Security and Privacy Compliance Analyst

Job Summary

A company is looking for a GRC Analyst to help safeguard organizational and customer data through governance, risk, and compliance programs.

Key Responsibilities

• Lead the management of security compliance frameworks such as SOC 2 Type II and ISO 27001
• Govern global data privacy operations to ensure compliance with GDPR, CCPA/CPRA, and other data protection laws
• Serve as the primary security liaison for enterprise customers and manage the internal audit program

Required Qualifications

• 3+ years of experience in IT Audit, Information Security, Privacy Operations, or GRC
• Hands-on experience with compliance frameworks (SOC 2, ISO 27001) and global privacy legislation (GDPR, CCPA)
• Understanding of cloud computing architectures (AWS, Azure, GCP) and ERP systems
• Bachelor's degree in Information Systems, Cybersecurity, Business, or a related field
• Relevant industry certifications such as CISA, CISM, CIPP/E, CIPP/US, or Security+ are preferred