Current jobs related to Lead GRC Analyst - New York, New York - Justworks

  • Senior Civil Engineer

    2 weeks ago

    New York, New York, United States Gedeon GRC Consulting Full time

    About the RoleGedeon GRC Consulting is seeking a highly skilled Senior Civil Engineer to lead our project teams in designing and delivering complex civil projects. As a key member of our team, you will be responsible for overseeing the coordination and supervision of project teams to ensure timely and accurate delivery of designs.Key ResponsibilitiesProject...

  • Lead Civil Engineer

    4 weeks ago

    New York, New York, United States Gedeon GRC Consulting Full time

    Gedeon GRC Consulting is seeking a highly motivated and experienced Lead Civil Engineer to oversee all aspects of civil engineering projects from conception to completion. The ideal candidate will possess a strong understanding of project management principles, design techniques, and regulatory requirements. As the Lead Civil Engineer, you will play a...

  • Assurance Analyst Lead

    5 days ago

    New York, New York, United States ROKT Full time

    About the RoleWe are seeking an experienced Assurance Analyst Lead to join our Governance, Risk, and Compliance (GRC) function in our New York office. As a key member of our team, you will be responsible for leading major initiatives around internal and external audits, ensuring compliance across a wide range of initiatives and domains.Key...

  • GRC Security Specialist

    2 days ago

    New York, New York, United States Insight Global Full time

    Job DescriptionAn international law firm is seeking a GRC Security Specialist to join their Security team responsible for managing risks related to security, privacy, and compliance, as well as interacting directly with clients.The Firm has more than 1,300 lawyers and has offices that span the globe from Boston, New York, Beijing, Brussels, Hong Kong,...

  • Lead Civil Engineer

    4 weeks ago

    New York, New York, United States Gedeon GRC Consulting Full time

    Gedeon GRC Consulting is seeking a highly experienced Senior Civil Engineer to contribute to our growing team of infrastructure specialists. This role demands a dedicated professional with a proven track record in highway and roadway design, stormwater management, and project leadership. As a key member of our engineering division, you will be responsible...

  • GRC Security Specialist

    1 week ago

    New York, New York, United States NetCov Full time

    Job DescriptionNetCov is seeking a highly skilled Compliance Risk Analyst to join our growing Security Team. As a key member of our Governance, Risk, and Compliance (GRC) Team, you will play a critical role in ensuring the security and compliance of our clients' systems and data.Key Responsibilities:Interface with clients to understand their security and...

  • Lead Assurance Analyst

    4 weeks ago

    New York, New York, United States ROKT Full time

    Join Rokt, a leader in hyper-growth ecommerce. We empower businesses to extract value by ensuring each transaction is relevant at the critical moment of purchase. Our AI-driven relevance platform and expansive ecommerce network facilitate billions of transactions globally. The engineering team at Rokt develops cutting-edge ecommerce technology that delivers...

  • Bridge Engineering Leadership Position

    3 weeks ago

    New York, New York, United States Gedeon GRC Consulting Full time

    About the RoleGedeon GRC Consulting is seeking a highly skilled and experienced Director of Bridge Engineering to lead our bridge design team. As a key member of our organization, you will be responsible for managing multiple project designs for complex highway bridge projects.Key ResponsibilitiesClient Management: Interact with clients to ensure their...

  • Director of Civil Engineering

    2 weeks ago

    New York, New York, United States Gedeon GRC Consulting Full time

    About the RoleGedeon GRC Consulting is seeking a highly skilled and experienced Director of Civil Engineering to lead our Civil Engineering Department. As a key member of our team, you will be responsible for overseeing the planning, design, and implementation of engineering projects to ensure timely and efficient completion.Key ResponsibilitiesProject...

  • Senior Civil Engineer

    5 days ago

    New York, New York, United States Gedeon GRC Consulting Full time

    Senior Civil EngineerGedeon GRC Consulting is seeking a highly skilled Senior Civil Engineer to lead our team in designing and developing innovative civil projects. As a key member of our team, you will be responsible for overseeing the coordination and supervision of project teams to create detailed designs for civil projects.Key Responsibilities:Project...

  • Senior Risk Management Analyst

    4 weeks ago

    New York, New York, United States Saxon Global Full time

    Saxon Global is on the lookout for a seasoned Governance, Risk, and Compliance (GRC) Business Analyst to collaborate with the Head of GRC. This role is pivotal in engaging with stakeholders across various operational lines to establish and communicate Saxon Global's governance, risk management, and compliance controls framework, strategy, and ecosystem. The...

  • Senior Civil Engineer

    3 weeks ago

    New York, New York, United States Gedeon GRC Consulting Full time

    About the RoleGedeon GRC Consulting is seeking a highly skilled Senior Civil Engineer to lead our highway design and project management initiatives. As a key member of our team, you will be responsible for overseeing the coordination and supervision of project teams to deliver high-quality civil projects.Key ResponsibilitiesProject Coordination and...

  • Senior Transportation Infrastructure Engineer

    3 weeks ago

    New York, New York, United States Gedeon GRC Consulting Full time

    Gedeon GRC Consulting is seeking a highly skilled Senior Traffic Engineer to contribute to our team of experts. This role focuses on the planning, design, and implementation of transportation infrastructure projects across New York City, New York, and New Jersey. As a Senior Traffic Engineer, you will play a pivotal role in managing and executing projects,...

  • Senior Traffic Engineer

    2 weeks ago

    New York, New York, United States Gedeon GRC Consulting Full time

    Job SummaryGedeon GRC Consulting is seeking a highly skilled Senior Traffic Engineer to lead our transportation infrastructure projects in NYC and NJ. As a key member of our team, you will be responsible for supervising and developing plans for public and private transportation infrastructure projects.Key ResponsibilitiesProject Management: Manage and...

  • Security Issues Analyst

    3 days ago

    New York, New York, United States Shuvel Digital Full time

    Job Title: Security Issues AnalystShuvel Digital is seeking a highly skilled Security Issues Analyst to support the Operational Risk Management (ORM) role for Issue Management. The ideal candidate will have experience in risk management, risk and control self-assessments (RCSA), standards, and enterprise Governance, Risk and Compliance (GRC) tool...

  • Cyber Security Risk Analyst

    2 weeks ago

    New York, New York, United States Aventurine Technologies Inc Full time

    Job Title: Cyber Security Risk AnalystLocation: RemoteDuration: Full-time ContractJob Summary:Cyber Security Risk Analyst is responsible for reviewing and resolving security findings within an organization. Here are the typical duties and responsibilities for this role:Key Responsibilities:Risk and Vulnerability Assessments: Conduct risk and vulnerability...

  • Senior Traffic Engineer

    2 weeks ago

    New Hyde Park, New York, United States Gedeon GRC Consulting Full time

    Job SummaryGedeon GRC Consulting is seeking a highly experienced Senior Traffic Engineer to lead the development of transportation infrastructure projects in NYC and NJ. The ideal candidate will have a strong background in traffic engineering, project management, and leadership.Key ResponsibilitiesProject Management: Supervise and develop plans for public...

  • SAP Governance, Risk, and Compliance Analyst

    4 weeks ago

    New York, New York, United States Mastech Digital Full time

    Position: SAP GRC Access Control & Security ComplianceCompany: Mastech DigitalOverview:We are seeking a knowledgeable professional in SAP GRC Access Control to enhance our security compliance efforts. The ideal candidate will have a strong understanding of GRC AC and the ability to analyze controls and segregation of duties (SOD) effectively.Key...

  • Senior Governance Risk and Compliance Analyst

    4 weeks ago

    New York, New York, United States Ascot Group Full time

    Job Overview This role presents an exciting opportunity within Ascot Group, a leading organization in specialty risk underwriting. As a modern enterprise operating through a network of interconnected global platforms, we are united by a shared mission: One Ascot. Our greatest asset is our talented workforce, thriving in a collaborative, inclusive, and...

  • Lead IRM Solutions Architect

    4 weeks ago

    New York, New York, United States Infosys Consulting Full time

    IRM Solutions Architect (ServiceNow)About the RoleAs a seasoned ServiceNow IRM Solutions Architect, you will spearhead, strategize, and execute ServiceNow GRC initiatives. You will act as the primary technical expert contributing to the configuration, development, support, and upkeep of the ServiceNow IRM deployment. Your expertise in ServiceNow IRM module...

