IT Risk Management and SOC 2 Consultant
Deloitte
Cloud
Senior Specialist, Governance, Risk and Compliance – GRC
Veracyte, Inc.
full-time
Posted on:
Origin: • 🇺🇸 United States • California
Visit company websiteSalary
💰 $110,000 - $125,000 per year
Job Level
Senior
About the role
- Assist with leading and supporting the organization’s governance, risk, and compliance initiatives
- Perform IT risk assessments
- Ensure controls, policies and procedures and resources are in place for IT and Security teams to effectively manage risk
- Articulate risk appetite and advocate risk culture
- Act as a challenge function by providing questions and feedback across multiple functions
- Work to ensure that the company’s operations align with relevant regulations, internal policies, standards and risk management frameworks
- Responsible for maturing the GRC operations
- Report to and work under the direction of Management
Requirements
- Bachelor’s degree in Information Security, Risk Management, Business Administration, or a related field
- 5+ years of experience in GRC, information security, risk management, or compliance
- Experience with regulatory frameworks such as ISO 27001, NIST, SOX, PCI-DSS, GDPR, HIPAA
- Experience in risk assessments and compliance audits is preferred
- Strong knowledge of risk management and compliance frameworks
- Familiarity with third-party vendor risk management practices
- Excellent communication and report-writing skills
- Detail-oriented with the ability to analyze complex regulatory requirements
- Proficient in using GRC tools and software for tracking and managing compliance/risk activities
- Ability to manage multiple projects and take on other security tasks as needed
- Preferred certifications: CISA, CISM, CISSP, CRISC, CIPP
