Senior Staff Security Governance & Compliance Analyst

1 Month ago • 5 Years + • Cyber Security

Job Summary

Job Description

Diligent is seeking a Senior Staff Security Governance & Compliance Analyst to join its Security GRC team. This role involves identifying, tracking, monitoring, and advising on security compliance risks for both operations and third-party vendors. You will utilize various tools for delivery and automation, collaborating with Security, Engineering, Technology, and Commercial teams to assess and manage security and compliance risks. Responsibilities include participating in security audits, performing continuous monitoring of controls, recommending process improvements, developing key metrics for control performance, and presenting them to management. The role also requires independent management of projects and business processes. This position emphasizes a hybrid work model.
Must have:
  • 5+ years of GRC/cyber risk management experience
  • Excellent written and communication skills
  • Experience automating control assessments
  • Strong critical thinking and problem-solving
  • Ability to operate with high independence
  • Experience assessing technical controls for cloud/SaaS (e.g., AWS)
  • Expertise in NIST CSF, SOC 2, ISO 27001
Good to have:
  • Working knowledge of secure SDLC, AWS, infrastructure security, audit
  • Understanding of security control frameworks (SOC 2, NIST, ISO)
  • BS/BA in Computer Science, IT, or related field
  • Professional certification (e.g., Security+, CISSP)
  • AWS Certified Cloud Practitioner or equivalent
Perks:
  • Flexible work environment
  • Global days of service
  • Comprehensive health benefits
  • Meeting-free days
  • Generous time off
  • Wellness programs

Job Details

About Us

Diligent is the AI leader in governance, risk and compliance (GRC) SaaS solutions, helping more than 1 million users and 700,000 board members to clarify risk and elevate governance. The Diligent One Platform gives practitioners, the C-Suite and the board a consolidated view of their entire GRC practice so they can more effectively manage risk, build greater resilience and make better decisions, faster. 

At Diligent, we're building the future with people who think boldly and move fast.  Whether you're designing systems that leverage large language models or part of a team reimaging workflows with AI, you'll help us unlock entirely new ways of working and thinking.  Curiosity is in our DNA, we look for individuals willing to ask the big questions and experiment fearlessly - those who embrace change not as a challenge, but as an opportunity.  The future belongs to those who keep learning, and we are building it together.  At Diligent, you’re not just building the future - you’re an agent of positive change, joining a global community on a mission to make an impact.

Learn more at diligent.com or follow us on LinkedIn and Facebook

Position Overview:  

As a Senior Staff Security Analyst, you will be a key member of the Security GRC team that identifies, tracks, monitors and advises on security compliance risk both operationally and for third-party vendors. You will have a range of tools for delivery and automation at your disposal and will engage with groups across Security, Engineering, Technology, and Commercial to identify, assess, measure, and treat security and compliance risk. You will also participate in security audits, perform continuous monitoring of controls, and be expected to make recommendations for process improvement. As part of this role, you will have the opportunity to develop key metrics for monitoring control performance and communicating risk, and you will present these to management stakeholders. You will also be expected to independently manage projects and business processes for the group. 

Key Responsibilities  

  • Perform control assessments for design and effectiveness and assess cyber risk  
  • Identify, review, assess, and recommend treatment options for control failures 
  • Gather, analyze, and report on risk assessment metrics  
  • Communicate risk and control objectives to business stakeholders 
  • Develop treatment plans with controls owners to mitigate risks and meet compliance needs 
  • Contribute to departmental and company-wide documentation for risk management processes 
  • Design and implement automated control monitoring and evidence collection processes  
  • Identify areas for program improvement or automation 
  • Provide mentorship or guidance to junior team members 
  • Manage projects and business processes for risk management across product and corporate environments 

 Required Experience/Skills  

  • 5+ years of experience of GRC and/or cyber risk management 
  • Excellent written and communication skills  
  • Experience automating control assessments  
  • Strong critical thinking and problem-solving abilities 
  • Ability to operate with a high degree of independence 
  • Demonstrable experience assessing technical controls for cloud/SaaS environments such as AWS  
  • Expertise with NIST Cyber Security Framework, SOC 2, and ISO 27001. 

