Governance, Risk and Compliance (GRC) Analyst

We’ve earned numerous awards and top rankings for our technology, our culture and our people. Reltio was founded on a distributed workforce and offers flexible work arrangements to help our people manage their personal and professional lives. If you’re ready to work on unrivaled technology where your desire to be part of a collaborative team is met with a laser-focused mission to enable digital transformation with connected data, let’s talk!

How You Make a Difference:

As a member of the Information Security team, the GRC analyst will be responsible for managing the third party security assessment process for new and existing vendors / products, day to day compliance and risk management functions.

This analyst will support management of organizational policies, procedures and standards, including Reltio’s business continuity framework, in support of legal and regulatory compliance needs as well as organizational information security practices.

What You Bring to the Team:

●      Manage and/or contribute to control documents and deliverables associated with governance, compliance, risk management, business continuity and disaster recovery.

●      Lead Reltio’s annual SOC 1, SOC 2 and HITRUST re-certification assessments.

●      Perform security and compliance assessments on new and existing vendors, systems, processes and technology.

●      Drive the maintenance and upkeep of Reltio’s Risk Register, which includes evaluating likelihood and impact and identifying mitigating controls to determine inherent and residual risk to systems

●      Contribute responses to customer questionnaires

●      Conduct independent research on GRC-related topics and present findings to management

●      Conform to shifting priorities, demands and timelines and make adjustments to effectively prioritize and execute tasks in a fast-paced, dynamic, environment

●      Coordinate with business leads and vendors when completing third party security assessments

●      Lead the efforts of updating the Risk Register as the risk landscape changes over time

●      Contribute content to Reltio’s suite of policies, operating procedures and business continuity deliverables

●      Collect evidence for SOC 1, SOC2, and HITRUST re-certifications annually

●      Coach junior team member(s) to provide guidance on compliance initiatives and oversight on projects

●      Apply critical thinking/problem solving skills at a higher level of complex issues and interface with senior level team members

●      Participate in and contribute to cross functional project teams

●      Recommend and lead business process improvements

Skills You Must Have:

●      Bachelor of Science degree in Computer or Information Science or related field of study

●      5+ years experience in security risk management, analysis, modeling

●      General understanding of audit methodologies and processes

●      Experience working with virtual teams in a global environment

●      Strong communication and presentation skills

●      Adaptable and agile

●      Good interpersonal, partnership and leadership skills (without direct authority of others)

●      Experience with industry frameworks such as SOC1, SOC2, HITRUST, ISO, NIST, etc.

●      Project Management

●      Working knowledge of team and project development tools such as JIRA, Google Workspaces, MS Office

●      Experience with cloud-based systems (AWS, Azure, GCP)