Senior GRC Analyst

CGWS - COME GROW WITH US

full-time

Posted on: 9/20/2025

Origin: • 🇺🇸 United States • Utah

✨ AI Apply

Senior

AWSAzureCloudGoogle Cloud PlatformPMP

About the role

Implement and maintain our GRC program
Facilitate audit programs, manage the audit processes, and ensure continual compliance
Monitor the regulatory landscape and provide recommended actions for compliance
Perform third-party procurement reviews and create a process for continual third-party audits
Formulate, review, suggest improvements, and manage annual reviews for policy documents in collaboration with stakeholders
Recognize and leverage AI for simplifying data-heavy GRC tasks, using basic AI features like NLP to parse technology documents and categorize compliance evidence while considering ethical use
Work across teams and coordinate activities to complete compliance controls
Summarize complex compliance data into meaningful reports to aid management decisions
Interface with customers and potential customers to discuss our compliance controls as needed

3 - 5+ years of experience running the GRC program for a publicly traded company, with at least 2 years in Compliance and Risk management
4+ years of experience in security, IT, audit, compliance, technical writing, project management, or similar
Expert for the compliance framework ISO 27001 (Knowledge of AICPA SOC 1, and SOC 2 is strongly preferred), in a SaaS environment
Experience implementing and operating tools for GRC management
Experience developing and implementing information security controls within cloud native / cloud-first organizations (AWS, Azure, GCP, etc.)
Experience with vendor management, policy management, and project management
Ability to effectively communicate governance, risk, audit, and compliance functions to executives
Certifications strongly preferred: CGRC, CRISC, CISA, CISM, CGEIT, PMP, or similar
Employment contingent on passing background and credit check