InfoSec GRC Analyst

Job Description

We are Camunda - where your work will have real impact! Picture yourself at a company where your work isn’t just another task on a list, but a key driver of transformation for hundreds of organizations. Your work will directly shape how hundreds of enterprises like Atlassian, NASA, and Goldman Sachs – orchestrate their most critical processes to drive digital transformation. In 2024, we crossed the $100 million mark in ARR – an incredible milestone in our growth story. We’ve been named in GP Bullhound’s 2024 Top 100 Next Unicorn list, we’ve earned Flexa’s stamp as a truly flexible workplace, and we proudly hold Great Place to Work certification in both the USA and UK. As a fully remote, global company, we’re rewriting the rules of how modern businesses operate. And we’re just getting started! We are growing fast and on a mission to find the very best talent in the world. If you’re ready to bring your bold ideas to a fast-paced, dynamic team, keep reading – this role could be the one you’ve been waiting for.

We are searching for a highly skilled dedicated InfoSec GRC Analyst to join our dynamic cybersecurity team. In this crucial role, you will be responsible for identifying and mitigating InfoSec risks, ensuring that Camunda continues to adhere to security standards, reviewing contracts and their InfoSec requirements, and helping with automating compliance monitoring.

What you'll be doing:

• Manage and recommend improvements to Camunda's ISMS.
• Drive Camunda's InfoSec audits (ISO 27001, SOC 2, and potentially more) with minimum supervision.
• Conduct vendor risk assessment to ensure that their security controls match our requirements.
• Evaluate and support negotiations of information security clauses in contracts to ensure compliance and risk mitigation.
• Lead responses to complex security questionnaires from clients and stakeholders.
• Collaborate with and enable IT, legal, and other business units to align security measures with business objectives, and to ensure that new compliance requirements are met.
• Implement continuous monitoring of the effectiveness of our security controls into our GRC tool.
• Perform detailed risk assessments and execute risk mitigation strategies.

What You'll Bring Along:

• Experience implementing and maintaining ISO 27001 and/or SOC 2 certifications
• Extensive experience in information security, risk management, or compliance, with a focus on Governance, Risk, and Compliance (GRC).
• Strong analytical skills and experience with risk management methodologies.
• Ability to manage projects and work across different time zones and multiple teams.
• Experience with GRC tools, compliance automation and monitoring.
• Ability and/or willingness to use our product.

Nice-to-haves:

• Software development knowledge
• Working experience in SaaS companies

#LI-GH1 #LI-remote #USEAST

What We Have to Offer:

Compensation

For external hires, we consider the skills and experience of the incoming candidate, but typically place candidates in the first half of the range to ensure ample room for growth over the entire lifecycle of the role.

Below is the annual Total Target Cash Compensation (Total Cash) range for Camundi located in one of our entities. Total Cash refers to base salary and 100% attainment of variable target, where applicable. Actual Total Cash offered will depend on factors such as skills and qualifications related to the role. To comprise the Total Rewards package, Camunda also offers equity (where applicable) in the form of a Virtual Employee Stock Option Plan and benefits based on the country of residence.

The annual Total Cash range for this position for Camundi in our entities is as follows:

• United States: $103,200.00 to $154,800.00
  
• Germany: €68,700.00 to €103,000.00
• United Kingdom: £66,900.00 to £100,400.00
• Singapore: S$128,200.00 to S$192,300.00

If you are outside one of these countries, you would be employed by our Preferred Employer Organization (PEO), Remote. After applying for the role and speaking with one of our Talent Acquisition Partners, you will be provided a link to access the Camunda Total Rewards Calculator which will outline the Total Cash range for your country.

Benefits

• A remote by design culture, we believe talent is global!
• We support our employees in maintaining a healthy work/life balance, so we offer and encourage flexible time off at Camunda. Use your flexible time for anything that helps you recharge your batteries or maintain your life outside of work.
• A home office equipment budget and the choice of hardware. Mac, Windows, Linux - you choose what works best for you or/and you can work from a coworking space.
• Social interactions are important to us! Each year, Camunda hosts a company-wide get-together in new and exciting locations. In 2024, we will be heading off to the Dominican Republic. Find out more about past annual retreats.
• We are committed to fostering a nurturing workplace where your health is prioritized and we help you to thrive. That's why we've teamed up with Modern Health to provide a global well-being program accessible to all Camundi.
• Beyond therapy and coaching sessions, Modern Health also offers guided meditations, digital wellness kits, and accessible learning content ranging from mental health, financial wellness, physical movement and more!
• To promote movement we also pay towards your fitness activities.
• Power your self-driven learning journey and elevate your skills by unlocking up to 1000 $/€/£ annually with the Professional Growth Benefit.
• We understand our employees contribute immeasurably to Camunda’s success. To allow employees to benefit from that success, every Camunda employee is offered virtual shares from our Virtual Stock Option Plan (VSOP).

More of what we offer globally & in your country can be found here.

"Everyone is welcome at Camunda” — this is a celebrated component of our culture. We strive to create an inclusive environment that empowers our people. At Camunda, we honour diverse cultures and backgrounds and are proud to be an equal opportunity employer. All qualified applicants will receive consideration without regard to gender, race, ethnicity, religion, belief, sexual orientation, age, disability or any other protected characteristics under applicable law. We are looking forward to your application!

Did we pique your interest? Apply now and learn more. For a complete list of jobs at Camunda, please check out: https://camunda.com/career/.