GRC Analyst
Cyderes is seeking a GRC Analyst to implement and maintain their information security and compliance programs. The role involves managing audit activities, conducting risk assessments, and overseeing third-party risk analysis. Candidates are expected to be proficient in GRC tools like Vanta and have deep knowledge of SOC2 and ISO 27001 standards. The position requires strong collaboration across departments to ensure continuous compliance and security posture improvement.
50k new jobs listed every day. Install TAL to find more jobs like this.
Experience
3+ years
Function
Engineering
Work mode
Hybrid, India
Company
Tier 2
What you will work on
Cyderes is seeking a GRC Analyst to implement and maintain their information security and compliance programs. The role involves managing audit activities, conducting risk assessments, and overseeing third-party risk analysis. Candidates are expected to be proficient in GRC tools like Vanta and have deep knowledge of SOC2 and ISO 27001 standards. The position requires strong collaboration across departments to ensure continuous compliance and security posture improvement.
TAL's take
Clear and well-defined role in a specialized cybersecurity firm with structured expectations and professional development support.
JD clearly defines responsibilities, seniority requirements, and specific toolsets, leaving little ambiguity regarding daily duties.
Must haves
- 3 years in a GRC role
- 1 year hands-on administration of a GRC automation tool
- Experience in design and implementation of security policies
- Experience participating in external SOC2 Type II audits
- CISSP, CISM, or CISA certification
Tools and skills
Nice to have: drata, sprinto, gdpr, ccpa, hipaa.
About the company
Established cybersecurity firm providing managed services, but lacks the global scale and brand recognition of tier-1 leaders.