Senior GRC Analyst

About GlossGenius

GlossGenius is building an ecosystem enabling entrepreneurs to succeed.  We empower small business owners to focus on being creators, not admins, by offering a range of business management tools including booking and scheduling, marketing, analytics, payment processing and much more. 

Over 80,000 small business owners have chosen to rely on GlossGenius every day to run their entire set of business operations. Joining its powerful, intuitive platform with its vibrant, distinguished brand, GlossGenius is the ideal combination of a fintech, SMB software, and consumer company all in one.

About the Role

As a Senior GRC Analyst, you play a critical role in supporting GlossGenius’s compliance efforts. This position involves implementing and maintaining governance, risk, and compliance frameworks to ensure alignment with regulatory requirements and company objectives. The ideal candidate will have extensive experience in cybersecurity compliance, risk management, and audit processes.
As a Senior GRC Analyst, you’ll work to assess regulatory requirements and work to keep us compliant with  established governance and risk frameworks. You will build and run security compliance programs, measure key metrics, and build and manage organizational policies and standards.

This role is a remote position and can be based anywhere in the continental United States.  For candidates based in the NYC area, we are operating in a hybrid environment (Tuesdays & Thursdays in-office).

What You’ll Do

• Be the first member of the Governance, Risk, and Compliance team.
• Build and run information security compliance programs aligned with broader business objectives
• Develop policies, standards, and guidelines for ensuring compliance with applicable regulatory requirements
• Write, revise, and manage company-wide information security policies, standards, and procedures.
• Perform security assessments of vendors, third parties, and applications
• Engage partner teams to  support the design and implementation of a “risk-first” governance function
• Find opportunities to improve efficiency and effectiveness, designing tools and automations along the way to drive security and compliance by design.
• Identify and assess information security risks to implement appropriate controls to mitigate identified risks, will validate control design and efficiency, and support ongoing risk monitoring and reporting.
• Be a subject matter expert in the GRC space, providing education to colleagues across GlossGenius

What We’re Looking For

• 4+ years of experience in roles focused on governance, risk management, and compliance
• A strong understanding of information security and compliance frameworks such as CCPA/CPRA, SOC 2, and HIPAA
• Experience collaborating with engineering and product teams to identify risks, map commitments to controls, and develop relevant policies
• The ability to influence cross-functional teams to accomplish goals as well as understanding and communicating risks to stakeholders across the business
• Solid organizational skills and a track record of succeeding in fast-paced environments
• Understanding of security concepts and a broad range of security risks and controls.
• Bonus: Experience building and maintaining automations to drive governance, risk, and compliance initiatives at scale
• Bonus: Understanding of public cloud infrastructure and services, such as AWS and GCP, including knowledge of cloud-native security protection measures, tools, and techniques

Benefits & Perks

• Flexible PTO
• Competitive health & dental insurance options, with premiums partially or fully covered by GG
• In-person opportunities that are designed to help team members foster collaboration and build community (ie; working out of a co-working space, team dinners, and other team building activities)
• Fertility and adoption benefits via Carrot
• Generous, fully-paid parental leave policy
• 401k benefit - employees are eligible to contribute starting day 1 of employment
• Professional Development - employees receive a yearly stipend for approved learning and educational-related expenses
• Pre-tax commuter benefits
• Dependent Care FSA
• Home office support

The starting base salary for this role in New York, California, and Washington is between ($160,000-$180,000) + target equity + benefits. The base salary offered is dependent upon many factors including skills, experience, location, and education. The base pay range is subject to change and may be modified in the future.  Additionally, this role is currently eligible to participate in GlossGenius’s equity plan as well as a range of health & wellbeing, retirement savings, and other benefits within our total rewards offering.

At GlossGenius, we celebrate our differences and are committed to creating a workplace where all employees feel supported and empowered to do their best work. We believe this benefits not only our employees but our product, customers, and community as well. GlossGenius is proud to be an Equal Opportunity and Affirmative Action Employer.