Lead GRC Analyst

4 months ago

New York, New York, United States Justworks Full time
Who We Are

At Justworks, you'll enjoy a welcoming and casual environment, great benefits, wellness program offerings, company retreats, and the ability to interact with and learn from leaders in the startup community. We work hard and care about our most prized asset - our people.

We're helping businesses get off the ground by enabling them to focus on running their business. We solve HR issues. We're data-driven and never stop iterating. If you'd like to work in a supportive, entrepreneurial environment, are interested in building something meaningful and having fun while doing it, we'd love to hear from you.

We're united by shared goals and shared motivations at Justworks. These are best summed up in our company values, which are reflected in our product and in our team.

Our Values

If this sounds like you, you'll fit right in.


Who You Are

Justworks is seeking an exceptional Lead Security Risk Analyst to join our Governance Risk & Compliance (GRC) team. The Lead Security Risk Analyst will work cross-functionally with all areas of the company to develop security safeguards and countermeasures to protect Justworks assets, employees and customers. The Lead Security Risk Analyst will report to the Senior Manager, Governance Risk & Compliance and liaise with other teams across Digital Security.

Your Success ProfileWhat You Will Work On

  • Work with the GRC leader to provide guidance and solutions that protect Justworks, our products, customers and employees.
  • Support GRC leader to build GRC strategy and multi-year roadmaps to mature Justwork's GRC function.
  • Provide technical leadership to build GRC's capabilities such as cyber risk management, vendor security assessment, security training and communications, and our compliance program.
  • Assist GRC leader to define Justworks risk management framework, leveraging NIST 800-53, CIS and others.
  • Work with GRC leader to develop the compliance program for both regulatory compliance such as SOC2, GDPR, and compliance to our Justworks policies and standards.
  • Monitor and analyze changes in relevant regulations and industry standards such as CCPA, GDPR, adapting company policies and procedures as needed.
  • Partner with Engineering, IT, People, and Finance on control requirements and evidence production proactively in anticipation of SOC2/SOx, and customer audits.
  • Lead and drive security assessments to enable the global Justworks to identify, assess, treat and monitor (via risk register) cybersecurity risks.
  • Oversee findings brought forward through the risk reporting and risk exception process and report to security leadership where gaps exist.
  • Collaborate with all stakeholders across the company to provide risk visibilities, and more importantly to lead and drive the mitigation of cyber risks.
  • Drive on-going security assessments to enable the global Justworks to identify, assess, treat and monitor cybersecurity risks.
  • Build a risk aware culture by maturing existing risk management processes to monitor, track, measure and report cyber risks.
  • Partner with stakeholders when onboarding vendor solutions to ensure adequate controls are available and enabled in production.
  • Build a robust vendor risk management program, including evaluating software supply chain security, vendor security assessments, and assurance vendor incident reporting.
  • Oversee vendor relationship for applicable third party vendors providing service delivery of GRC related functions including but not limited to vendor management, security awareness training, GRC management and others.
  • Engage with organizational stakeholders to develop and implement engaging and effective security and compliance training programs.
  • Drive timely & effective communication via collaboration with various stakeholders including IT, Cyber Defense Operations, Security Architecture & Engineering, People Operations, Customer Service and Marketing.
  • Provide mentorship and day-to-day support to GRC analysts to enable the team to deliver best work and develop their professional skills.
  • Work with the Security Architecture and Engineering team to identify and implement missing capabilities for GRC to mature and advance GRC's capabilities.
  • Perform other related duties as assigned.

How You Will Do Your Work

As a Lead Security Risk Analyst, how results are achieved is paramount for your success and ultimately result in our success as an organization. In this role, your foundational knowledge, skills, abilities and personal attributes are anchored in the following:

  • Good judgment - the exercise of critical thinking, analyzing and assessing problems and implications, identifying patterns, making connections of underlying issues, understanding risks and developing mitigation strategies, and taking ownership of the outcome.
  • Resourcefulness - taking a can-do approach, even in the face of obstacles and constraints by assessing what's in front of you and effectively and efficiently optimizing what you have, whether it's working on something new or thinking about how to do something better.
  • Teamwork and communication - putting our collective best together through documentation, collaboration, relationship-building, listening, empathy, recruiting, and evangelism.
  • Influence and leadership - fostering a community of knowledge-sharing, collaboration, mentorship, and forward-thinking.
  • Skills and knowledge - the capacity to actively learn and apply specific domain knowledge, know-how, and best practices to continually enhance and improve.

