Wiz, Inc.
Senior Governance, Risk and Compliance Analyst - Governance
Job Summary
The role involves designing and updating policies, procedures, and controls to ensure confidentiality, integrity, and availability of the company's environment. The successful candidate will collaborate cross-functionally to address governance and compliance needs, support audit processes, and stay current with security and regulatory trends. Candidates should have over five years of experience in governance, risk, and compliance domains, with knowledge of industry frameworks like ISO, SOC 2, and PCI DSS. The position requires a mix of technical and non-technical collaboration within a fast-paced tech environment to enhance security compliance initiatives.
Required Skills
Job Description
Come join the company that is reinventing cloud security and empowering businesses to thrive in the cloud. As the fastest-growing startup ever, Wiz is on a mission to help organizations secure cloud environments that will accelerate their businesses. Trusted by security teams all over the world, we have a proven track record of success and a culture that values world-class talent.
Our Wizards from over 13 countries work together to protect the infrastructure of our hundreds of customers, including over 45% of the Fortune 100, who trust us to scan and secure over 230 billion files daily. We’re the leading player in a massive and growing market, but it’s still early enough for you to make a significant impact. At Wiz, you’ll have the freedom to think creatively, dream big, and use your full range of skills to contribute to our record growth. Come join our team and help us create secure cloud environments that allow the best companies to move faster.
SUMMARY
We’re looking for a Senior Governance, Risk, and Compliance Analyst – Governance to join us in spreading the power of Wiz. In this role, you will report to the Manager, Governance, Risk, & Compliance and work alongside a team of Wizards that focus on understanding the business needs of our customers, establish GRC best practices, and continue to enhance Security processes.
WHAT YOU’LL DO
- Design and update policies, procedures, and controls to drive confidentiality, integrity, and availability across the Wiz environment.
- Continuously improve processes, tools, and procedures for audit and compliance management.
- Collaborate and work cross-functionally across the company to address governance and compliance needs and to support the Wiz Control Framework, partnering with Engineering, Product, Sales, Legal, HR, and other teams.
- Proactively improvement control design and performance to address a changing risk landscape
- Deliver timely audits through working with internal and external auditors
- Help customer-facing teams respond to information security requirements and questionnaires.
- Assist with third party risk management reviews, assessing vendor’s security, compliance, and privacy posture.
- Participate in team project management, including documentation, project planning, task management, and prioritization
- Participate in recurring annual core audits (e.g., SOC 2, ISO, PCI)
- Maintain awareness of security and regulatory trends, perform research and analysis on new certifications, and help Wiz pursue new international compliance initiatives
- Collaborate with Security leadership to define roadmap and prioritization for Governance and Compliance initiatives
WHAT YOU’LL BRING
- 5+ years of experience in one or more of the Governance, Risk, and Compliance domains.
- Passion for security and keeping Wiz safe.
- Ability to collaborate with technical and non-technical teams alike to further oversight responsibilities of Security.
- Deep knowledge of one or more industry frameworks such as ISO 27001, ISO 27017, SOC 2, PCI DSS, NIST CSF, etc. and baseline knowledge of others
- Ability to assist with security compliance assessments to ensure compliance with internal and external requirements (ISO, NIST, CIS, etc.)
- Experience working in a fast-paced tech environment both independently, and collaboratively within a team environment.
- Ability to build strong relationships across teams and functions in a global workplace
Preferred Qualifications:
- Experience pursuing net new compliance certifications and initiatives
- Experience working in a SaaS/tech environment
Wiz is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics.
By submitting your application, you acknowledge that Wiz will process your personal data in accordance with Wiz's Privacy Policy.
Wiz, Inc.
Wiz is the unified cloud security platform with prevention and response capabilities, enabling security and development teams to build faster and more securely.
See more jobsSafe Remote Job Search Tips
Verify Employer Thoroughly
Research the company's identity thoroughly before applying. Check for a professional website with contacts, active social media, and LinkedIn profiles. Verify details across platforms and look for reviews on Glassdoor or Trustpilot to confirm legitimacy.
Never Pay to Get a Job
Legitimate employers never require payment for applications, training, background checks, or equipment. Always reject upfront payment requests or demands for bank details, even if they claim it's for purchasing necessary work gear on your behalf.
Safeguard Your Personal Information
Protect sensitive data like SSN, bank details, or ID copies. Share this only after accepting a formal, written job offer. Ensure it's submitted via a secure company system or portal, never through insecure channels like standard email attachments.
Scrutinize Communication & Interviews
Watch for communication red flags: poor grammar, generic emails (@gmail), vague details, or undue pressure. Be highly suspicious of interviews held only via text or chat apps; legitimate companies typically use video or phone calls.
Beware of Unrealistic Offers
If an offer's salary or benefits seem unrealistically high for the work involved, be cautious. Research standard pay for similar roles. Offers that appear 'too good to be true' are often scams designed to lure you into providing information or payment.
Insist on a Formal Contract
Always secure and review a formal, written job offer or employment contract before starting work or sharing final personal details. Ensure it clearly defines your role, compensation, key terms, and conditions to avoid misunderstandings or scams.