Sr. GRC Analyst

Illumio-posted 3 days ago
Full-time • Mid Level
Remote • New York, NY
501-1,000 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

Onwards Together! Illumio is the leader in ransomware and breach containment, redefining how organizations contain cyberattacks and enable operational resilience. Powered by the Illumio AI Security Graph, our breach containment platform identifies and contains threats across hybrid multi-cloud environments – stopping the spread of attacks before they become disasters. Recognized as a Leader in the Forrester Wave™ for Microsegmentation, Illumio enables Zero Trust, strengthening cyber resilience for the infrastructure, systems, and organizations that keep the world running. Our Team's Vision: The Office of the CTO and Security team sets the strategic technical direction of the company while keeping both Illumio and our customers secure. Those who join us represent the leader in Zero Trust Segmentation and maintain Illumio’s competitive advantage by exploring new technologies while collaborating with Engineering and Product Management. We are looking for people who leverage differences and push the pace of innovation in a time when the world faces its greatest cybersecurity threats in history. As a Senior GRC Analyst, you will be responsible for assisting us with developing, managing, and ensuring compliance with relevant regulatory requirements and standards. You will also work closely with cross-functional teams to lead compliance initiatives, monitor and manage risks, and support internal and external audits. This role requires a strategic thinker with a hands-on approach, experience in risk management frameworks, and a commitment to continuous improvement in a rapidly evolving field.

  • Lead and manage SOC 2 Type 2, ISO 27001, and PCI audit preparation and execution processes, ensuring alignment with regulatory standards.
  • Develop, implement, and maintain GRC programs, policies, and procedures that adhere to relevant standards and best practices.
  • Collaborate with stakeholders to define control objectives, identify risks, and implement remediation actions.
  • Conduct gap assessments and manage risk assessments to identify potential compliance and security risks.
  • Provide guidance on regulatory requirements and support initiatives to achieve and maintain compliance.
  • Work with external auditors and coordinate audit activities to ensure successful audit outcomes.
  • Stay up-to-date on regulatory changes, industry standards, and best practices to continuously improve the GRC program.
  • Occasionally participate with customer responses on an as needed basis and if time permits.
  • Assist with on-call rotation to monitor the Security ticket queue. Hours are typically 9:00am to 7:00pm with best effort on Saturday and Sunday. (Approximately a 12-week rotation)
  • Education: Bachelor’s Degree in information systems management, Accounting, or a related field, or Master's Degree in relevant field
  • Certifications: At lease one of the following certifications: CISSP, CISA, CISM, CRISC, or similar certifications relevant to GRC and compliance.
  • Experience: Minimum of 8+ years of experience in GRC or Compliance, with hands-on experience managing SOC 2 Type 2, ISO 27001, 27701, and PCI audits.
  • Deep understanding of risk management, governance, and compliance frameworks.
  • Proficiency in control frameworks such as COSO, COBIT, and NIST.
  • Strong project management skills with a detail-oriented approach.
  • Excellent written and verbal communication skills, with the ability to articulate compliance issues to key stakeholders.
  • Experience with other compliance frameworks or certifications (e.g., GDPR, HIPAA) is a plus
  • Experience using GRC tools and software is a plus
Track Jobs with Teal

Job Search Resources

AI Resume Builder
NOC Analyst Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service