Senior Staff Analyst, Governance, Risk, and Compliance (GRC) - Remote

Overview

The Senior Staff Analyst will define, develop, and help implement a Governance, Risk, and Compliance (GRC) framework for Mozilla, contributing to a safe and secure internet.

In Short

• Develop and maintain a comprehensive GRC strategy and roadmap.
• Operationalize a risk assessment and management framework.
• Ensure compliance with regulatory standards (ISO, NIST, SOC2, etc.).
• Collaborate with Legal, IT, Finance, and Security teams.
• Lead internal and external audit activities.
• Define and deliver measurable scorecards for decision-making.
• Engage cross-functional stakeholders to address challenges.
• Drive long-term organizational impact through critical thinking.
• Utilize technology and tools for GRC processes.
• Provide leadership in building a robust GRC framework.

Requirements

• 10+ years in developing and delivering GRC frameworks.
• Deep knowledge of regulatory frameworks and tools.
• Experience with cross-functional requirements for compliance.
• Relevant industry certifications (CISA, CISSP, etc.).
• Hands-on experience with SEIM and BI tools.
• Ability to develop Root Cause Analysis and remediation plans.
• Strong critical thinking skills.
• Proven ability to navigate constraints for business outcomes.
• Ability to influence diverse stakeholders.

Benefits

• Performance-based bonus plans.
• Rich medical, dental, and vision coverage.
• Generous retirement contributions.
• Quarterly wellness days.
• Birthday off and country-specific holidays.
• Home office stipend.
• Annual professional development budget.
• Quarterly well-being stipend.
• Paid parental leave.
• Employee referral bonus program.