GRC Analyst @ Cart.com | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
GRC Analyst jobs in United States
Be an early applicantLess than 25 applicants
company-logo

Cart.com · 6 hours ago

GRC Analyst

ftfMaximize your interview chances
AnalyticsInformation Technology
badNo H1Bnote

Insider Connection @Cart.com

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Assist in the development and implementation of a comprehensive Cybersecurity GRC program, aligning with industry-standard frameworks (e.g., NIST CSF, ISO 27001).
Perform risk assessments for systems, processes, third-party applications, and configurations, and recommend mitigation strategies.
Document ownership and responsibilities of controls in Cart.com’s GRC platform and maintain corporate policies.
Manage and support PCI DSS audits, schedule internal and external control assessments, and ensure compliance with privacy regulations (e.g., CCPA, GDPR).
Monitor and improve the security incident management program; assess incidents, secure baselines, and penetration test results.
Lead security training and phishing simulations to mitigate social engineering risks.
Identify and document control failures and gaps, provide remediation guidance, and prepare management reports to track progress.
Assist in managing privacy initiatives, including CCPA, CPRA, GDPR, and other relevant regulations.
Stay informed on emerging cybersecurity threats, best practices, and technology advancements to strengthen Cart.com’s security posture.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Cybersecurity GovernanceRisk ManagementPolicy ManagementAudit & ComplianceIncident ManagementGRC ProgramsInformation SecurityTechnical Controls AuditingCISACISMCIPPCIPMCIPTMicrosoft Cloud CertificationsITIL FoundationsAgile Methodologies

Required

2+ years in information security, technology governance, or compliance roles.
Hands-on experience with GRC programs, including third-party risk management, metrics tracking, and issue resolution.
Background in IT policies, laws, and frameworks (e.g., PCI DSS, ISO 27001, SOC, NIST CSF).
Experience in testing or auditing technical controls.
You are a strong critical thinking and problem-solving abilities.
You have excellent written and verbal communication skills, with the ability to articulate complex concepts clearly.
You are collaborative mindset with a passion for learning and growth.

Preferred

Bachelor’s degree in Information Technology, Cybersecurity, or a related field (or equivalent experience).
Certifications: CISA, CISM, CIPP, CIPM, CIPT, or Microsoft public cloud technical certifications.
Familiarity with ITIL foundations and Agile methodologies.

Company

Cart.com

twittertwittertwitter
company-logo
Cart.com is a technology company that provides a unified commerce platform to help companies from discovery to delivery.

Funding

Current Stage
Late Stage
Total Funding
$759.21M
Key Investors
BlackRockSilicon Valley BankTrinity Capital
2024-07-17Series C· $25M
2024-07-17Debt Financing· $105M
2024-03-27Series Unknown· $17.66M

Leadership Team

leader-logo
Krishna Venkatasamy
Chief Technology Officer
linkedin
leader-logo
Frank Parker
Chief Financial Officer
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot