Senior GRC Specialist, Security Education & Awareness
United States
P4
US- Remote
JR103843
About the team
HashiCorp has a dedicated Governance, Risk, and Compliance (GRC) team who supports HashiCorp's security and privacy compliance efforts. The GRC team plays a critical role in ensuring that the organization is aware of and adheres to policies, requirements and contractual commitments. This team is responsible for implementing, maintaining and communicating our compliance story both internally and externally. The GRC team works closely in collaboration with many teams within HashiCorp, such as R&D, Legal, IT, and other Security members.
What you’ll do (responsibilities)
Security at HashiCorp is a remote team. While prior experience working remotely is not required, we are looking for team members who can perform well given a high level of independence and autonomy.
We are looking for a Senior Governance Risk and Compliance (GRC) Analyst to aid in and expand upon our security and privacy education and awareness program for both internal employees and Hashicorp customers. This role will concentrate on developing training materials, delivering role-based training, and maintaining customer-facing and internal security content on HashiCorp’s compliance journey. In particular, we are looking for someone with experience in a GRC role who has worked with cross-functional, technical teams. A successful candidate in this role will have excellent written and verbal communication, excel at communicating complex topics to a variety of audiences, thrive in a dynamic environment, and seamlessly manage deadlines and priorities with multiple stakeholders and ambiguity to accomplish bold things.
In this role, you will:
- Expand upon and implement a comprehensive security awareness program.
- Lead the creation of content and training materials to educate staff on relevant security and privacy topics, to ensure they promote security awareness, knowledge, and behaviors across the organization.
- Analyze the internal environment to focus awareness training on specific needs.
- Measure and report on the effectiveness of security awareness initiatives.
- Collaborate with security engineering teams, legal teams, product and platform teams and other stakeholders.
- Effectively deliver training content across a wide variety of audiences.
- Drive cultural change to elevate security awareness across the organization.
- Keep up to date on latest security trends, threats, industry events and adjust training programs accordingly.
- Collaborate with security, product, and legal teams to develop external-facing security and privacy compliance materials for customers.
- Manage and lead multiple projects with limited oversight.
- Assist with other …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Autonomy Dynamic environment High level of independence Independence Remote-first company Remote work
Tasks- Collaborate with teams
- Develop training materials
- Manage multiple projects
AWS Azure Cloud Collaboration Communication Compliance Compliance frameworks Compliance Standards Data analysis Engineering GCP GDPR Governance GRC HashiCorp HashiCorp products Information security ISO 27001 Organization Performance Privacy Compliance Project Management Risk Management SaaS Security Security Awareness Security Engineering Security governance SOC 2 Training Training Development
Experience6 years
Education TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9