Back to jobs
New

GRC Analyst

Lisbon, Portugal

Who we are:

BigID is an innovative tech startup that focuses on solutions for data security, compliance, privacy, and AI data management. We're leading the market in all things data: helping our customers reduce risk, drive business innovation, achieve compliance, build customer trust, make better decisions, and get more value from their data.

We are building a global team passionate about innovation and next-gen technology. BigID has been recognized for: 

  • BigID Named Hot Company in Artificial Intelligence and Machine Learning at the 2024 Global InfoSec Awards
  • Citizens JMP Cyber 66 List of Hottest Privately Held Cybersecurity Companies
  • CRN 100 list named BIgID as one of the 20 Coolest Identity Access Management And Data Protection Companies Of 2024 (2 years running)
  • DUNS 100 Best Tech Companies to Work For in 2024
  • Top 3 Big Data and AI Vendors to Watch' in the 2023 BigDATAwire Readers and Editors Choice Awards
  • 2024 Inc. 5000 list for the 4th consecutive year!
  • Shortlisted for the 2024 AI Awards in the category of Best Use of AI in Cybersecurity

At BigID, our team is the foundation of our success. Join a people-centric culture that is fast-paced and rewarding: you’ll have the opportunity to work with some of the most talented people in the industry who value innovation, diversity, integrity, and collaboration.

Who we seek:

At BigID, we believe in building a high-performing and inclusive culture where innovation, integrity, and teamwork thrive. Join a passionate team of data experts and industry leaders, and contribute to solving some of the most critical challenges in data privacy and security today.

As a Security GRC Analyst at BigID, you will be a key player in safeguarding our mission-critical platform. You'll contribute significantly to our security posture by:

  • Driving key risk management initiatives: You'll actively participate in security and privacy risk assessments.
  • Maintaining compliance excellence: You'll ensure adherence to relevant security standards and regulations (e.g., SOC 2, ISO 27001, GDPR).
  • Fostering strong cross-functional collaboration: You'll work closely with engineering, legal, and operations teams to implement and maintain effective security controls.

In this role, you will report directly to the Security Compliance Lead.

What you’ll do:

  • Help maintain and improve security compliance and risk management documentation including policies, standards, and processes.
  • Help manage compliance programs for key certifications such as ISO 27001, SOC 2, HIPAA, PCI, and support external audits to maintain security certifications.
  • Collaborate on building and managing security and privacy risk management programs.
  • Support the use and optimization of Governance, Risk & Compliance (GRC) tools such as Anecdotes, Confluence, and Jira to drive effective security governance.
  • Assist in enforcing security policies and procedures based on industry standards, ensuring compliance across teams.
  • Assess and manage third-party risk for new and existing vendors to ensure their compliance with BigID’s security standards.
  • Assist in responding to customer security questionnaires, ensuring clarity and confidence in our security posture.
  • Work closely with various teams (engineering, legal, operations) to ensure understanding of control activities, provide training, and share security best practices across the organization.
  • Contribute to the development and continuous improvement of disaster recovery and business continuity plans.
  • Help track and report on metrics and KPIs to measure the effectiveness of security and risk management programs.

What you’ll bring:

  • Bachelor’s Degree in a relevant field or an equivalent combination of education, work experience, and professional certifications.
  • 3+ years of experience in a security audit, governance, or risk management role within the tech sector.
  • Experience with Confluence, Jira, and GRC tools like Anecdotes.
  • In-depth knowledge of AWS security best practices and services (e.g., AWS Certified Security Specialty).
  • Familiarity with managing compliance for standards such as ISO 27001, SOC 2, HIPAA, PCI, and experience in supporting external audits.
  • Knowledge of regulatory frameworks like GDPR, CCPA, or other regional standards.
  • Proven ability to lead and manage projects, with strong organizational, analytical, and problem-solving skills.
  • Strong interpersonal skills with the ability to communicate effectively across teams and levels, driving alignment on security strategies.
  • Ability to thrive in a fast-paced, dynamic environment while delivering results and meeting deadlines.
  • Experience working in a global environment, understanding diverse regulatory and security requirements.

Our Values:

We look for people who embody our values - Care, Do,Try & Shine.

  • Care - We care about our customers and each other
  • Do - We do what it takes to make a positive impact
  • Try - We try our best and we don’t give up
  • Shine - We shine and make it our mission to always stand out

What’s in it for you?!

Our people are the foundation of our success, and we prioritize offering a wide range of benefits that make our team happier and healthier.

  • Equity participation - everyone shares in our success
  • Flexible work arrangements 
  • Other compulsory benefits based on country of residence

#LI-Remote

#LI-AR1

BigDiversity: We’re committed to creating a culture of inclusion, diversity, and equality – across race, gender, sexuality, disability, and neurodiversity – where innovation and growth thrive, every voice is heard, and everybody belongs. Learn more about us here.

CPRA Employee Privacy Notice: CA 

BigID is an E-Verify Participant.

Apply for this job

*

indicates a required field

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf

Select...
Select...