Fevrok logo
Senior GRC Analyst (R-12733)
3 years ago

Why We Work at Dun & Bradstreet

Dun & Bradstreet unlocks the power of data through analytics, creating a better tomorrow. Each day, we are finding new ways to strengthen our award-winning culture and accelerate creativity, innovation and growth. Our 6,000+ global team members are passionate about what we do. We are dedicated to helping clients turn uncertainty into confidence, risk into opportunity and potential into prosperity. Bold and diverse thinkers are always welcome. Come join us!

The Senior GRC Analyst works with process owners, internal auditors, external auditors and other stakeholders; Assists in evaluating, monitoring and resolving findings (internal, external audit, etc.); Supports the team with the overall management of third party and compliance program. The Senior GRC Analyst will help drive the transformation of the company's third party security compliance program by supporting the execution third party assessments, risk analysis and issue resolution.

Key Responsibilities:

  1. Establish strong partnership with front line business partners and other stakeholders to ensure third party security program, policy and procedures are effective.

  2. Support third party security risk identification, assessment, evaluation, tracking, monitoring and mitigation.

  3. Define and implement vendor compliance requirements to address current risks and emerging threats.

  4. Perform vendor compliance assessments on new and existing vendors.

  5. Request & review risk profile to capture the risk of a particular vendor based on the vendor's responses and the architecture review of the deployment of the vendor solution.

  6. Escalate material issues and risks to the appropriate stakeholders.

  7. Coordinate with other stakeholders on our privacy, procurement and corporate IT departments to ensure alignment.

  8. Assist in building out a risk and compliance control framework based on industry leading standards.

  9. Assist in measuring and monitoring the maturity level of established GRC programs and existing controls.

  10. Provide support to the department in responding to the business units regarding day-to-day operational compliance questions.

  11. Build and track metrics and reporting for review and presentation.

Key Requirements:

  1. Bachelor's degree or an equivalent mix of education and experience in Information Cyber Security, Risk Management and Governance Risk and Compliance.

  2. 5 - 7+ years of direct information security experience, with a primary focus in risk and compliance.

  3. Minimum 3-6 years of experience in conducting and/or managing vendor assessments, customer assurance, maturity assessments, or risk assessments or other similar GRC roles.

  4. Strong knowledge of cyber compliance best practices, controls, programs and audits based on NIST, SCF, SOC 2 and ISO 27001 Standards.

  5. Strong eye for detail and ability to successfully manage third party audits.

  6. Certified as a CISA, CISM, CISSP or working toward certification preferred.

  7. Strong written, verbal communication and interpersonal skills to collaborate with cross-functional teams.

  8. Strong analytical and problem-solving skills capable of managing projects that drive business objectives.

  9. Familiarity with GRC tools (ZenGRC, OneTrust, Archer) methodologies and best practices.

  10. Ability to think critically, creatively and independently.

  11. A team player with strong collaboration skills and the ability to work with minimal supervision.

What we offer:

  1. Generous paid time off, increasing with tenure.

  2. 100% paid parental leave after one year.

  3. Paid sick time to care for yourself or family members.

  4. Education assistance and extensive training resources.

  5. Do Good Program: Paid volunteer days & donation matching.

  6. Competitive 401k & Employee Stock Purchase Plan with company matching.

  7. Health & wellness benefits, including a Gympass membership.

  8. Medical, dental & vision insurance for you, spouse/partner & dependents.

  9. Learn more about our benefits: https://bit.ly/2VwyKQt !

FOR US APPLICANTS - Equal Employment Opportunity (EEO): Dun & Bradstreet is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, age, national origin, citizenship status, disability status, sexual orientation, gender identity or expression, pregnancy, genetic information, protected military and veteran status, ancestry, marital status, medical condition (cancer and genetic characteristics) or any other characteristic protected by law. View the EEO is the Law poster here and its supplement here. View the pay transparency policy here .

We are committed to Equal Employment Opportunity and providing reasonable accommodations to qualified candidates and employees. If you are interested in applying for employment with Dun & Bradstreet and need special assistance or an accommodation to use our website or to apply for a position, please send an e-mail with your request to acquisitiont@dnb.com . Determination on requests for reasonable accommodation are made on a case-by-case basis.






posted by
Fevrok Botavatar
Fevrok Bot @bot
I'm a Fevrok Bot I fetch jobs from Fevrok partners websites
Company
Dun & Bradstreet's logo
Dun & Bradstreet
@dun-bradstreet (company)
similar jobs
Senior SAP Security Analyst SAP Security Analyst 3 Sr Sales Ops Specialist SENIOR SAP GRC ADMINISTRATOR Senior Associate, GRC Technology Enterprise Senior Associate, GRC Technology Enterprise Senior Associate, GRC Technology Enterprise Senior Associate, GRC Technology Enterprise Senior Associate, GRC Technology - Workday
Fevrok logo
Get support
Company
About us Blog Sitemap
Legal
Privacy policy
©2025 Fevrok. All Rights Reserved.
  english