Governance, Risk & Compliance Analyst
August 15
🏢 In-office - San Francisco
Description
• Lead audits for SOC2 and ISO27001, ensuring compliance with certification requirements and managing improvements post-audit • Ensure compliance with GDPR and CCPA/CPRA and other regulations • Supervise and work closely with the EU Compliance Officer and Data Protection Officer • Respond to security questionnaires and inquiries effectively in collaboration with Sales, Security and Engineering • Develop and maintain public-facing trust pages to demonstrate security and compliance commitment • Conduct risk assessments and mitigate data security and compliance risks • Develop Risk programs centered on Vulnerabilities, Enterprise, Vendors, and other areas to proactively address potential threats • Educate employees on compliance and security best practices to maintain a strong security culture within the organization • Stay updated on cybersecurity trends and threats to ensure effective training and awareness programs for employees • Follow and help shape the AI regulatory and standards landscape to keep the company at the forefront of industry developments and best practices
Requirements
• 5+ years of experience in GRC, compliance, or customer trust roles within the tech industry • Proven success in leading audit preparations and audits for SOC2, ISO27001, and similar standards • Deep understanding of GDPR, CCPA/CPRA, and other privacy regulations, with experience implementing and monitoring compliance processes • Extensive knowledge of security best practices • Strong commitment to cross-functional collaboration with IT, Security, Sales, and Engineering to drive company success and build customer trust • Self-motivated and organized, with a creative approach to project completion • Excellent written, verbal, and interpersonal communication skills
Benefits
• Comprehensive health, dental, and vision insurance for you and your dependents • Includes a 401(k) plan. • Equity is part of the total compensation package.
Apply Now
