-
Enterprise Risk GRC Senior Business Analyst
1 week ago
TEPHRA San Jose, United States: · The consultant will play a lead business analyst role to drive Enterprise Risk / GRC program for BFSI Clients (US West Coast ,SFO Area) · Responsibilities: As a lead business analyst 1 > Drive Scope and Requirement shaping for Enterprise Risk / GRC projects 2 > Play Our cli ...
-
Senior GRC Policy Analyst
3 weeks ago
Roblox San Mateo, United StatesEvery day, tens of millions of people come to Roblox to explore, create, play, learn, and connect with friends in 3D immersive digital experiences– all created by our global community of developers and creators. · At Roblox, we're building the tools and platform that empower our ...
-
Senior GRC Policy Analyst
4 weeks ago
Roblox San Mateo, United StatesEvery day, tens of millions of people come to Roblox to explore, create, play, learn, and connect with friends in 3D immersive digital experiences- all created by our global community of developers and creators. · At Roblox, we're building the tools and platform that empower our ...
-
Senior GRC Policy Analyst
3 weeks ago
Roblox San Mateo, United StatesEvery day, tens of millions of people come to Roblox to explore, create, play, learn, and connect with friends in 3D immersive digital experiences all created by our global community of developers and creators. · At Roblox, were building the tools and platform that empower our c ...
-
Business Integration Analyst
4 weeks ago
Zodiac Solutions Inc. Sunnyvale, United StatesRole : Business Integration Analyst Location : Sunnyvale, CA(Onsite) Skills / Experience Requirements EXPERIENCE REQUIREMENTS Bachelor's degree from a four-year college or university required with a major or emphasis in Computer Science, Finance, Accounting, Business, Insurance ...
-
Security and Compliance Analyst
3 weeks ago
Fortinet Sunnyvale, United StatesJob Summary: We are seeking a highly skilled and motivated Security and Compliance Analyst to join our dynamic team. The ideal candidate will play a crucial role in ensuring the security and compliance of our organization by supporting the implementation of ISO 27001 and conducti ...
-
IT Security and Compliance Analyst
22 hours ago
Fortinet Sunnyvale, United StatesSecurity and Compliance Analyst · Job Summary: We are seeking a highly skilled and motivated Security and Compliance Analyst to join our dynamic team. The ideal candidate will play a crucial role in ensuring the security and compliance of our organization by supporting the implem ...
-
Sr. Analyst, Internal Audit
1 week ago
Luminar Sunnyvale, United StatesLuminar is a global automotive technology company ushering in a new era of vehicle safety and autonomy. For the past decade, Luminar has built an advanced hardware and software/AI platform to enable its more than 50 industry partners, including the majority of global automotive O ...
-
Business Systems Analyst III
5 days ago
Russell Tobin Mountain View, United StatesJob Description · Job DescriptionOur client, a global leading Fintech company, is seeking a Business System Analyst · Apply today for consideration · Title: Business System Analyst · Location: Mountain View, CA(Hybrid) · Pay rate: $ /hour DOE · Duration: 12 months (possibility of ...
-
Senior Director, Product Security
4 weeks ago
Workato Mountain View, United StatesJob Description · Job DescriptionAbout WorkatoWorkato is the only integration and automation platform that is as simple as it is powerful — and because it's built to power the largest enterprises, it is quite powerful. · Simultaneously, it's a low-code/no-code platform. This emp ...
-
Business Integration Analyst
2 weeks ago
Cygnus Professionals Sunnyvale, United StatesRole : Business Integration Analyst · Location : Sunnyvale, CA · Onsite · Skills / Experience Requirements · EXPERIENCE REQUIREMENTS · Bachelors degree from a four-year college or university required with a major or emphasis in Computer Science, Finance, Accounting, Busine ...
-
Governance Risk Analyst Analyst
3 weeks ago
AMISEQ San Jose, United StatesJob Description: · Security Governance, Risk, Compliance (GRC) Analyst · Reporting to the Director Information Security, Governance, Risk, and Compliance, the GRC analyst will contribute to the development and operational execution of the program, including risk management and c ...
-
Senior Security Governance, Risk, Compliance
5 days ago
Amiseq Inc. San Jose, United StatesSenior Security Governance, Risk, Compliance (GRC) Analyst · San Jose, CA - Hybrid role · 6 Months Contract · Reporting to the Director Information Security, Governance, Risk, and Compliance, the · Senior GRC Analyst will contribute to the development and operational executi ...
-
Senior IT Analyst/Auditor, Internal Controls
5 days ago
Guardant Health Palo Alto, United States Full timeJob Description · Guardant Health is looking for I T Senior Auditor/Analyst, Internal Controls & SOX , to join our Global Internal Controls Team. If you are intellectually curious, view challenges as learning opportunities, want to experience the transformative world of global in ...
