Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Benepass

Senior GRC Analyst

Benepass

Senior GRC Analyst at Benepass enhancing governance, risk, and compliance programs. Collaborating with technical and non-technical stakeholders across the organization.

Posted 5/20/2026full-timeRemote • 🇺🇸 United StatesSenior💰 $130,000 - $160,000 per yearWebsite

About the role

Key responsibilities & impact
  • Maintain and improve information security policies, standards, procedures, control documentation, and related governance materials.
  • Help map policies and controls to frameworks such as SOC 2, ISO 27001/27002, HITRUST, NIST CSF 2.0, and other customer, regulatory, or security requirements.
  • Support policy exceptions, risk acceptances, remediation tracking, control owner follow-ups, and recurring governance workflows.
  • Support SOC 2, ISO 27001, and HITRUST readiness, audit preparation, evidence collection, auditor coordination, and audit response management.
  • Maintain recurring evidence-gathering and control testing workflows, helping ensure controls operate consistently across the business.
  • Track audit findings, control gaps, remediation plans, owners, due dates, and closure evidence.
  • Support risk assessments, control gap assessments, internal reviews, and maintenance of the risk register.
  • Translate technical and security risks into clear business language, including mitigations, ownership, timelines, and residual risk.
  • Own or support customer security questionnaires, RFP security sections, due diligence requests, and trust or compliance documentation.
  • Maintain reusable questionnaire content, approved responses, compliance artifacts, and customer-facing assurance materials.
  • Support employee security awareness programs and create clear internal guidance for policies, controls, and compliance responsibilities.
  • Support vendor security reviews, third-party risk assessments, remediation tracking, risk acceptance documentation, and vendor compliance evidence.
  • Use GRC platforms such as Vanta, Drata, Thoropass, Secureframe, or similar tools to improve evidence collection, control monitoring, task tracking, reporting, and repeatable compliance operations.

Requirements

What you’ll need
  • 5+ years of experience in GRC, information security compliance, IT audit, risk management, security assurance, or a closely related field.
  • Hands-on experience supporting SOC 2 audits and readiness activities.
  • Working knowledge of ISO 27001/27002, HITRUST, NIST CSF, or similar security and compliance frameworks.
  • Experience maintaining security policies, controls, control narratives, evidence repositories, and audit documentation.
  • Experience supporting internal or external audits, including evidence collection, auditor coordination, control owner follow-up, and remediation tracking.
  • Strong written communication skills, with the ability to produce clear policies, questionnaire responses, process documentation, and stakeholder updates.
  • Excellent attention to detail and project management discipline.
  • Experience responding to customer security questionnaires, RFP security sections, or due diligence requests.
  • Familiarity with GRC, compliance automation, or audit management tools.
  • Experience in SaaS, fintech, benefits, healthcare, or other regulated environments.
  • Comfort working in a startup or fast-moving environment where processes need to be mature enough to scale without creating unnecessary friction.
  • Ability to work with both technical and non-technical teams and communicate security and compliance expectations clearly.

Benefits

Comp & perks
  • 95% coverage of medical, dental, and vision
  • $250 WFH setup (one time)
  • $500/year Learning & Development Benefit
  • $150/month cell phone + internet
  • $100/month Wellness
  • $100/month Co-working and Commuter Benefit
  • Flexible PTO

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
GRCinformation security complianceIT auditrisk managementsecurity assuranceSOC 2ISO 27001HITRUSTNIST CSFaudit documentation
Soft Skills
written communicationattention to detailproject managementstakeholder updatesclear communicationpolicy developmentprocess documentationcustomer engagementteam collaborationadaptability