Governance, Risk and Compliance Senior Analyst

Description

• Identify, assess, and prioritize risks that could impact company's objectives, including operational, financial, and reputational risks.
• Develop and implement risk mitigation strategies and controls to minimize risk exposure.
• Monitor compliance with applicable laws, regulations, and policies
• Investigate and resolve compliance issues
• Stay up-to-date on GRC & Privacy trends and developments
• Work closely with other departments to ensure a comprehensive approach to GRC
• Prepare reports on GRC activities and compliance status
• Ensure SARC's compliance with all relevant laws, regulations, and industry standards, including data protection, export control, and labor laws.
• Foster collaboration and cross functional partnerships to spread GRC awareness and participation
• Coordinate and facilitate internal and external audits, ensuring that SARC is prepared and responsive to audit requirements.
• Develop and implement audit plans, risk assessments, and control evaluations.

Requirements

• Bachelor's degree in business, law, security, or a related field
• 5 years of experience in GRC or a related field
• Experience with GRC software and tools, such as RSA Archer, BitSight or similar platforms
• Strong understanding of GRC principles and best practices
• Understanding of compliance with SOC2, ISO27001, GDPR, SOX, NIST CSF
• Excellent analytical and problem-solving skills
• Ability to work independently and as part of a team
• Excellent communication and presentation skills
• Strong attention to detail and accuracy