Senior GRC Analyst

About GlossGenius

GlossGenius is building an ecosystem enabling entrepreneurs to succeed.  We empower small business owners to focus on being creators, not admins, by offering a range of business management tools including booking and scheduling, marketing, analytics, payment processing and much more.

Over 80,000 small business owners have chosen to rely on GlossGenius every day to run their entire set of business operations. Joining its powerful, intuitive platform with its vibrant, distinguished brand, GlossGenius is the ideal combination of a fintech, SMB software, and consumer company all in one.

About the Role

As a Senior GRC Analyst, you play a critical role in supporting GlossGenius’s compliance efforts. This position involves implementing and maintaining governance, risk, and compliance frameworks to ensure alignment with regulatory requirements and company objectives. The ideal candidate will have extensive experience in cybersecurity compliance, risk management, and audit processes.
As a Senior GRC Analyst, you’ll work to assess regulatory requirements and work to keep us compliant with  established governance and risk frameworks. You will build and run security compliance programs, measure key metrics, and build and manage organizational policies and standards.

This role is a remote position and can be based anywhere in Canada.

What You’ll Do

• Be the first member of the Governance, Risk, and Compliance team.
• Build and run information security compliance programs aligned with broader business objectives
• Develop policies, standards, and guidelines for ensuring compliance with applicable regulatory requirements
• Write, revise, and manage company-wide information security policies, standards, and procedures.
• Perform security assessments of vendors, third parties, and applications
• Engage partner teams to  support the design and implementation of a “risk-first” governance function
• Find opportunities to improve efficiency and effectiveness, designing tools and automations along the way to drive security and compliance by design.
• Identify and assess information security risks to implement appropriate controls to mitigate identified risks, will validate control design and efficiency, and support ongoing risk monitoring and reporting.
• Be a subject matter expert in the GRC space, providing education to colleagues across GlossGenius

What We’re Looking For

• 4+ years of experience in roles focused on governance, risk management, and compliance
• A strong understanding of information security and compliance frameworks such as CCPA/CPRA, SOC 2, and HIPAA
• Experience collaborating with engineering and product teams to identify risks, map commitments to controls, and develop relevant policies
• The ability to influence cross-functional teams to accomplish goals as well as understanding and communicating risks to stakeholders across the business
• Solid organizational skills and a track record of succeeding in fast-paced environments
• Understanding of security concepts and a broad range of security risks and controls.
• Bonus: Experience building and maintaining automations to drive governance, risk, and compliance initiatives at scale
• Bonus: Understanding of public cloud infrastructure and services, such as AWS and GCP, including knowledge of cloud-native security protection measures, tools, and techniques

Benefits & Perks

• Flexible PTO
• Competitive health & dental insurance options, with premiums covered by GG
• Generous, fully-paid parental leave policy
• Professional Development - employees receive a yearly stipend for approved learning and educational-related expenses
• Home office support
• Team Bonding opportunities - as a distributed team, being able to build meaningful bonds both virtually and in person is incredibly important to us! We are constantly evaluating how we accomplish this and currently, teams are given opportunities to gather in person throughout the year

At GlossGenius, we celebrate our differences and are committed to creating a workplace where all employees feel supported and empowered to do their best work. We believe this benefits not only our employees but our product, customers, and community as well. GlossGenius is proud to be an Equal Opportunity and Affirmative Action Employer.