Sr. GRC Analyst

Sr. GRC Analyst at Fivetran Sr. GRC Analyst at Fivetran in Oakland, California Posted in about 12 hours ago.

Job Description:

Bengaluru, Karnataka, India, APAC Position Title:

Sr. GRC Analyst From Fivetrans founding until now, our mission has remained the same: to make access to data as simple and reliable as electricity. With Fivetran, customer data arrives in their warehouses, canonical and ready to query, with no engineering or maintenance required. Were proud that more organizations continue to leverage our technology every day to become truly data-driven. About the Role At Fivetran, we're on a mission to make access to data as simple and reliable as electricity. Our fully automated platform moves data from 700+ sources to any destination reliably and securely powering the analytics, AI, and decision-making that drives modern businesses forward. This role will be part of the GRC team. The Fivetran GRC team is responsible for ensuring the continuous integrity, confidentiality, and availability of customer data. Our customers trust us with their most sensitive information, and maintaining that trust is a critical, core component of both our product and our business. We are seeking a motivated and detail-oriented Senior GRC Analyst to join our Security team. This role is ideal for a control-focused audit professional with a solid understanding of IT systems and infrastructure. Strong communication skills are essential, as is the ability to collaborate and influence across functions and levels of the organization. The position reports to the Director of GRC and will provide broad cross-functional exposure, working closely with teams across Security, Engineering, Operations, IT, and HR. This is a full-time position based in our Bangalore office. We offer a hybrid work model that blends remote flexibility with in-person collaboration, with two days per week in office. Technologies Youll Use GRC platform for organizing, tracking, and managing controls, testing activities, and audit evidence Cloud platforms, including AWS, Azure, and GCP, for understanding and evaluating cloud-hosted environments and associated controls Jira for ticket management, workflow tracking, and cross-functional collaboration GitHub for version control and collaboration on security documentation and policy management Google Workspace for day-to-day productivity, documentation, and internal communication What Youll Do Conduct control walkthroughs, testing, and evaluation of IT general controls and application controls across a complex systems landscape, with coverage spanning

ISO 27001, PCI-DSS, SOC 1, SOC

2, and other applicable frameworks Partner with cross-functional teams to design, implement, and continuously improve control processes and related documentation Support third-party vendor assessments, evaluating vendors against established security and privacy standards and requirements Develop, maintain, and update Information Security Policies and Standards in alignment with industry best practices and regulatory obligations Participate in IT SOX scoping, risk assessment, and control design activities, contributing to the organization's overall internal control environment Prepare and deliver clear, accurate internal status reports to communicate control findings, remediation progress, and program updates to relevant stakeholders Skills Were Looking For Demonstrated experience in security audit, IT audit, and risk management, with a strong understanding of control frameworks and audit methodologies. Working knowledge of industry compliance frameworks, including

NIST, ISO 27001, SOC 1, SOC

2, and PCI-DSS Familiarity with cloud technologies and environments, including one or more of GCP, AWS, and Azure, with an understanding of cloud-specific security and control considerations Strong analytical and technical problem-solving skills, with the ability to assess complex control environments and draw well-supported conclusions Proven ability to work collaboratively across functions, taking initiative and contributing constructively to shared team objectives Effective at managing multiple concurrent workstreams, with strong organizational skills and the ability to prioritize in a fast-paced environment Excellent written, verbal, and interpersonal communication skills, with the ability to present complex information clearly to both technical and non-technical audiences Bonus Skills Familiarity with FedRAMP compliance requirements and the associated authorization process and control framework Professional certifications in audit or information security, such as CISA, CISSP, AWS, or

SANS GIAC

designations, are strongly preferred Prior experience working at or directly with a Big 4 public accounting firm, with exposure to large-scale audit and advisory engagements Experience leveraging AI tools to build workflow automations and drive operational efficiencies within a GRC or security context #

LI-HYBRID

#LI-VM1 Perks and Benefits 100% employer-paid medical insurance

• Generous paid time-off policy (PTO), plus paid sick time, inclusive parental leave policy, holidays, and volunteer days off RSU stock grants
• Professional development and training opportunities Company virtual happy hours, free food, and fun team-building activities Monthly cell phone stipend Access to an innovative mental health support platform that offers personalized care and resources in areas such as: therapy, coaching, and self-guided mindfulness exercises for all covered employees and their covered dependents.
• May vary by country and worker type - please reach out to your recruiter for more information Click to learn more about Fivetran's Benefits by Region.

Were honored to be , but more importantly, were proud of our . Read about us in . Fivetran brings together high-quality talent across the globe to make data access as easy and reliable as electricity for our customers. We value and recognize that our customers benefit from having innovative teams made of people from many backgrounds, experiences, and identities. Fivetran promotes diversity, equity, inclusion & belonging through attracting, recruiting, developing, and retaining a diverse workforce, not only because it is the right thing to do, but because it helps us build a world-class company to better serve our customers, our people and our communities. To learn more about Fivetrans culture and what its like to be part of the team, and enjoy our video. To learn more about our candidate privacy policy, you can . We are committed to ensuring that all candidates have an equal opportunity to participate in our interview process. If you require accommodations at any stage of the process due to a disability, medical condition, or any other circumstance, please don't hesitate to submit your request by filling out this . We will work with you to provide reasonable accommodations to facilitate your participation and ensure a fair and accessible interview experience. Your request and any information provided will be kept confidential and will not impact your candidacy. We look forward to hearing from you and accommodating your needs to the best of our ability. Equal Opportunity Employer, including disability/protected veterans Equal employment opportunity, including veterans and individuals with disabilities. PI284447815