Senior Grc Analyst

Whoop Whoop · Consumer · Boston, MA · Information Security

This role focuses on Governance, Risk, and Compliance (GRC) within a technology and cybersecurity context, including AI risk assessments, SDLC reviews, and security compliance processes. It requires strong analytical thinking and clear communication of risk scenarios.

What you'd actually do

  1. lead the day-to-day execution and support the ongoing operation of the GRC program in a fast-paced, high-growth environment.
  2. operations of GRC initiatives - including but not limited to structured cybersecurity and AI risk assessments, exceptions management, SDLC reviews and security compliance process ownership.
  3. partner closely with Legal, Security, Product, and other teams to advance compliance objectives, reduce enterprise risk, and strengthen operational resilience.

Skills

Required

  • GRC program management
  • cybersecurity risk assessments
  • AI risk assessments
  • SDLC reviews
  • security compliance processes
  • analytical thinking
  • risk management
  • communication skills

Nice to have

  • experience in a fast-paced, high-growth environment

What the JD emphasized

  • AI risk assessments