AdobeNASDAQ: ADBE: Provides software for digital media creation and marketing analytics
5+ YOE5+ years GRC/InfoSec experience, knowledge of SOC/ISO/HIPAA/FedRAMP/NIST frameworks, program and audit leadership, strong communication and analytical skills.
AWS, Azure, GCP, Adobe Common Controls Framework (CCF)
Russell Investments: Provides global asset management and institutional investment advisory services.
3+ YOE3+ years in cybersecurity with security awareness and GRC, experience with phishing simulations, IAM/GRC, security questionnaires, strong communication.
DigitalOceanNew York Stock Exchange: DOCN: Simplifies cloud infrastructure for developers, startups, and SMBs.
5+ YOE5+ years GRC experience with multi-standard programs (ISO 27001/27017/22301), familiarity with SOC 2 and HIPAA, risk assessment and remediation, control design, policy authoring, and cross-functional project management.
Nordstrom: Operates luxury department stores and off-price retail outlets.
6+ YOE6+ years hands-on PCI DSS experience (3+ years owning a PCI program), deep PCI DSS v4.0 knowledge, cloud (AWS/Azure/GCP) scoping experience, hands-on control testing and QSA coordination, GRC platform experience, bachelor’s degree or equivalent.
Senior Analyst, IT Internal Controls & SOX Compliance
San Francisco or Salt Lake City or Phoenix or Los Angeles or Chicago or Boston or Austin or New York City or Miami or Tampa or Atlanta or Columbus or Boise or San Diego or Minneapolis or Houston or Raleigh or Nashville or Kansas City or Charlotte or Portland or Philadelphia or Dallas or Washington D.C. or Seattle
$113k-$148k/yrRemoteFull Time
CircleNYSE: CRCL: Digital currency issuer and blockchain financial infrastructure provider.
4+ YOE4+ years Big 4 IT audit/controls experience, Bachelor's in related field, CPA/CISA/CIA/CISSP required; strong SOX/ITGC knowledge, cloud/SaaS/SDLC/IAM experience, ERP/GRC familiarity, and stakeholder communication skills.
Slack, Apple MacOS, Google Workspace, ERP, GRC, AI
New York City or Seattle or Raleigh or San Francisco or Washington or London or Amsterdam
$134k-$214k/yrHybridFull Time
Plaid: Provides financial data connectivity and payment infrastructure via APIs.
6+ YOE6+ years in security assurance/GRC with ownership of customer-facing security workflows; experience reviewing security contract provisions; familiarity with SOC 2, ISO 27001, NIST frameworks, PCI, GLBA, GDPR/CCPA; program design, metrics ownership, and AI-assisted workflow experience.
United States or San Francisco or San Jose or New York City or Chicago or Austin or Denver or Boston or Washington or Philadelphia or Portland or Seattle or Miami or California or Alaska or Delaware or Hawaii or Idaho or Iowa or Montana or Nebraska or North Dakota or Rhode Island or South Dakota or West Virginia
$165k-$233k/yrRemoteFull Time
Calendly: Scheduling automation platform for managing meetings and appointments.
5+ YOE5+ years in compliance/GRC in a technology/SaaS environment; SOC 2 and ISO 27001 experience; knowledge of NIST, GDPR, HIPAA; experience with compliance automation platforms and UARs; strong project management and communication.
AmazonNASDAQ: AMZN: Global online retail and cloud computing technology provider.
4+ YOEMinimum 4+ years in compliance, governance, audit, risk or equivalent; bachelor's degree or equivalent; experience with regulatory filings, handling confidential information, stakeholder collaboration; preferred SQL and Excel, auditing credential, and sustainability reporting framework familiarity.
SQL, Microsoft Excel, GRC, GRI, TCFD, CSRD, GHG Protocol