GRC Analyst

Location: Essex Junction

Job Description:

Data Robot delivers AI that maximizes impact and minimizes business risk. Our platform and applications integrate into core business processes so teams can develop, deliver, and govern AI aRobot empowers practitioners to deliver predictive and generative AI, and enables leaders to secure their AI assets. Organizations worldwide rely on Data Robot for AI that makes sense for their business — today and in the future.

The GRC Analyst will collaborate with process owners, auditors, and other stakeholders to support the Data Robot Information Security Team in reviewing, monitoring, and resolving audit and security-related findings. This includes helping the GRC Lead manage ISO
27001,SOC 2 & HIPAA Compliance programs. By supporting the implementation and maintenance of compliance automation tooling, as well as internal and external assessments within the contexts of customer risk management programs and compliance audits for regulations and standards including SOC2, ISO 27001, and other GRC activities, the GRC Analyst will contribute to the transformation of the company’s Information Security compliance program.

Key Responsibilities:

Respond to incoming customer security questionnaires and security inquiries, ensuring timely, accurate, and well documented responses

Address compliance reviews, audits, and customer risk assessments by standards and policies

Maintain and monitor a central source of evidentiary information in preparation for regular audits

Work with stakeholders company wide to ensure evidence collection is automated to the fullest extent possible

Support SOC 2, ISO 27001 & HIPAA audit activity

Work together with other stakeholders to ensure our corporate IT and procurement practices meet GRC objectives

Assist the department in responding to inquiries from the business units about ongoing operational compliance

Share information with managers to avoid surprises, draw attention to problems, and guarantee on-time preparation of compliance-related deliverables

Knowledge, Skills & Abilities:

A degree in information security, risk management, governance, or a related field, or equivalent combination of education and experience

Strong written and verbal communication skills5+ years of experience in SRE, Dev Ops, GRC, or Info Sec Direct  experience in or interest in developing in a GRC role

Experience with one or more enterprise task management suites such as JIRAHands-on experience with a GRC platform such as Vanta, Drata, Trustcloud, or One Trust to manage compliance workflows and evidence collection

Familiarity with risk assessment methodologies and frameworks (e.g., NIST CSF)
Ability to translate technical compliance requirements into clear guidance for non-technical stakeholders

Strong attention to detail with the ability to manage multiple priorities and deadlines simultaneously

The talent and dedication of our employees are at the core of Data Robot’s journey to be an iconic company. We strive to attract and retain the best talent by providing competitive pay and benefits with our employees’ well-being at the core. Here’s what your benefits package may include depending on your location and local legal requirements:
Medical, Dental & Vision Insurance, Flexible Time Off Program, Paid Holidays, Paid Parental Leave, Global Employee Assistance Program (EAP) and more!

Data Robot Operating Principles:

Wow Our Customers Set High Standards Be Better Than Yesterday Be Rigorous Assume Positive Intent Have the Tough Conversations Be Better Together Debate, Decide, Commit Deliver Results Over communicate Research  shows that many women only apply to jobs when they meet 100% of the qualifications while many men apply to jobs when they meet 60%. At Data Robot we encourage ALL candidates, especially women, people of color, LGBTQ+ identifying people, differently abled, and other people from marginalized groups to apply to our jobs, even if you do not check every box.

We’d love to have a conversation with you and see if you might be a great fit.

Data Robot is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. Data Robot is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities.

Please see the United States Department of Labor’s EEO poster and EEO poster supplement for additional information.

All applicant data submitted is handled in accordance with our Applicant Privacy Policy.
#J-18808-Ljbffr