Enable job alerts via email!
Security GRC Analyst (UK Remote) Turnitin
CyberNorth
Town of Texas (WI)
Remote
USD 80,000 - 120,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A prominent technology company is seeking a skilled Security GRC Analyst to ensure compliance with various regulatory frameworks and industry standards. The role involves collaboration across departments, conducting risk assessments, and developing security policies. The ideal candidate will have strong analytical skills, attention to detail, and compliance experience, contributing to a robust security culture.
Qualifications
- Experience with regulatory frameworks such as NIST CSF, NIST 800-53, SOC 2, TX-RAMP, and PCI DSS.
- Hands-on compliance experience with a willingness to learn and adapt.
- Ability to conduct risk assessments and audits.
Responsibilities
- Maintain compliance tracking and conduct assessments for adherence to security programs.
- Lead audit preparations for SOC 2 Type 2 and collaborate with internal/external teams.
- Provide security training and support compliance initiatives.
Skills
Job description
Turnitin is seeking an experienced Security GRC Analyst to join our Security & Compliance team. The Sr Security GRC Analyst will be responsible for ensuring that our information and cloud systems comply with relevant regulatory frameworks, industry standards, and internal policies. They will also collaborate with various departments, monitor compliance, conduct assessments, and support initiatives to identify and mitigate risks.
We are looking for someone who brings strong analytical ability, attention to detail, effectivecommunication, compliance experience, and the willingness to continuously learn. This role requireshands-on work, critical thinking and the ability to find new solutions for compliance.
This role reports to the GRC Information Security Manager.
Responsibilities:
Maintain compliance tracking capabilities to help ensure adherence with Turnitin’s security program and industry standards such as NIST CSF, NIST 800-53, SOC 2, TX-RAMP and PCI DSS.
Conduct risk and compliance assessments, audits, and risk evaluations to identify potential risk and compliance gaps.
Lead preparation and audit activities required to maintain our SOC 2 Type 2.
Collaborate with internal teams and external auditors for audit and compliance reviews.
Collaborate with sales and customer support teams to respond to security questionnaires and security posture questions from customers.
Support TPRM Program and conduct third-party risk assessments.
Complete user access reviews.
Administration of GRC platform.
Participate in the development and documentation of security policy, standards and processes to align with company information security strategy.
Provide security awareness and phishing training for employees and promote a culture of security and compliance.
Coordinate phish testing.
Collaborate with DevOps, IT, Legal, Engineering, People Team, and other departments to ensure security control and policy requirements are integrated into systems and business processes.
Provide input on ways to improve and automate team processes.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
