Governance, Risk, and Compliance Audit Analyst #1819

The GRC Analyst, professional level 2, of the Security Operations and Compliance subfamily of the IS and Compliance job family, is responsible for the organization's information security, compliance, and risk management programs to safeguard internal company data and the data of our clients. 

The Security Operations and Compliance subfamily is responsible for the management of the company's information security policies, processes, and toolsets; vendor risk management in terms of their information security practices; audit; and compliance with internal security policies, government regulations, vendor security requirements, and customer security requirements. The GRC Analyst will conduct risk assessments for systems, products, and vendors to ensure compliance with government agencies and customer requirements. The professional level 2 role will Answer client and vendor questions regarding the company's compliance with information security standards. The role will build and lead the day-to-day security and privacy compliance, governance, and risk management functions at a fast-growing SaaS startup.  

Responsibilities 

•The GRC Analyst will lead auditors through evidence collection and observations

•Expected to be responsible for customer satisfaction with compliance responses

•Responsible for leading risk remediation methods and identification tactics

•The GRC Analyst will work with cross-functional teams to build and operate controls and processes that satisfy an array of security and privacy-related regulatory requirements

•The role will facilitate risk assessments, maintain a risk register, and proactively communicate risk with management

•Expected to lead the response to customer security questionnaires, RFPs, and inquiries about our Security & Compliance program

Qualifications: Knowledge, Skills, and Abilities 

•Ability to determine a course of action based on guidelines and adapt processes and methods as required. 

•Exercise judgment within defined procedures and practices to determine appropriate actions. 

•Build productive internal and external working relationships to resolve mutual problems through collaboration. 

•Bachelor’s degree and 2-4 years of related experience or equivalent work experience. 

MeridianLink has a wonderful culture where people value the work they do and appreciate each other for their contributions. We develop our employees so they can grow professionally by preferring to promote from within. We have an open-door policy with direct access to executives; we want to hear your ideas and what you think. Our company believes that to be productive in the long term, we must have a genuine work-life balance. We understand that employees have families and full lives outside of the office. To that end, we honor their personal commitments.

MeridianLink is an Equal Opportunity Employer. We do not discriminate based on race, religion, color, sex, age, national origin, disability, or any other characteristic protected by applicable law. 

MeridianLink runs a comprehensive background check, credit check, and drug test as part of our offer process.

Salary range of $74,300 to $101,100 (It is not typical for offers to be made at or near the top of the range.) The actual salary will be determined based on experience and other job-related factors permitted by law including geographical location.

Meridianlink offers:

Stock options or other equity-based awards

Insurance coverage (medical, dental, vision, life, and disability)

Flexible paid time off

Paid holidays

401(k) plan with company match

Remote work

All compensation and benefits are subject to the terms and conditions of the underlying plans or programs, as applicable and as may be amended, terminated, or superseded from time to time. 

#LI-REMOTE