GRC Analyst

4 Months ago • 2 Years + • Cyber Security

Job Summary

Job Description

Job Details

At WHOOP, we're on a mission to unlock human performance. WHOOP empowers members to perform at a higher level through a deeper understanding of their bodies and daily lives.

As a GRC Analyst, you will play a crucial role in supporting the development, implementation, and maintenance of our Governance, Risk, and Compliance (GRC) program. Working under the guidance of the CISO, you will assist in various GRC activities, including policy development, risk assessment, compliance monitoring, and audit coordination. Your attention to detail and analytical skills will contribute to the effectiveness of our security and compliance efforts.

This role is based in the WHOOP office located in Boston, MA. The successful candidate must be prepared to relocate if necessary to work out of the Boston, MA office.

RESPONSIBILITIES:

    • Support GRC Framework Implementation: Assist in the development and implementation of the GRC framework to support business objectives, aligned with industry best practices and regulatory requirements.
    • Risk Management: Assist in conducting risk assessments, supporting the development and adherence of risk mitigation strategies, and maintaining the risk register.
    • Compliance Monitoring: Support ongoing compliance monitoring activities to ensure adherence to internal policies, relevant regulations, standards, and contractual obligations.
    • Vendor Risk Management: Assist in evaluating and managing risks associated with third-party vendors and service providers through vendor risk assessment processes.
    • Support Incident Response and Investigation: Provide support in incident response activities, including documentation, coordination, and post-incident analysis as directed.
    • Security Awareness and Training: Assist in the development and delivery of security awareness and training programs to educate employees on security policies, procedures, and best practices.
    • Audit Support: Support audit activities by gathering evidence, conducting preliminary assessments, and assisting in the remediation of audit findings.
    • Ticket Queue Support: Manage and resolve GRC support tickets promptly and efficiently
    • Policy Review and Management: Participate in the review, development, and maintenance of security policies, standards, and procedures to ensure compliance with regulatory mandates and industry standards.
    • Contribute to Continuous Improvement: Identify areas for process improvement within the GRC program and assist in implementing enhancements to improve effectiveness and efficiency.

QUALIFICATIONS:

    • Bachelor's degree in Information Security, Computer Science, or relevant certifications (e.g., CompTIA Security+, CISSP, CISA, CISM, GRC certifications) a plus.
    • Minimum of 2 years of experience in information security, risk management, audit, or compliance roles.
    • Strong understanding of GRC concepts, principles, and practices.
    • Familiarity with relevant regulations, standards, and frameworks (e.g., GDPR, SOC2, ISO 27001, NIST Cybersecurity Framework).
    • Excellent analytical and problem-solving skills with attention to detail.
    • Effective communication and interpersonal skills, with the ability to establish relationships and collaborate with cross-functional teams.
    • Detail-oriented with superior organizational and time-management skills - balancing multiple projects, deadlines, and requests.
    • Proven ability to navigate ambiguity and complexity, turning uncertainty into clarity and actionable insights.
    • Driven with a pro-active and results-oriented approach, demonstrating a can-do attitude and determination to succeed.
Interested in the role, but don’t meet every qualification? We encourage you to still apply! At WHOOP, we believe there is much more to a candidate than what is written on paper, and we value character as much as experience. As we continue to build a diverse and inclusive environment, we encourage anyone who is interested in this role to apply.

WHOOP is an Equal Opportunity Employer and participates in E-verify to determine employment eligibility.  It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Similar Jobs

NXP - Graph DevOps Engineer

NXP

Bengaluru, Karnataka, India (On-Site)
4 Months ago
Canva - Engineering Manager (BE) - Media Platform (Remote across ANZ)

Canva

Sydney, New South Wales, Australia (Remote)
4 Months ago
Ubisoft - Lead AI Designer [Unannounced Project]

Ubisoft

Malmö, Skåne County, Sweden (Hybrid)
4 Months ago
Cricketpedia - AI Engineer

Cricketpedia

Gurugram, Haryana, India (Remote)
2 Years ago
PwC - IN-Associate _ Client Interactions & Contracts_IN-IT Services Co _IFS_Gurgaon

PwC

Gurugram, Haryana, India (On-Site)
4 Months ago
Reversing Labs - Security Solutions Architect (Federal)

Reversing Labs

Washington, District Of Columbia, United States (Remote)
3 Months ago
Duolingo - Senior Security Engineer

Duolingo

Pittsburgh, Pennsylvania, United States (On-Site)
4 Months ago
G5 Games - SOC Engineer

