Governance Risk and Compliance Specialist
Why You Matter
At Red Canary, the protection of our customers and their data is of the utmost importance. Red Canary’s Governance, Risk & Compliance (GRC) team ensures that our people, platforms, and data remain secure from all forms of harm. As a Compliance Specialist, you will help ensure that our controls, policies, and procedures are designed and executed to deliver the best possible outcomes for Red Canary and our customers. The Governance, Risk and Compliance (GRC) Specialist is responsible for day to day activities across the entire scope of Red Canary’s GRC programs.
Who You Are
- expertly identifies, articulates, and designs mitigating strategies around risks.
- can seamlessly context-shift between various compliance and regulatory frameworks, with solid experience with SOC 2 and ISO 27001, specifically.
- speaks the language of auditors, but can articulate modern technological paradigms (i.e., infrastructure-as-code, CI/CD, etc.).
- has outstanding written and verbal communication skills.
- understands the balance between policy and culture; someone who can ensure safety without impeding the creative whirlwind.
- understands the unique risks presented by cloud-native architecture, and compliance and audit strategies for environments heavily reliant on SaaS
- has experience, or interest, in applying automation to the collection and presentation of compliance data.
What You'll Do
- Contribute to all internal governance, risk and compliance activities.
- Work with business unit leads to improve guardrails to make compliance transparent, simple, and easy.
- Ensure that policies and controls are effective, while aligning them to company culture and all applicable compliance requirements.
- Schedule, prepare for, and lead annual SOC 2 Type II and ISO 27001 audit activities.
- Respond to customer, partner or vendor questionnaires in support of the sales team and contractual obligations.
- Deliver security awareness training that is both relevant and instructive.
- Automate the collection and presentation of auditing data for internal and external consumption.
Additional benefits of working at Red Canary include:
- Exceptional healthcare and dental coverage including fully paid premiums.
- Flexible PTO and leave time
- 401k and flex-spending accounts
- Fitness, phone, internet, and discretionary stipends
Why Red Canary
Red Canary was founded to make security for every business better by protecting organizations around the world from cyber threats. Our combination of market defining technology, processes, and expertise delivered using an innovative SaaS model is preventing breaches every day.
Red Canary’s Information Security team is chartered with protecting our customers by protecting Red Canary.
Individuals seeking employment at Red Canary are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.