The Ultimate Engagement Platform
Senior GRC Analyst
Location
Alabama + 23 moreAll locations: Alabama | Arizona | Colorado | Florida | Idaho | Iowa | Kansas | Kentucky | New Mexico | North Carolina | Ohio | Oklahoma | Oregon | Michigan | Minnesota | Missouri | South Carolina | South Dakota | Tennessee | Texas | Utah | Virginia | Washington | Wyoming
Posted
64 days ago
Salary
$95K - $105K / year
Seniority
Senior
Job Description
Senior GRC Analyst
Subsplash
• The Senior GRC Analyst acts as a strategic lead to advance security and risk operations • Integrate people, policy, and technology to drive operational excellence and framework maturity • Identify security gaps, implement best practices, and mature the control environment to ensure we stay ahead of evolving regulatory and threat landscapes • Build an AI-first compliance function • Lead from the front in identifying and deploying AI tools that scale the GRC program
Job Requirements
- 3–5 years of dedicated experience in GRC, Information Security, or Audit (FinTech or Financial Services industry experience is highly preferred)
- Deep practical knowledge of PCI DSS requirements and controls
- Experience performing Data Mapping exercises and maintaining Records of Processing Activities (RoPA)
- Proven experience managing phishing platforms (e.g., KnowBe4, Mimecast, or Vanta-integrated tools) and developing security training curricula
- Proven experience managing formal access review cycles and identity governance processes
- Proven experience administering a GRC platform, including automated evidence collection, control monitoring, and access review workflows. Direct experience with Vanta is a significant advantage
- Experience with SOX IT General Controls (ITGCs), including change management, logical access, computer operations controls, and segregation of duties (SoD)
- Demonstrated experience using AI tools to improve GRC workflows, automate reporting, or accelerate evidence collection and analysis
Benefits
- Generous Paid Time Off
- Medical Coverage
- Dental Coverage
- Vision Coverage
- Short and long term disability and life insurance all free of charge
- Competitive Compensation
- 401k Matching
- Professional Development
- Top of the Line Equipment
- Referral Program
- Parental Leave
- Family-Friendly Culture
- Chance to work side-by-side with thought leaders in emerging tech
Related Guides
Related Categories
Related Job Pages
More Compliance Jobs
SVP, Regulatory Compliance, Fulfillment Support Services
SitusAMCWe're helping our clients identify and capture opportunities across the entire lifecycle of their real estate activity.
• Facilitate compliance program that enables innovation while ensuring legal adherence • Support business growth with monitoring of regulatory developments • Collaborate with internal stakeholders to develop compliant solutions • Maintain procedures and documentation for regulated activities • Review and negotiate contracts for regulatory compliance
• Serve as the primary compliance and governance contact for assigned MSP and MSSP clients. • Guide clients through compliance readiness efforts, including planning, documentation, policy development, evidence preparation, and auditor-facing coordination. • Own the onboarding and ongoing service experience for compliance-focused MSSP clients. • Prepare and deliver compliance-focused security QBRs, cadence calls, and client status updates. • Write, update, and maintain Written Information Security Programs, security policies, governance documentation, and related client-facing materials. • Help scope, coordinate, and manage compliance and security projects to ensure work is scheduled, communicated, and delivered on time. • Support Microsoft Purview, data governance, sensitivity labeling, and Bronze/Silver/Gold data classification initiatives for Endsight and its clients. • Advise internal leaders on compliance, governance, data protection, and risk management needs. • Coordinate with security analysts, Client Strategy Managers (CSMs), consultants, leadership, and client stakeholders to keep compliance work moving. • Participate in customized cybersecurity awareness training efforts for clients. • Support the security team's shared SOC alert and on-call process by assisting with initial triage and communication when needed. This is not a hands-on technical support role.
Senior Consultant, Quality and Compliance
Syner-G BioPharma GroupSyner‑G BioPharma Group, founded in 2007 by Prabu Nambiar and Binesh Prabhakar, is a mid‑sized contract development and regulatory consultancy now employing
• Independently establish and execute sponsor oversight programs for clinical trials, including CRO qualification, ongoing performance monitoring, and risk-based quality oversight aligned with ICH E6(R3) • Serve as the independent quality liaison between client sponsors and CROs, central labs, IRT/RTSM vendors, eCOA/ePRO providers, central imaging vendors, bioanalytical labs, and clinical supply CMOs • Author and approve quality agreements with clinical vendors; review and approve clinical vendor SOPs, validation documentation, and oversight plans before study start • Drive direction of the clinical quality function within client organizations — establish the quality oversight model, define escalation pathways, and align sponsor and vendor responsibilities • Independently plan, conduct, and report GCP audits, including investigator site audits, CRO/vendor system audits, TMF audits, clinical database audits, and for-cause audits • Lead pre-approval inspection (PAI) readiness and BIMO inspection preparation for sponsor clinical sites and key vendors; conduct mock inspections • Author audit reports with defensible findings, regulatory citations, and severity classifications; track CAPA commitments to closure • Build and maintain audit programs (risk-based audit plans, annual schedules, audit metrics) for client sponsors • Review and approve clinical trial documents prior to use — protocols and amendments, ICFs, IB updates, monitoring plans, data management plans, statistical analysis plans, and clinical study reports — for GCP compliance and inspection-readiness • Oversee TMF quality: review TMF completeness, contemporaneousness, and ALCOA+ compliance; advise on eTMF system configuration, indexing, and QC processes • Approve essential documents for clinical trial start-up, including site selection packages, regulatory submissions support documentation, and IRB/EC correspondence • Lead investigations into serious GCP issues including protocol deviations of significance, data integrity concerns, informed consent issues, IP accountability discrepancies, and suspected fraud or misconduct • Author and approve CAPAs arising from audits, inspections, and quality events; ensure effectiveness checks are designed and executed • Advise client sponsors on quality issue escalation, including determination of reportability to regulatory authorities and IRBs/ECs • Provide quality input on regulatory submissions — IND, IMPD, CTA, NDA/BLA/MAA clinical modules — and represent the quality function during regulatory authority interactions • Lead client inspection support during FDA BIMO, EMA, MHRA, or other Health Authority inspections of sponsors, sites, or vendors • Maintain current knowledge of evolving GCP regulations and guidance (ICH E6(R3), ICH E8(R1), FDA decentralized clinical trial guidance, EU CTR, ICH E2A/E2B, 21 CFR Parts 11/50/54/56/312/812) and translate changes into actionable client recommendations • Independently manage multiple concurrent client engagements; serve as the senior quality point of contact and represent Syner-G at client governance and steering committee meetings • Expand existing accounts by identifying additional quality gaps and proposing scope extensions; support proposal development and SOW authorship for new GCP work • Contribute to Syner-G's GCP service offering — develop reusable templates, audit checklists, training content, and thought-leadership materials.
• Manage Pall Corporation’s Export Compliance program globally • Develop and implement export compliance improvement processes including export screening, licensing, and classification • Serve as the subject matter expert on US export controls including EAR and ITAR • Collaborate with site leaders to ensure internal controls regarding EAR and ITAR compliance • Draft and submit TAA’s, MLA’s, and US export license applications


