Logo
SharkNinja

Sr Governance, Risk and Compliance (GRC) Analyst

SharkNinja, Needham Heights, Massachusetts, us, 02494


Sr Governance, Risk and Compliance (GRC) Analyst

Our purpose is to positively impact people’s lives every day in every home around the world! We work very hard to provide our consumers with high-quality, exciting 5-star products that make life easier. We thrive on passion and innovation and are looking for great people, with great ideas, who want to build the next big thing and develop while they do.The SharkNinja Global Security and Privacy team is seeking an experienced GRC (Governance, Risk and Compliance) Analyst to join our dynamic team. The ideal candidate will have a strong background in risk management, security controls, regulatory compliance and governance frameworks. In this role, you will lead initiatives and operate programs that reduce SharkNinja business risk in partnership with security, IT and other key stakeholders. The job offers a variety of responsibilities with opportunities to make a mark on a growing company’s security program.What you will do:Own and manage collaboration with IT stakeholders to oversee IT general control performance and drive improvements to meet SOX audit requirements.Lead and coordinate SOX audit activities with internal audit and IT stakeholders, ensuring seamless communication and alignment.Evaluate, manage, and report vendor cybersecurity program maturity to management and business stakeholders, taking ownership of improvement plans.Oversee the evaluation and reporting of key regulatory requirements, such as eCommerce PCI DSS, IoT compliance, and FDA regulations for medical devices, ensuring compliance across all relevant areas.Own and drive the documentation, review, and updates of policies to enhance cybersecurity and privacy program maturity.Lead risk remediation activities across IT and with business stakeholders through the risk register program, ensuring timely and effective resolution of risks.Experience:Bachelor’s degree in Information Technology, Cybersecurity, Risk Management, or a related field.3+ years of experience in IT Internal Audit, IT Governance, Risk Management, Compliance, or IT Security roles.Strong understanding of IT security controls, risk management principles, and governance frameworks such as ISO 27001, NIST, COBIT.Experience managing compliance programs for standards like NIST, PCI-DSS, SOX, and familiarity with audit processes and controls.Project management and organizational skills with the ability to prioritize tasks, manage deadlines, and lead security initiatives.Proven ability to work independently and deliver high-quality results while effectively collaborating with cross-functional teams when needed.Excellent communication skills, both verbal and written, with the ability to explain complex security concepts in business-friendly terms.Who You are:Self-Starter : Able to work independently, deliver results, and continuously seek learning and growth opportunities.Team Player : Values collaboration and builds strong relationships to achieve common goals.Critical Thinker : Possesses strong analytical and problem-solving skills, with a keen attention to detail.Adaptable : Capable of adjusting to shifting priorities, demands, and timelines, and thrives in a fast-paced environment while staying updated on global regulations, including IoT security.Effective Communicator : Strong communication and presentation skills, with the ability to work effectively with virtual teams in a global setting.

#J-18808-Ljbffr