Senior GRC Analyst

Come join our passionate team! Barracuda is a leading cybersecurity company providing complete protection against complex threats. Our platform protects email, data, applications, and networks with innovative solutions, and a managed XDR service, to strengthen cyber resilience. Hundreds of thousands of IT professionals and managed service providers worldwide trust us to protect and support them with solutions that are easy to buy, deploy, and use.

We are committed to a candidate selection process and work environment that is inclusive and barrier free. To ensure candidates are assessed in a fair and equitable manner, accommodations will be provided to prospective employees in accordance with the Accessibility for Ontarians with Disabilities Act (AODA) and the Ontario Human Rights Code.

Envision yourself at Barracuda

You will be a member of Barracuda’s Security team and will support the development of global compliance initiatives by leading compliance focused programs, collaborating with other departments and business units on key global policies and procedures, defining and communicating strategies, conducting employee training, and defining compliance-related controls.

• Microsoft Entra ID, Atlassian Cloud, GitHub, Enterprise Risk Assessment tools, Identity & Access Management tools, and Third-Party Risk Management tools.

What you’ll be working on

• Conduct detailed risk assessments, identify vulnerabilities, and develop mitigation strategies.
• Ensure adherence to regulatory requirements (e.g., GDPR, HIPAA) and industry standards (e.g., ISO 27001, NIST).
• Create and maintain security policies, procedures, and guidelines.
• Lead internal and external audits, including SOC 2, ISO 27k, and other compliance frameworks.
• Develop and implement incident response plans and conduct post-incident reviews.
• Design and deliver security awareness training programs for employees.
• Utilize data analytics tools to monitor compliance metrics and generate reports.
• Lead the onboarding of third-party security vendors (i.e. IAM).
• Collaborate with cross-functional teams to integrate compliance requirements.
• Monitor and review regulatory updates and issues relative to pertinent security regulatory requirements.
• Drive continuous improvement efforts to enhance IT compliance and governance practices.

What you bring to the role

• Bachelor's degree in information security, Computer Science, or a related field.
• 5+ years in a GRC role, preferably within the cybersecurity industry.
• Proficiency in GRC tools (e.g., AuditBoard, Jira, ServiceNow), risk assessment methodologies, and compliance frameworks.
• Relevant certifications such as CISSP, CISM, CRISC, or CISA.
• Strong analytical, communication, and project management skills.

What you’ll get from us

A team where you can voice your opinion, make an impact, and where you and your experience are valued. Internal mobility – there are opportunities for cross training and the ability to attain your next career step within Barracuda. In addition, you will receive equity, in the form of non-qualifying options.

The anticipated on-target earnings range for this role is 77,000 to 88,000 CAD. Actual compensation offered will be dependent upon the individual's skills, experience, and qualifications as they directly relate to the requirements of the position, the budget for the position, and applicable employment laws.