Senior GRC Analyst

Job Summary

A company is looking for a Senior Governance, Risk and Compliance (GRC) Analyst.

Key Responsibilities

• Establish and automate a risk and compliance program focused on PCI DSS and SOC 2, Type 2
• Develop third-party cybersecurity risk management, vulnerability management, and phishing programs
• Collaborate with internal and external partners to assess cybersecurity risks and manage the organization's risk posture

Required Qualifications

• Bachelor's degree in computer science, technology management, or a related field
• Experience with PCI DSS, SOC2 Type II, and NIST 800-53/NIST CSF
• Hands-on experience with AWS Security Hub and other AWS security tools
• Experience leading audits and working with regulators
• Preferred: Familiarity with OSFI guidelines and working towards a CISSP certification