Governance, Risk & Compliance [GRC] Analyst [REMOTE]

Iteris, a forward-thinking organization, is seeking a dedicated Governance, Risk & Compliance [GRC] Analyst to join our team. In this role, you’ll collaborate closely with our Security, Development and DevOps teams, driving compliance initiatives and guiding them to successful completion as the subject matter expert. Whether you’re based in one of our offices or working remotely, this position offers exciting challenges and growth opportunities.

What you will be doing:

• Guide cross-functional teams through project milestones, ensuring adherence to compliance requirements, policies and procedures where necessary
• Work alongside skilled development teams, validating that security controls are effectively implemented to obtain and maintain compliance
• As a core member of our close-knit team, you’ll tackle real-world problems that directly impact company objectives
• Coordinate scoping activities for initiated projects and follow process for project approval
• Expanding the GRC practice at Iteris by developing policies and procedures aligned with regulating bodies, such as NIST, ISO 27001, HITRUST, and SOC II
• Reporting on project progress as required by the Security and DevOps teams
• Consistent exercise of independent judgment and discretion in matters of significance
• Stay up-to-date on the current security landscape and evolving trends
• Spearhead Risk Assessment efforts and maintain a Risk Register
• Successfully navigating the SOC II audit process
• Explore the latest security tools and frameworks in a multi-cloud ecosystem
• Contributions will directly shape our security policies and drive growth opportunities

What you need to be successful in this role:

• Bachelor's Degree or Work Equivalent experience in Computer Security, Computer Science, Software Engineering, or related field
• 4+ years of experience in a Security Governance, Risk, and Compliance role
• 4+ years of experience as part of organizational projects driven by compliance requirement
• Desired Certifications: CISSP, CISA, CRISC, Security+, SSCP, CCSP, ITILv4
• Hands-on experience working with cross-functional teams through projects, keeping to deadlines and ensuring the project stays on track
• Ability to work directly with Subject Matter Experts to translate requirements into specifications and project objectives
• Deep understanding of Compliance Frameworks, creation of policy, and how to educate peers on these concepts.
• Broad understanding of security concepts, risks, and controls
• Experience with Security-focused project management
• Forward-thinking mindset, always thinking of the progression plan
• Experience with SOC II, HITRUST, FedRAMP, NIST 800-53, or NIST 800-171, or ISO 27001
• Experience with Disaster Recovery planning and validation
• Experience with AWS and Azure cloud environments
• Experience with Acunetix Security Scanner, OSSEC, Wazuh, or similar IDS/System Security Scanners

Iteris anticipates paying between $92,000 and $103,000 for this role. However, actual pay offered may vary depending on job related knowledge, skills, and experience..

#LI-REMOTE

What’s in it for you:
 

• Incentive-based yearly bonus
• 401(k) with immediate matching and no vesting period
• Employee Stock Purchase Program [ESPP]
• Open Paid-Time-Off [PTO]
• Comprehensive medical, dental, and vision coverage
• Life insurance
• Medical reimbursement plans
• Disability coverage
• Family-friendly programs
• Education assistance program
• In-house training programs

Iteris is the world’s trusted technology ecosystem for smart mobility infrastructure management. Delivered through Iteris’ ClearMobility® Platform, our AI-powered end-to-end solutions monitor, visualize and optimize mobility infrastructure around the world, and help bridge legacy technology silos to unlock the future of transportation. That’s why more than 10,000 public agencies and private-sector enterprises focused on mobility rely on Iteris every day. And we want YOU to join us on this important journey!Visit www.iteris.com for more information, and join the conversation on Twitter, LinkedIn and Facebook.

Iteris, Inc. is an Affirmative Action and Equal Employment Opportunity (EEO) employer.  We do not discriminate on the basis of age, race, gender identity and expression, color, sexual orientation, marital status, pregnancy or related conditions (including breastfeeding), national origin/ancestry, religion, military/veteran status, genetic information, citizenship status or any other characteristic and group protected by applicable law.  Iteris, Inc. complies with the Americans with Disabilities Act to ensure equal access to all qualified individuals with a physical or mental disability.  This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. A valid driver’s license may be required based on essential duties.