a must.

Nice To Haves

  • CISA, CISM, CISSP, or CRISC certifications are desirable.
  • Experience with GRC tools, such as Vanta, Archer, ServiceNow Risk modules is highly desirable.
  • Exposure to CMMC/FedRAMP is highly desirable.

Responsibilities

  • Collaborate with cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities.
  • Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy.
  • Evaluate and mitigate risks associated with integration processes, working closely with risk management teams.
  • Bridge gaps between existing practices and those of acquired entities, harmonizing policies, procedures, and controls.
  • Effectively communicate integration plans and progress, fostering strong relationships with key stakeholders.
  • Maintain accurate documentation of integration activities and generate insightful reports for senior management.
  • Identify areas for improvement and drive enhancements to the integration process.
  • Collaborate with various teams to ensure accurate and comprehensive responses to customer security questionnaires.

Benefits

  • Opportunity to excel in a dynamic and innovative team.
  • Join a mission to transform global trade.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Career Level

Senior

Industry

Professional, Scientific, and Technical Services

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service