-
Compliance Analyst
1 week ago
Tik Tok Mountain View, United StatesResponsibilities · About TikTok U.S. Data Security · TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security ("USDS") is a subsidiary of TikTok in the U.S. This new, security-first division was create ...
-
Reporting Analyst
4 weeks ago
IT Avalon Santa Clara, United StatesRisk Management Team in financial organization needs reporting analyst to help with day to day reports. Reporting is done manually. Reports are done in Excel, mainly. The team utilizes Archer for governance, risk and compliance. This consultant will also help head of risk and con ...
-
Sr Oracle EBS Database Administrator
2 weeks ago
Powell Industries West University Place, United States Full timeJob Summary · A Database Administrator (DBA) is responsible for managing and maintaining an organization's databases, and related applications. They ensure the integrity, security, and performance of the databases while also optimizing them for efficient data storage and retrieva ...
-
Staff Security Analyst, Customer Trust
3 weeks ago
Navan Palo Alto, United States Full timeNavan, the No. 1 Corporate Travel and Expense Management App, is looking for a Staff Security Analyst of Customer Trust to join our dynamic team. This role is critical in ensuring that our innovative technology and world-class customer support are backed by the highest standards ...
-
Senior IT Analyst/Auditor, Internal Controls
2 days ago
Guardant Health Palo Alto, United StatesJob Description · Job DescriptionCompany Description · Guardant Health is a leading precision oncology company focused on helping conquer cancer globally through use of its proprietary tests, vast data sets and advanced analytics. The Guardant Health oncology platform leverages c ...
-
Risk & Compliance Analyst Sr IT
3 weeks ago
Stericycle Hayward, United StatesTitle: Risk & Compliance Analyst Sr IT · Requisition Id: 31676 Job Function: Information Systems Career Area: Corporate Jobs Work Location: Bannockburn CORP) About Us: · At Stericycle, we deliver solutions and drive innovations that protect the environment, people, and public he ...
GRC Analyst - Sunnyvale, United States - Fanatics
Description
Fanatics Collectibles is looking for a Governance, Risk, and Compliance (GRC) Analyst to join our Information Security team.This position will report into the Director - Governance, Risk, and Compliance and will be responsible for assessing controls, prioritizing information security and cybersecurity risk across the organization, facilitating compliance with regulatory requirements, developing and managing information security policies, and reporting on information security metrics.
The GRC Analyst is responsible for reducing information security and cybersecurity risk to Fanatics Collectibles by helping to prioritize and drive remediation efforts throughout the organization through the following:Creating, maintaining, communicating, and enforcing information security policies.
Establishing and maintaining information security governance and compliance standards.
Conducting control risk assessments to identify vulnerabilities internally and within vendor or third-party supplier products.
Maintaining the risk mitigation, risk exception process, and conducting residual risk analysis.
The GRC Analyst independently executes high-quality, enterprise-wide controls assessments against industry leading frameworks. The GRC Analyst works with employees and leaders across Fanatics Collectibles.
Team members are given a great deal of autonomy in the pursuit of keeping Fanatics Collectibles secure and a successful candidate will demonstrate strong communication skills and is expected to be comfortable and effective working independently and as part of a larger, global team.
The ability to communicate broadly across different skill sets will be key to success in this role.Duties and responsibilities may include:
Support the controls risk assessment process, by:
Performing on-going and annual control risk assessments
Support audit execution processes by providing compliance consultation on various frameworks and best practices
Collecting, reviewing, and uploading evidence
Collecting and documenting emerging risks
Assisting in risk analysis and evaluation
Providing input for risk trends, emerging threats, and issues
Direct engagement with internal teams to ensure adherence to processes
Mentor fellow Fanatics Collectibles personnel on best security practices through cross-functional work with multiple technical and non-technical teams
Required Education and Certification:
Bachelor's degree in an IT or engineering related field strongly preferred.
CISA, CISSP, CISM, or CRISC certification or equivalent strongly preferred.
Required Skills:
Experience (minimum 5 years) in information technology (IT) or information security with IT-based governance, risk, and compliance.
Experience (minimum 1 year) with IT-based audit.
A solid understanding of the following frameworks, with direct experience in at least 2 preferred: PCI-DSS Data Privacy (GDPR, CCPA, others) ISO 27001, NIST 800-53, COBIT, SOX.
Proficiency in written and spoken English.Ability to present findings and summaries of issues to senior management.
Pro-active and self-motivated, including a willingness to reach out to development teams and stakeholders to discuss issues and identify areas needing assistance.
Excellent communication and interpersonal skills.Ability to approach problem solving in a constructive and collaborative way.
Experience with cloud -based tools strongly preferred.
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.