Senior GRC Analyst

United States

Apply with AI Apply

$120,000 – $140,000Compensation

Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level

Full TimeJob Type

UnknownVisa

Robotics, Biotechnology, Logistics, AIIndustries

Requirements

Candidates should possess knowledge in ISO 27001/2 and SOC 2 trust principles, along with information security best practices. Desired certifications include ISO/IEC 27001 Lead Implementer/Auditor, CISA, or CISSP. Experience is required in participating in compliance audits, preparing audit workpapers, managing an Enterprise Risk Management (ERM) Lifecycle, and familiarity with Standard Information Gathering (SIG) for vendor risk assessments. Experience using Atlassian Jira for project management and configuring/managing GRC or IRM tools like Archer, ZenGRC, RSAM, or Vanta is also required. Experience developing compliance and security analytics using BI tools such as Looker, PowerBI, or Chartio is needed. The ability to prioritize and manage competing priorities in a fast-paced environment is essential.

Responsibilities

The Senior GRC Analyst will serve as a subject matter expert on security best practices and compliance frameworks like SOX Section 404 IT General Controls, ISO 27001, GDPR, and CCPA. Responsibilities include maintaining security documentation such as policies, procedures, risk assessments, and BIA/PIAs. The analyst will manage the security awareness program platform, conduct quarterly phishing simulations, and perform periodic risk assessments of third-party vendors, establishing corrective action plans. They will support IT audits for critical business systems, track and manage audit findings for timely resolution, and manage the compliance framework, risk/control matrix, and compliance automation system. Weekly reports on internal control compliance status will be prepared for senior leadership.

Skills

GRC

SOX Section 404 IT General Controls

ISO 27001

GDPR

CCPA

Risk Assessment

Information Security Policies

Security Procedures

Privacy Assessments

Business Impact Assessments (BIA/PIA)

Compliance Audits

Security Awareness Programs

Phishing Simulations

Robotics

Machine Learning

Computer Vision

Serve Robotics

Autonomous delivery robots for food and retail

About Serve Robotics

Serve Robotics is changing the delivery industry with its self-driving robots that provide sustainable and efficient delivery solutions. Instead of using traditional vehicles, these lightweight, autonomous robots deliver small items like food and retail products, reducing carbon emissions and traffic congestion. The company operates on a delivery-as-a-service (DaaS) model, allowing businesses in the food and retail sectors to subscribe and pay based on their delivery needs. Serve Robotics aims to lead in the autonomous delivery market by offering eco-friendly solutions that enhance customer experience.

Redwood City, CaliforniaHeadquarters

2021Year Founded

$51.6MTotal Funding

POST_IPO_EQUITYCompany Stage

Food & Agriculture, Robotics & Automation, Consumer GoodsIndustries

51-200Employees