GRC Analyst

2 Days ago • 5 Years +

About the job

Summary_{By Outscal}

Job ID: 25-344

Come Join Our Passionate Team! At Barracuda, we make the world a safer place. We believe every business deserves access to cloud-enabled, enterprise-grade security solutions that are easy to buy, deploy, and use. We protect email, networks, data and applications with innovative solutions that grow and adapt with our customers’ journey. More than 200,000 organizations worldwide trust Barracuda to protect them — in ways they may not even know they are at risk — so they can focus on taking their business to the next level.

We know a diverse workforce adds to our collective value and strength as an organization. Barracuda Networks is proud to be an Equal Opportunity Employer, committed to equal employment opportunity and equitable compensation regardless of race, gender, religion, sex, sexual orientation, national origin, or disability.

Envision yourself at Barracuda

You will be a member of Barracuda’s Security team and will support the development of global compliance initiatives by leading compliance focused programs, collaborating with other departments and business units on key global policies and procedures, defining and communication strategies, conducting employee training and defining compliance-related controls.

Tech Stack

Atlassian Cloud, GitHub, Enterprise Risk Assessment tools, Identity & Access Management tools, Third Party Risk Management tools,

What you’ll be working on

Develop and maintain information security policies, procedures, standards, and guidelines based on best practices and regulatory and legal compliance
Assist with 3rd Party Supplier Security Risk Management
Maintain security and data privacy risk inventory across the enterprise
Ensures adequate and effective IT controls exist to meet applicable current and future security compliance requirements found in laws, regulations, and frameworks such as requirements to comply with SSAE 16 SOC I & II, ISO 27001, NIST/StateRAMP, etc.
Facilitate and support the gathering, reviewing, assembling, and maintaining of internal and external audit evidence and related documentation work with external auditors to assist in the completion of annual compliance audits
Assist with user access/identity management reviews from automated and manual systems
Collaborate with cross-functional teams to integrate compliance requirements
Monitor and review regulatory updates and issues relative to pertinent security regulatory requirements.
Drive continuous improvement efforts to enhance IT compliance and governance practices.

What you bring to the role

5+ years of experience in IT compliance, governance, or related roles
Expert knowledge on industry specific regulatory requirements and compliance frameworks for cloud providers (FedRAMP/DoD, SOC, ISO, HIPAA, PCI-DSS)
Experience integrating and automating IAM systems/tools.
Deep understanding of IT governance frameworks and risk management methodologies
Prior experience with cloud providers and/or data centers a plus
CISA and other industry certifications such as CISSP, CISM, or equivalent a plus
Have a passion for and desire to develop expertise in network security and data protection products and technology
Excellent project management and organizational skills.
Excellent written and verbal communication skills
Ability to work efficiently with minimal oversight/direction as well as part of multiple project teams
Comfortable in a fast-paced, ever-changing, rapid-growth, fun environment with multiple projects and tasks
Possess high ethical standards, level of commitment and ability to cope with complexity and change
Responsible, flexible and a highly motivated self-starter

What you’ll get from us

A team where you can voice your opinion, make an impact, and where you and your experience are valued. Internal mobility – there are opportunities for cross-training and the ability to attain your next career step within Barracuda.