In addition, all Justworkers focus on aligning their behaviors to our core values known as COGIS. It stands for:

  • Camaraderie - Day to day you can be seen working together toward a higher purpose. You like to have fun. You're an active listener, treat people respectfully, and have a strong desire to know and help others.
  • Openness - Your default is to be open. You're willing to share information, understand other perspectives, and consider new possibilities. You're curious, ask open questions, and are receptive to thoughts and feedback from others.
  • Grit - You demonstrate grit by having the courage to commit and persevere. You're committed, earnest, and dive in to get the job done well with a positive attitude.
  • Integrity - Simply put, do what you say and say what you'll do. You're honest and forthright, have a strong moral compass, and strive to match your words with your actions while leading by example.
  • Simplicity - Be like Einstein: "Everything should be made as simple as possible, but no simpler."

Qualifications

  • At least 7+ years' experience directly in cybersecurity fields, with a demonstrated track record of leading complex GRC projects in at least two of the following areas: cyber risk management, vendor security management, policy & compliance, security awareness and communication
  • A deep understanding of risk assessment methodology, NIST 800-53, CIS, and associated security and privacy rules
  • Strong knowledge and experience with operational risk management, covering the full lifecycle of activities, including risk identification, assessment, mitigation, monitoring, and reporting
  • Functional knowledge of security domains and information security industry standard and best practices
  • Strong knowledge of third-party assessments, IT risk management, regulatory requirements and compliance and its overall business processes, controls and risk exposure
  • Ability to identify and recommend tools, processes, and software to automate and continuously improve security and compliance practices.
  • Previous experience with GRC solutions - Archer, Workiva, LogicGate etc
  • Technical understanding of cloud-based security in an AWS environment
  • Proven track record as a strong communicator both in written and oral presentations; capable of rapidly creating detailed, yet concise documentation
  • Proven analytical abilities and using data/facts for decision-making
  • Exceptional organizational skills with the ability to prioritize and manage multiple projects at the same time.
  • A self-motivated person who can influence and drive cross-functional teams, promoting timely and effective communication
  • Good organizational skills, proactive and self-sufficient with a proven ability to work independently and prioritize deliverables
  • Security Certifications of CISSP, CISM, CRISC, CISA a plus

The base wage range for this position based in our New York City Office is targeted at $192,500.00 to $211,750.00 per year.

#LI-AD1 #LI-Hybrid #LI-JS1


Actual compensation is based on multiple factors that are unique to each candidate, including and not limited to skill set, level of relevant experience, and specific work location. Salary ranges for positions based in other locations may differ based on the cost of labor in that location.

For more information about Justworks' Total Reward Philosophy, including all of the perks and benefits we are proud to offer our team members, please visit Total Rewards @ Justworks.

Diversity At Justworks

Justworks is committed to maintaining a workplace where diversity of identity, culture, and life experience is the norm and is celebrated authentically and respected consistently. Diversity in our work, our people, and our product drives creativity and innovation, entrepreneurial leadership and integrity, competitiveness, and collaboration throughout our business and in the market. We depend on our differences to make our team stronger, our workplace more dynamic, and our product accessible to all of our customers.

We're proud to be an equal opportunity employer open to all qualified applicants regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital or familial status, disability, pregnancy, gender identity or expression, veteran status, genetic information, or any other legally protected status. Justworks is fully dedicated to providing necessary support to candidates with disabilities who may require reasonable accommodations. We also provide reasonable accommodations to employees based on their sincerely held religious beliefs, as well as for other covered reasons consistent with applicable federal, state, and local laws. If you're in need of a reasonable accommodation, please reach out to us at Your comfort and success matter to us, and we're here to ensure an inclusive experience.

Our DEIB Report and Our DEI Commitment