G5 Games

Limassol, Limassol, Cyprus (Remote)
3 Months ago
PwC - CD-Cyber Security-GRC Tech-Servicenow Now GRC Developer-Senior Associate-Bangalore

PwC

Bengaluru, Karnataka, India (On-Site)
4 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Optum - Data Scientist

Optum

Noida, Uttar Pradesh, India (On-Site)
5 Months ago
Paypal - Sr Dir, Fraud Risk Machine Learning

Paypal

San Jose, California, United States (Hybrid)
4 Months ago
Google - Senior Staff Software Engineer, Google Cloud

Google

(On-Site)
2 Months ago
ByteDance - Software Engineer (Security Engineering) - 2025 Start

ByteDance

Singapore (On-Site)
3 Months ago
Attentive - Paid Search Specialist

Attentive

United States (Remote)
4 Months ago
Rackspace Technology - DC Ops Technician II

Rackspace Technology

Ashburn, Virginia, United States (On-Site)
3 Months ago
Google - Senior Systems Research Engineer

Google

Seattle, Washington, United States (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Boston, Massachusetts, United States

Bragg - Casino Game Artist

Bragg

Las Vegas, Nevada, United States (On-Site)
6 Months ago
Google - Revenue Accounting Lead, Google Cloud

Google

Austin, Texas, United States (On-Site)
3 Months ago
Gearbox Software - Visual Effects Artist

Gearbox Software

Frisco, Texas, United States (On-Site)
8 Months ago
Ness Digital - Gainsight Developer

Ness Digital

United States (On-Site)
3 Months ago
Unity - Identity and Access Management (IAM) Engineer

Unity

United States (Remote)
4 Months ago
The Walt Disney Company - Director, Licensing (Scripted)

The Walt Disney Company

Santa Monica, California, United States (On-Site)
3 Months ago
Palo Alto Networks - Domain Consultant - Security Operations Transformation

Palo Alto Networks

Los Angeles, California, United States (Remote)
3 Months ago
Niantic - Business Development, Senior Associate

Niantic

San Francisco, California, United States (Hybrid)
4 Months ago
Keywords Studios (Player Support) - Senior Technical Animator

Keywords Studios (Player Support)

United States (On-Site)
6 Months ago
SKYDANCE - Executive Assistant to President, Global Business Affairs & International

SKYDANCE

Santa Monica, California, United States (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Trend Micro - Sr. Information Security Specialist

Trend Micro

Irving, Texas, United States (On-Site)
3 Months ago
Paypal - Information Security Engineer

Paypal

Austin, Texas, United States (Hybrid)
4 Months ago
Redhorse Corp - Senior Cybersecurity SME - Active TS/SCI Clearance Required

Redhorse Corp

Fort Belvoir, Virginia, United States (On-Site)
3 Months ago
ION - SOC Manager

ION

Noida, Uttar Pradesh, India (On-Site)
4 Months ago
Mattel  Inc  - Security Coordinator (Operations - Data)

Mattel Inc

El Segundo, California, United States (On-Site)
4 Months ago
Google - Security Engineer, Detection and Response

Google

Hyderabad, Telangana, India (On-Site)
3 Months ago
The Workshop - Security Engineer - Blockchain

The Workshop

London, England, United Kingdom (Hybrid)
7 Months ago
PwC - IN-Senior Associate_ Python Developers _Advisory Corporate_ Bangalore

PwC

Bengaluru, Karnataka, India (On-Site)
3 Months ago
PwC - Consultoría | Manager Ciberseguridad

PwC

Madrid, Community Of Madrid, Spain (On-Site)
4 Months ago
Palo Alto Networks - Solutions Consultant - Retail & Telco

Palo Alto Networks

Frankfurt, Hessen, Germany (On_site)
3 Months ago

Get notifed when new similar jobs are uploaded

About The Company

New York, New York, United States (Hybrid)

Boston, Massachusetts, United States (Hybrid)

Boston, Massachusetts, United States (On-Site)

Boston, Massachusetts, United States (On-Site)

Boston, Massachusetts, United States (On-Site)

Boston, Massachusetts, United States (On-Site)

Boston, Massachusetts, United States (On-Site)

Boston, Massachusetts, United States (On-Site)

Boston, Massachusetts, United States (On-Site)

Boston, Massachusetts, United States (On-Site)

View All Jobs

Get notified when new jobs are added by Whoop

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug