Security GRC Analyst II

About the position The Security GRC Analyst II supports the organization’s data protection and governance programs by implementing security tools, maintaining compliance with data protection requirements, and assisting in the investigation of incidents involving sensitive information. This role also contributes to risk assessments, supports policy and control development, helps monitor third‑party security risks, and participates in audit and compliance activities to strengthen the organization’s overall security posture. At ZOLL, we're passionate about improving patient outcomes and helping save lives. We provide innovative technologies that make a meaningful difference in people's lives. Our medical devices, software and related services are used worldwide to diagnose and treat patients suffering from serious cardiopulmonary and respiratory conditions. The Security Governance Analyst plays a key role in managing and enhancing the organization's data protection and governance efforts. This position involves implementing advanced security tools, ensuring compliance with data protection regulations, and investigating incidents involving sensitive information.

Responsibilities

• Configure, manage, and optimize data protection tools such as DLP solutions, encryption technologies, and cloud security controls.
• Conduct data discovery and classification to identify high-risk assets.
• Investigate and respond to data breaches and incidents involving sensitive information.
• Configure, manage, and optimize data protection tools such as DLP solutions, encryption technologies, and cloud security controls.
• Conduct data discovery and classification to identify high-risk assets.
• Investigate and respond to data breaches and incidents involving sensitive information.
• Lead governance projects
• Analyze alerts and logs to identify data-related security incidents.
• Provide recommendations for mitigating risks and improving controls.
• Collaborate with IT and legal teams during forensic investigations.
• Develop and deliver targeted training sessions on data governance and protection.
• Support security training application and end user follow up.
• Act as a resource for employees seeking guidance on handling sensitive data.

Requirements

• Bachelor's Degree in cybersecurity, IT, or a related field
• 5+ years in cybersecurity with a focus on data protection or governance
• Knowledge, Skills and Abilities
• Proficiency with data protection concepts and tools (e.g. DLP, encryption).
• Solid understanding of security frameworks (e.g. PCI, GDPR, HITRUST, ISO 27001 & NIST 800-53, NIST 800-161)
• Strong communication, analytical, and problem-solving abilities.
• Ability to motivate and influence behavior change across all levels of the organization.
• Strong time management skills and attention to detail.
• Creative problem-solving and adaptability to emerging security challenges.
• Strong communication skills (written and oral).
• Technical expertise with Microsoft Purview or related security tools.

Apply tot his job Apply To this Job