[Remote] GRC Analyst

Note: The job is a remote job and is open to candidates in USA. Uplight is creating a new category of energy, developing software that manages energy resources for homes and businesses. The GRC Analyst will be responsible for managing vendor risk assessments, assisting with security and compliance tasks, and participating in GRC processes to enhance the company's security posture.

Responsibilities

• Manage 3rd party/vendor risk management assessments
• Assist sales and operations functions by managing security and compliance-related tasks such as completing Request for Proposals and security questionnaires
• Manage annual and ad-hoc tabletop testing
• Review contracts from a security and privacy perspective
• Represent security and privacy in external-facing conversations, such as suppliers and clients
• Participate in GRC processes such as risk assessment, policy management, and audits
• Participate in projects dedicated to improving Uplight’s governance, risk, compliance (GRC), privacy, and information security posture
• Participate in security event monitoring and response
• Participate in privacy operations practices to ensure Uplight meets its privacy obligations
• Participate in security and compliance review activities
• Participate in on-call shift rotation
• Assist with security incident response activities, including developing playbooks, managing incident response processes, and continuous improvement practices
• Other duties as assigned

Skills

• 1-3 years of experience in a GRC and/or security position
• Experience of 3rd party/vendor risk management processes
• Experience in working with the sales team to complete Requests for Proposals and security questionnaires
• Understanding of GRC processes such as policy management, risk assessment, and IT audit
• Exposure to public cloud and cloud security concepts in environments like AWS, Azure or GCP
• Exceptional verbal and written communication skills
• GRC or Privacy certifications (e.g. CISA, CIPP, etc)

Benefits

• Bonus
• Comprehensive benefits, including flexible time off
• Generous parental leave
• A wellness stipend
• Work flexibility
• Ample advancement opportunities
• Robust learning and development programs
• A supportive team environment that fosters collaboration and innovation
• Employee Resource Groups offer opportunities to connect with colleagues who share your interests and backgrounds

Company Overview

Company H1B Sponsorship