Governance, Risk & Compliance Specialist II
United States - Remote
Pathwire
Powerful Transactional Email APIs that enable you to send, receive, and track emails, built with developers in mind. Learn more today!Sinch Email is looking for a Governance, Risk & Compliance Specialist II to help mature the GRC function by strengthening security processes, facilitating external compliance attestations (SOC 2, ISO 27001, etc.), and assessing vendors as part of the third-party risk management program. A quality applicant is someone who is outgoing, understands the risks of the email industry (bonus for understanding the Mailgun/Mailjet/Email on Acid platforms), works independently, and is willing to learn new things. A passion for Risk and Compliance is a plus!
Responsibilities
- Assesses third-party vendors for adherence to standards and risk tolerance.
- Assists in annual audits for industry specific reports, including ISO27001 and SOC 2 Type II reports.
- Assists in coordinating between external auditors and internal controls owners, including kickoff meetings, interview requests, closing meetings, and evidence gathering.
- Documents findings where deviations exist resulting from internal and external testing.
- Executes light internal control testing, including access reviews and monitoring third parties.
- Ability to execute on defined programs.
- Presenting results and findings of audits and assessments to peers and leadership where necessary
- Review business processes for effectiveness
- Light policy and report writing/editing.
- Communicates the value of Compliance and Information Security within the organization.
Requirements
- Minimum of two years of experience in information security or any role at Mailgun (or equivalent)
- High school diploma or equivalent required. Bachelor’s degree in information security or IT-related program preferred.
- Moderate written and verbal communication skills
- Basic knowledge of networks, systems, e-mail functionality, and information security
- Security+, Network+, Project+, CISR, CISA certifications not expected, but preferred.
- Willing to learn new items and work independently.
Benefits
- STAY HEALTHY: We offer 100% employer-paid comprehensive medical, dental, and vision plans. A variety of supplemental plans are also provided to meet your individual needs including access to telehealth for all participants.
- CARE FOR YOURSELF: Take advantage of our free virtual counseling resources through our global Employee Assistance Program. Your mental health is as important as your physical health.
- SECURE YOUR FUTURE: Plan for your future with our Roth and Pre-tax 401(k) options including an employer match for all participants.
- TAKE A BREAK: Enjoy 5+ weeks of paid time off. We value balance and understand that performance at work requires time to rest at home and/or rejuvenate on vacation.
- PUT FAMILY FIRST: We know that families can be built in a variety of ways; therefore, we offer paid parental leave and family planning support through Maven.
- WORK WHEREVER: Our flexible remote work offerings allow you to work wherever you’re the most productive and successful. It’s what you do, not where you work, that matters.
- TREAT YOURSELF: Our comprehensive anniversary program offers a personalized experience in recognition of milestones achieved.
- MAKE AN IMPACT: Support betterment in your community and beyond by taking paid time off to support a volunteer program of your choice.
We embrace diversity and equal opportunity in all aspects of our business. We are committed to building a company that empowers individuals from a diverse set of backgrounds and values diversity of thought as a beacon for performance. The more inclusive we are, the better our work will be.
(*Colorado Only*) Minimum salary of $76,700 + benefits.
*Note: Disclosure as required by sb19-085 (8-5-20) of the minimum salary compensation for this role when being hired in Colorado.
Tags: Audits CISA Compliance Governance ISO 27001 Maven Monitoring Risk management SOC SOC 2
Perks/benefits: 401(k) matching Career development Flex vacation Health care Medical leave Parental leave Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs