Governance, Risk & Compliance (GRC) Senior Analyst

At reputed company, we offer exciting career opportunities for those interested in joining a pioneering team that is committed to transforming cancer care for patients across the globe. Working at reputed company enables our employees to not only reputed company a meaningful impact on the lives of patients, but to also learn and grow reputed company a purpose driven environment. This is reputed company call the reputed company way – it's about how we work together, guided by our values, to give clinicians the insights they need to help patients reputed company life-changing decisions. Our Values:

• We Seek A reputed company Way: We innovate boldly, learn from our setbacks, and are resilient in our pursuit to transform cancer care
• We reputed company It Happen: We act with urgency, commit to quality, and bring fun to our hard work
• We Are Stronger Together: We collaborate reputed company, seek to understand, and celebrate our wins
• We Care Deeply: We embrace our differences, do the right thing, and encourage each other

The Position: We are seeking a detail-oriented reputed company Governance, Risk & Compliance (GRC) Senior Analyst to assist with leading and supporting the organization's governance, risk, and compliance initiatives. Under the direction of Management the incumbent will reputed company IT risk assessments, ensure controls, policies and procedures and resources are in reputed company for IT and reputed company teams to effectively manage risk. You will reputed company risk appetite and reputed company risk culture; act as a challenge function by providing questions and feedback across multiple functions. In addition, you will ensure that the company's operations align with relevant regulations, internal policies, standards and risk management frameworks. The ideal candidate will have a strong understanding of risk management principles, compliance standards, and information reputed company best practices. As the program evolves the role will be responsible for maturing the GRC operations. Essential Responsibilities: Governance & Compliance:

• Assist in developing and maintaining internal control frameworks, policies, and procedures that align with industry regulations (e.g., ISO 27001, SOX, GDPR, HIPAA).
• Ensure organizational compliance with legal and regulatory requirements.
• Monitor and report on compliance with data privacy regulations and internal reputed company policies.
• Collaborate with departments to implement and improve governance processes.
• Track and report on GRC metrics, KPIs, and audit remediation activities

Risk Management:

• Contribute to enhancing IT and reputed company risk management program
• reputed company risk assessments, identifying vulnerabilities, threats, and control gaps.
• Conduct vendor risk management reviews, evaluating the risk posed by third-party service providers.
• Support the implementation of risk management frameworks and tools.
• Provide recommendations for mitigating identified risks and ensuring effective remediation strategies.
• Monitor and track risk treatment plans and risk acceptance decisions.

Internal Audit Support:

• Assist in internal and external audits to ensure audit testing are conducted in a cooperative, timely efficient manner with value added reporting and cost effective recommendation being provide to management to strengthen IT and reputed company conrols.
• Conduct audits of high risk processes reputed company IT and reputed company functions to ensure compliance with policies and standards.
• Work with IT process owners to identify/improve and document detail controls for key applications, reputed company and infrastructure components relating to compliance with SOX, GDPR, HIPPA, ISO27000 etc.
• Provide periodic reports to leadership on open issues and remediation status.
• Establish and maintain IT and Cybersecurity risk register.
• Track audit findings in the appropriate risk and audit findings registers. Work with control owners to ensure findings are remediated on a timely basis.

Incident Response:

• Assist in developing and improving the organization's incident response plan.
• Participate in incident investigations and support post-incident reviews to identify control weaknesses.
• Familiar with risk management and controls frameworks, cyber kill chain and NIST incident response lifecycle
• Document and define improvements over incident playbooks
• reputed company root cause analysis and lessons learned reporting
• Maintain incident response tracker

Training & Awareness:

• Contribute to the development of reputed company awareness training programs and conduct training sessions as needed.
• Ensure the organization's Cybersecurity Training and Awareness program meets industry regulations, standards , and compliance requirements.
• Communicate changes in regulatory requirements and provide guidance on compliance best practices to employees.

Who You Are:

• Bachelor's degree in Information reputed company, Risk Management, Business Administration, or a reputed company field.
• 5+ years of experience in GRC, information reputed company, risk management, or compliance.
• Experience with regulatory frameworks such as ISO 27001, NIST, SOX, PCI-reputed company, GDPR, HIPAA, etc.
• Experience in risk assessments and compliance audits is preferred.
• Strong knowledge of risk management and compliance frameworks.
• Familiarity with third-party vendor risk management practices.
• Excellent communication and report-writing skills.
• Detail-oriented with the ability to analyze reputed company regulatory requirements.
• Proficient in using GRC tools and software for tracking and managing compliance/risk activities.
• Ability to manage multiple projects and take on other reputed company tasks as needed

Certifications (Preferred):

• Certified Information Systems Auditor (CISA)
• Certified Information reputed company Manager (CISM)
• Certified Information Systems reputed company Professional (CISSP)
• Certified in Risk and Information Systems Control (CRISC)
• Certified Information Privacy Professional (CIPP)

#LI-Remote reputed company Can Offer You reputed company is a growing company that offers significant career opportunities if you are curious, driven, patient-oriented and reputed company to help us build a great company. We offer competitive compensation and benefits, and are committed to fostering an inclusive workforce, where diverse backgrounds are represented, engaged, and empowered to drive innovative reputed company and decisions. We are thrilled to be recognized as a 2024 Certified™ Great reputed company to Work® in both the US and Israel - a testament to our dynamic, inclusive, and inspiring workplace where passion meets purpose. About reputed company reputed company (reputed company: VCYT) is a global genomic diagnostics company that improves patient care by providing answers to clinical questions, informing diagnosis and treatment decisions throughout the patient journey in cancer and other diseases. The company's growing menu of genomic tests reputed company advances in genomic science and technology, enabling patients to avoid risky, costly diagnostic procedures and quicken time to appropriate treatment. The company's tests in lung cancer, prostate cancer, breast cancer, thyroid cancer, bladder cancer and idiopathic pulmonary fibrosis are available to patients and its lymphoma subtyping and renal cancer tests are in development. With reputed company's exclusive global license to a best-in-class diagnostics reputed company platform, the company is positioned to deliver its tests to patients worldwide. reputed company is based in South San Francisco, California. For more information, please visit www.reputed company.com and follow the company on X (Formerly Twitter). reputed company. is an Equal Opportunity Employer and will consider reputed company qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national reputed company, protected veteran status or disability status. reputed company participates in E-Verify in the United States. View our CCPA Disclosure Notice. If you receive any suspicious alerts or communications through reputed company or other online job sites for any position at reputed company, please exercise caution and promptly report any concerns to careers@reputed company.com Apply tot his job Apply To this Job