GRC Analyst
MercuryFull Time
Mid-level (3 to 4 years), Senior (5 to 8 years)
The Associate Manager of Security Compliance (GRC) should have experience in developing, implementing, and maintaining GRC frameworks, conducting risk assessments, compliance audits, and customer trust activities. A strategic mindset and practical experience in navigating complex customer regulatory environments are essential. Experience with GRC tooling, including third-party platforms and custom-built solutions, is required. Familiarity with embedding GRC controls in the software development lifecycle and aligning the GRC technology stack with enterprise architecture standards, data governance policies, and security best practices is necessary. Experience in producing documentation and answering customer questions efficiently to drive sales cycles is also required.
The Associate Manager of Security Compliance (GRC) will contribute to the strategy, roadmap, and lifecycle management of GRC tooling. They will partner with teams to embed GRC controls early in the software development lifecycle and identify opportunities for automating risk and compliance activities. This role involves setting performance expectations, providing coaching, and fostering a culture of innovation. Responsibilities include driving sales cycles by producing documentation and answering customer questions, owning and maintaining continuous monitoring activities, reviewing control language and policy updates, and implementing key controls. The role also includes developing, maintaining, and tracking remediation of items on the risk register, documenting and following up on security-related findings, and coordinating external audits and evidence collection for frameworks like SOC2, ISO27001, and ISO27701. Assisting with customer assurance activities is also part of the role.
Cloud-based data management platform for analytics
GetDBT.com is a cloud-based data management platform that helps companies streamline their data development processes. It allows users to write business logic more efficiently, enhances code reusability, and ensures data quality through testing and governance features. Unlike its competitors, GetDBT.com focuses on scalability and complexity, making it suitable for businesses at various stages of data maturity. The company's goal is to empower organizations to manage their data effectively while providing reliable service through a subscription model.