Senior GRC Analyst

Remote Full-time
About Juniper SquareOur mission is to unlock the full potential of private markets. Privately owned assets like commercial real estate, private equity, and venture capital make up half of our financial ecosystem yet remain inaccessible to most people. We are digitizing these markets, and as a result, bringing efficiency, transparency, and access to one of the most productive corners of our financial ecosystem. If you care about making the world a better place by making markets work better through technology – all while contributing as a member of a values-driven organization – we want to hear from you. Juniper Square offers employees a variety of ways to work, ranging from a fully remote experience to working full-time in one of our physical offices. We invest heavily in digital-first operations, allowing our teams to collaborate effectively across 27 U.S. states, 2 Canadian Provinces, India, Luxembourg, and England. We also have a physical offices in San Francisco, New York City, Mumbai and Bangalore for employees who prefer to work in an office some or all of the time.About your roleThe GRC Analyst is responsible for supporting the organization's governance, risk management, and compliance (GRC) program. The ideal candidate will have a strong understanding and experience building scalable, right-sized risk management and compliance processes for a high-growth company. The successful candidate will also possess strong analytical and problem-solving skills, as well as excellent communication and interpersonal skills. This role will work closely with a broad set of cross-functional stakeholders within the company and should be able to build a rapport and influence towards appropriate risk management outcomes.What you’ll doGovernance (20%)Policy ManagementDevelop a comprehensive set of security and privacy policies and procedures working with Legal, HR, IT, Engineering.Update policies and procedures annually while incorporating stakeholder feedback and obtain approvalDefine and manage incoming policy exceptions on an ongoing basis to manage associated riskSecurity and Privacy Training and AwarenessDevelop and implement role and team specific security and privacy training working closely with key business partners.Manage the roll-out, escalation and completion of all security and privacy training modules.Phishing ManagementManage phishing campaigns on an ongoing basis with appropriate re-training processes baked into the processRefine existing phishing reporting processes and integrate this better with our incident management processesGRC Metrics and ReportingEnsure the GRC function meets key performance metricsRisk (40%)Risk ManagementMaintain business unit risk registers with existing teams on a monthly basis to appropriately address key risks areasCo-develop and coach business units on right-sized and right-scoped risk remediation plansWork with cross-functional teams to onboard new business units onto the risk management processThird-Party Risk ManagementContinuously improve vendor and contractor risk assessments during vendor onboarding with a defined SLA.Conduct annual vendor monitoring and re-assessment processes for existing vendorsMaintain the vendor risk register and work with vendors to reduce risk on an ongoing basisCompliance (40%)ComplianceMaintain and onboard existing/new security compliance certifications and frameworks (e.g. SOC2, ISO and others)Work with cross-functional teams to procure controls evidence to provide to external auditors timely and issue reports timely.Work cross functionally between teams and auditors to ensure a smooth and efficient audit processImprove the audit process through automation and controls rationalization year over yearMonitor and test effectiveness of compliance control health throughout the year; not just during auditsServe as a subject matter expert for all things compliance;Identify and assess business changes for relevant impacts on compliance posture (e.g. geographical expansion, internal tool replacement, new products)Customer TrustMaintain our trust center by keeping security documents and knowledge base up-to-dateSupport sales teams with open security and privacy questionsReview incoming security and privacy addendums to customer contractsSupport customer security and privacy auditsWork with Sales and Solutions engineering to coach and educate teams on our security and compliance postureQualificationsBachelor's degree in information systems, engineering, business, risk management, or a related field5+ years of experience in GRC, security, audit or a related field with past experience in managing a SOC2/ISO 27001 programKnowledge of GRC frameworks and regulationsExperience developing scalable GRC processesAbility to work on multiple GRC projects simultaneouslyAbility to partner with stakeholders collaboratively “guardrails” without having a “gated” approach to risk managementExcellent communication and interpersonal skillsCompensationCompensation for this position includes a base salary and a variety of benefits. The U.S. base salary range for this role is $135,000 to $190,000. Actual base salaries will be based on candidate-specific factors, including experience, skillset, and location, and local minimum pay requirements as applicable.Benefits include:Health, dental, and vision care for you and your familyLife insuranceMental wellness coverageFertility and growing family supportFlex Time Off in addition to company paid holidaysPaid family leave, medical leave, and bereavement leave policiesRetirement saving plansAllowance to customize your work and technology setup at homeAnnual professional development stipendYour recruiter can provide additional details about compensation and benefits.#LI-AD1

Apply Now
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

**Experienced Full Stack Data Entry Specialist – Remote Data Management and Organization**

Remote

Customer Experience Advisor- Email, Chat, Call

Remote

Remote Customer Service Representative – Work-from-Home Position with Flexible Schedule & Competitive Benefits

Remote

Associate Education Consultant Intern

Remote

Experienced Healthcare Customer Service Representative – Remote USA Opportunity for Compassionate and Tech-Savvy Individuals to Deliver Exceptional Patient Experiences

Remote

Spark Driver™ Delivery Driver

Remote

Remote WFH Full Time Customer Service Representative

Remote

Administrative Assistant (Remote)

Remote

Staff - Registered Nurse (RN) - ED - Emergency Department - Tenet

Remote

Retail Stocker

Remote
← Back