Senior GRC Analyst
TinesSalary not specified
Full Time
Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
SaaS, CybersecurityIndustries
Requirements
- Minimum 5 years experience in GRC, security assurance or compliance, ideally within a SaaS environment
- Proven experience supporting enterprise sales cycles and engaging directly with customers
- Hands-on third-party risk management expertise
- Working knowledge of ISO 27001, ISO 27017, SOC 2, NIST CSF or 800-53, GDPR and FedRAMP
- Familiarity with Jira workflows and GRC platforms such as Vanta
- Strong communication skills with the ability to simplify technical topics for diverse audiences
Responsibilities
- Lead customer security and compliance calls that help close deals worldwide
- Use AI platforms such as Vanta and Gemini to streamline and improve GRC operations
- Manage the third-party risk lifecycle including onboarding, assessments, contract reviews, monitoring and off-boarding
- Collaborate with Product, Security, Engineering and Sales to resolve complex security requests
- Respond to due-diligence questions and present security concepts clearly to technical and business audiences
- Review vendor evidence such as SOC 2 and ISO 27001, assign risk tiers and schedule periodic reviews
- Maintain the Trust Portal ensuring FAQs and assurance materials are accurate and current, and reviewing and approving access requests
Skills
Key technologies and capabilities for this role
Questions & Answers
Common questions about this position
What experience is required for the Senior Security Assurance Specialist role?
Minimum 5 years experience in GRC, security assurance or compliance, ideally within a SaaS environment, plus proven experience supporting enterprise sales cycles, engaging directly with customers, and hands-on third-party risk management expertise.
What certifications or additional skills are preferred for this position?
Preferred qualifications include CISSP, CISA, CISM or CGRC certifications, experience experimenting with AI tools and prompt engineering, and a passion for simplifying security concepts while thriving in collaborative discussions.
What is Snyk's company culture like?
Snyk builds on values of One Team, Care Deeply, Customer Centric, and Forward Thinking, fostering a warm, inclusive environment that values diversity and welcomes applications from those typically underrepresented in tech.
Is this role remote or does it require office work?
This information is not specified in the job description.
What is the salary or compensation for this position?
This information is not specified in the job description.
Snyk
Cybersecurity for open source software vulnerabilities
About Snyk
Snyk specializes in cybersecurity for software-driven businesses, focusing on open source security. Its platform helps developers identify and fix vulnerabilities in their code through a dependency scanner that detects issues in open source dependencies and container images. Snyk stands out by integrating seamlessly into existing development workflows, allowing for quick development without sacrificing security. The company's goal is to enable businesses to develop software rapidly while ensuring it remains secure and compliant.
Boston, MassachusettsHeadquarters
2015Year Founded
$1,545.7MTotal Funding
LATE_VCCompany Stage
Enterprise Software, CybersecurityIndustries
1,001-5,000Employees
Benefits
Flexible Work Hours
Unlimited Paid Time Off
Health Insurance
Life Insurance
Disability Insurance
401(k) Retirement Plan
Risks
Delaying IPO may lead to investor impatience and confidence issues.
Integration challenges from multiple acquisitions could distract from core operations.
Workforce reduction by 10% might impact morale and innovation.
Differentiation
Snyk's developer-first approach integrates security seamlessly into development workflows.
The platform's focus on open source security addresses a critical market need.
Snyk's comprehensive toolset supports both small startups and large enterprises.
Upsides
Snyk's ARR reached $300 million, indicating strong financial growth.
Strategic acquisitions like DeepCode enhance Snyk's product offerings and revenue.
Partnerships with AWS expand Snyk's integration capabilities and market reach.
Related Jobs
RemoteRemoteCompliance Manager
Danaher CorporationSalary not specified
RemoteThird-Party Cyber Risk Manager
HumanaSalary not specified
RemoteRegulatory & Security Compliance Analyst
RainSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSr. Information Security Analyst
ValonSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteEnterprise Security Engineer
OpenAI$260,000 - $325,000/year
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Operations Lead
EarnestSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteGRC (Governance, Risk, and Compliance) Analyst
YipitDataSalary not specified
- Full Time
- Entry Level & New Grad
RemoteProduct GRC SME
Vanta$158,000 - $186,000/year
- Full Time
- Expert & Leadership (9+ years)
RemoteSr Software Developer in Test (FedRamp)
CriblSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteGRC Manager
BasetenSalary not specified
RemoteCustomer Due Diligence
ColumnSalary not specified
RemoteEngineering Manager, Portal
Hayden AI$215,600 - $253,700/year
- Full Time
- Junior (1 to 2 years)