Simplify Logo

Full-Time

Governance

Risk & Compliance, GRC, Manager

Confirmed live in the last 24 hours

Litmus

Litmus

51-200 employees

Edge data platform for industrial automation

Industrial & Manufacturing
Data & Analytics

Expert

Santa Clara, CA, USA

Category
Legal
Risk & Compliance
Legal & Compliance
Required Skills
Management
Requirements
  • Self-motivated individual
  • Minimum 5 years of experience in security governance, risk management, compliance, audit, internal controls, or other security related areas
  • Minimum of 7-10 years of total work experience
  • Knowledge of multiple regulatory compliance frameworks (NIST CSF, ISO27001, SOC, GxP, GMP etc.)
  • Deep understanding of frameworks, attestations, and certifications
  • Considerable hands-on experience with various compliance, preferably for a service provider and/or merchant
  • Ability to prioritize and track multiple projects in parallel
  • Experience in security-related analysis, creating metrics and dashboards, and summarizing large data sets
  • Experience in managing modern compliance tools like Drata
  • Previous experience as a Qualified Security Assessor (QSA) or Internal Security Assessor
Responsibilities
  • Help company successfully achieve various required compliances
  • Maintain Drata compliance management system
  • Maintain & monitor compliance with the information security policies and procedures
  • Proactively manage the company’s ISO 27001 Information Security Management System ensuring continual compliance and ongoing eligibility for annual recertification
  • Recommend changes/enhancements to the company’s policies/procedures based upon the evolving landscape
  • Develop and manage the firm's vendor risk quantification & management program
  • Manage & improve the process to respond to client audit and related requests in a timely manner
  • Oversee third-party technical risk assessments and related audit activity
  • Serve as a subject matter expert for information security risk management principles and practices
  • Perform internal technical risk assessments/audits
  • Produce and maintain information security documentation including, but not limited to policies, procedures, standards, guidelines, and diagrams
  • Proactively assess potential items of risk and opportunities
  • Promote a culture of information security across all business units
  • Understand the role of systems and technology within the firm and the value they deliver to the business
  • Oversee readiness for external audits

Litmus provides an Industrial Edge Data Platform for Industry 4.0, offering rapid edge data collection and standardization, real-time analytics, and machine learning, trusted by global Fortune 500 companies for fast connectivity to OT assets and data utilization at the edge and across the enterprise. The platform enables off-the-shelf templates for quick start-ups, integrations for data sharing, and centralized Industry 4.0 efforts, catering to various industries such as aerospace, agriculture, automotive, electronics, food and beverage, healthcare, medical, oil and gas.

Company Stage

Series B

Total Funding

$40.7M

Headquarters

Santa Clara, California

Founded

2014

Growth & Insights
Headcount

6 month growth

4%

1 year growth

7%

2 year growth

57%