Position Overview
Blockdaemon is seeking a Senior GRC Analyst to join our team and support our information security risk and compliance efforts and programs. The Senior GRC Analyst will play a critical role in ensuring that our organization adheres to regulatory requirements, implements effective risk management practices, and maintains high standards of governance.
This person will report directly into our GRC Director, and work closely with other cross-functional teams and stakeholders in the business. The ideal candidate will have a strong background in risk management, compliance, and governance frameworks, along with excellent analytical and communication skills.
This is a 6 month contract with option to extend for an Ireland-based candidate (Dublin/Galway), with the expectation of being in the Galway office 2-3 days per week.
Your Impact
- Support the development, implementation, and maintenance of governance frameworks, policies, and procedures to ensure compliance with applicable laws and regulations.
- Conduct risk assessments and identify areas of potential risk exposure within the organization.
- Support the Third-Party Risk Management program by evaluating vendor risks, ensuring alignment with organizational policies, and periodically monitoring their security measures.
- Collaborate with stakeholders to ensure policies are well-documented, aligned with business objectives, and effectively communicated across the organization.
- Deliver customer-facing assurance documentation to foster transparency and trust in the organization’s security posture.
- Provide guidance and support to internal stakeholders on compliance matters, including training programs and awareness initiatives.
- Facilitate internal audits and reviews to evaluate the effectiveness of compliance programs and controls.
- Prepare reports on compliance status, risk assessments, and audit findings.
- Collaborate with external auditors and regulatory agencies as needed during audits and inspections.
Role Requirements
- 5+ years of experience in IT audit, risk management, information security, and/or compliance.
- Experience with GRC platforms (e.g. ServiceNow GRC, Vanta, Drata etc.) and understanding of their implementation and management.
- Strong knowledge of industry security frameworks including related regulatory compliance requirements (ISO27001, SOC 2, NIST CSF, NIST 800-53, GDPR, etc.)
- Experience with Third-Party Risk Management processes, including risk assessments and ongoing monitoring of vendor compliance.
- Ability to work well under pressure, independently and collaboratively: responsiveness, accuracy, and sense of urgency are essential to this role.
- Familiarity with various enterprise SaaS applications, cloud infrastructure such as AWS, GCP and the concepts of modern software engineering practices/tools, databases, operating systems, secure network design, and other technology relevant to cybersecurity.
- A team player with strong collaboration skills and the ability to work with minimal supervision.
- Deep knowledge of cybersecurity policies, controls, standards, and best practices.
- Strong eye for detail and ability to successfully manage third party audits, gather evidence and coordinate audit response.
- Ability to interface with customers and partners, articulating the organization’s security and compliance program to build trust and confidence.
Nice-To-Have Skills
- Bachelor's degree in Information Technology, Cybersecurity, or a related field.
- Professional certifications such as CISA, CISM, CRISC, or CISSP are highly desirable.
Tech Stack
- Cloud Infrastructure: GCP, AWS, MS Azure
- GRC Platforms: Vanta, Drata, Archer, ServiceNow
- Collaboration: Slack, JIRA, Confluence, Google Workspace
About Us:
We Power the Blockchain economy.
Blockdaemon powers the blockchain economy with its suite of industry-leading
infrastructure solutions. We are a globally established, ISO-27001 certified partner with extensive protocol coverage, offering technical depth, industry-leading SLAs, 70+ global points of presence through 10+ cloud and bare metal providers, and 24/7 support for an unmatched institutional-grade experience. We provide integrated business solutions to exchanges, custodians, crypto platforms, financial institutions, and developers using our end-to-end suite of blockchain tools, including dedicated nodes, APIs, staking, liquid staking, MPC tech, and more. Blockdaemon provides its customers with the confidence to quickly and easily scale without compromising security or compliance.
We are a globally distributed team.
Blockdaemon is an Equal Opportunity Employer.