 Preferred Experience/Skills   

  • Working knowledge of secure software development lifecycles, AWS (Amazon Web Services), infrastructure security, and/or security audit  
  • Understanding of security control frameworks such as SOC 2, NIST (National Institute of Standards and Technology), or ISO and control harminization 
  • BS/BA in Computer Science, Information Technology, or a related field; professional certification (e.g., CompTIA Security+, CISSP) is a plus 
  • AWS Certified Cloud Practitioner or equivalent is a plus 

 

What Diligent Offers You 

  • Creativity is ingrained in our culture. We are innovative collaborators by nature. We thrive in exploring how things can be differently both in our internal processes and to help our clients
  • We care about our people. Diligent offers a flexible work environment, global days of service, comprehensive health benefits, meeting free days, generous time off policy and wellness programs to name a few
  • We have teams all over the world. We may be headquartered in New York City, but we have office hubs in Washington D.C., Vancouver, London, Galway, Budapest, Munich, Bengaluru, Singapore, and Sydney.
  • Diversity is important to us. Growing, maintaining and promoting a diverse team is a top priority for us. We foster and encourage diversity through our Employee Resource Groups and provide access to resources and education to support the education of our team, facilitate dialogue, and foster understanding.

Diligent created the modern governance movement. Our world-changing idea is to empower leaders with the technology, insights and connections they need to drive greater impact and accountability – to lead with purpose. Our employees are passionate, smart, and creative people who not only want to help build the software company of the future, but who want to make the world a more sustainable, equitable and better place. 

Headquartered in New York, Diligent has offices in Washington D.C.,  London, Galway, Budapest, Vancouver, Bengaluru, Munich, Singapore and Sydney.   To foster strong collaboration and connection, this role will follow a hybrid work model. If you are within a commuting distance to one of our Diligent office locations, you will be expected to work onsite at least 50% of the time. We believe that in-person engagement helps drive innovation, teamwork, and a strong sense of community.

 

We are a drug free workplace. Diligent is proud to be an equal opportunity employer. We do not discriminate based on race, color, religious creed, sex, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental disability, age, military status, protected veteran status, marital status, registered domestic partner or civil union status, gender (including sex stereotyping and gender identity or expression), medical condition (including, but not limited to, cancer related or HIV/AIDS related), genetic information, or sexual orientation in accordance with applicable federal, state and local laws. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Diligent's EEO Policy and Know Your Rights. We are committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at recruitment@diligent.com.

To all recruitment agencies: Diligent does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Diligent employees or any other organization location. Diligent is not responsible for any fees related to unsolicited resumes.

Similar Jobs

Simcorp - Senior Engineering Manager

Simcorp

Warsaw, Masovian Voivodeship, Poland (Hybrid)
1 Month ago
EvenUp - Ph.D. Intern – Machine Learning & Generative AI

EvenUp

United States (Remote)
3 Weeks ago
Zinnia - Business, Solutions Architect

Zinnia

Greenwich, Connecticut, United States (Hybrid)
2 Months ago
Arkose Labs - Platform Engineer

Arkose Labs

San José Province, Costa Rica (Remote)
2 Months ago
sinch  - Mid-Market/Enterprise Sales Development Representative

sinch

Philippines (Remote)
3 Months ago
Fireworks AI - Senior Software Engineer, Security and Compliance

Fireworks AI

Redwood City, California, United States (On-Site)
2 Weeks ago
Patreon - Security Engineer

Patreon

United States (Hybrid)
3 Months ago
Interactive Brokers - Security & Fraud Prevention Triage Analyst

Interactive Brokers

Mumbai, Maharashtra, India (Hybrid)
1 Month ago
Wolters Kluwer - Sr. IT Security Analyst (IAM Operations + Cyberark)

Wolters Kluwer

Pune, Maharashtra, India (On-Site)
2 Months ago
kaizen gaming  - Site Reliability Engineer (Security Operations)

kaizen gaming

Athens, Greece (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

EvenUp - Product Manager

EvenUp

San Francisco, California, United States (Hybrid)
2 Weeks ago
Veeam Software - JavaScript Developer (React)

Veeam Software

Prague, Czechia (On-Site)
2 Months ago
Lorikeet - Solutions Engineer

Lorikeet

United States (Remote)
1 Month ago
Diligent Corporation - Manager, Software Engineering (Python)

Diligent Corporation

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
AiDash - Senior Engineering Manager - Devops

AiDash

Bengaluru, Karnataka, India (Hybrid)
2 Months ago
Granicus - Senior Solution Architect

Granicus

United States (Remote)
1 Month ago
USE Insider - Customer Success Manager

USE Insider

Istanbul, İstanbul, Türkiye (Hybrid)
9 Months ago
Diligent Corporation - Deal Desk Specialist

Diligent Corporation

Galway, County Galway, Ireland (Hybrid)
1 Month ago
Loyalty Juggernaut - Mobile Engineer (iOS)

Loyalty Juggernaut

Hyderabad, Telangana, India (On-Site)
4 Months ago
Pattern - Sr Software Engineer

Pattern

Lehi, Utah, United States (Hybrid)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Paytm - Team Lead - Sales - Offline Merchants QR

Paytm

Kottarakkara, Kerala, India (On-Site)
1 Month ago
Zeeco, Inc. - Engineer - QA/QC

Zeeco, Inc.

Wada, Maharashtra, India (On-Site)
8 Months ago
NinjaVan - Staff Data Engineer

NinjaVan

Hyderabad, Telangana, India (On-Site)
9 Months ago
Cred - Business - Supply Integrations

Cred

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Accenture - Record to Report Operations Analyst

Accenture

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Nice - Senior Services Engineer, Managed Services

Nice

Pune, Maharashtra, India (Hybrid)
1 Month ago
Boomi  - NetSuite Functional Principal Consultant

Boomi

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Marvell - Staff to Senior Staff Post Silicon Validation Engineer

Marvell

Bengaluru, Karnataka, India (On-Site)
1 Week ago
Assystems - Contracts Specialist

Assystems

Gurugram, Haryana, India (On-Site)
9 Months ago
Accenture - Candidate Source & Screen Senior Analyst

Accenture

Mumbai, Maharashtra, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Glocomms - Network and Security Engineer

Glocomms

Reno, Kansas, United States (On-Site)
2 Months ago
FICO - Cyber Security Engineer II (Vulnerability Management/ Qualys)

FICO

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Sagecor - Information Systems Security Engineer II

Sagecor

Annapolis Junction, Maryland, United States (On-Site)
2 Weeks ago
Jane Street - Cybersecurity Analyst

Jane Street

New York, United States (On-Site)
1 Week ago
CAE - Vulnerability & DevOps Analyst

CAE

Montreal, Quebec, Canada (Hybrid)
1 Year ago
JMA - Senior Embedded Systems Security Engineer

JMA

Plano, Texas, United States (On-Site)
8 Months ago
Veeam Software - Junior/Middle Application Security Engineer

Veeam Software

Lisbon, Lisbon, Portugal (Hybrid)
1 Month ago
PwC - Security Compliance Analyst - US Client

PwC

Buenos Aires, Buenos Aires, Argentina (On-Site)
1 Week ago
Sporty - Director of IT & Security

Sporty

(Remote)
3 Months ago
Ion - Senior Platform Security Engineer

Ion

London, England, United Kingdom (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

About The Company

Bengaluru, Karnataka, India (Hybrid)

Bengaluru, Karnataka, India (Hybrid)

Galway, County Galway, Ireland (Hybrid)

Vancouver, British Columbia, Canada (Hybrid)

New York, United States (Hybrid)

New York, United States (Hybrid)

Bengaluru, Karnataka, India (Hybrid)

Bengaluru, Karnataka, India (Hybrid)

Vancouver, British Columbia, Canada (Hybrid)

New York, United States (Hybrid)

View All Jobs

Get notified when new jobs are added by Diligent Corporation

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug