Facebook pixel

Governance, Risk, and Compliance Analyst
Posted on 7/14/2022
INACTIVE
Locations
Omaha, NE, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Leadership
Management
Sales
Requirements
  • A leader. You're self-directed. You have the ability to develop & communicate a vision others will be compelled to follow. You'll serve as an information security subject matter expert that supports the development, implementation & maintenance of information security for the enterprise. The best part - you'll actively train, coach, and develop team members
  • GRC & Privacy Adept. You'll create and maintain information security policies, standards and controls for the organization based on zero-trust principles and aligned to the ISO standard. You'll also oversee the information risk management process, including risk analysis and mitigation activities, and enhancing the Enterprise Risk Management (ERM) program
  • A strong communicator. You advise divisional leaders on risk issues related to control design, effectiveness, regulatory changes & risk appetite, and recommend actions in support of the changing global regulatory environment
  • Organized. Documentation and knowledge-sharing comes naturally to you. You value year-over-year improvements and monitor, measure & refine the execution of security plans against strategic & metrics: KRIs & KPIs
  • A constant learner. You strive not just to learn, but to apply what you've learned in your personal and professional life. You understand current & emerging GRC & privacy changes, as well as staying abreast on new standards, and frameworks & integrate them into Hudl's existing enterprise architecture & design where applicable
  • Curious. You question the who, what, when, why, where & how with a desire for improvement. You're not satisfied with good enough - you aim to achieve best-in-class capabilities while maintaining efficiency & simplicity
  • Pragmatic. You can prioritize, clearly express tradeoffs, and generate buy-in on a solution that's best for everyone while in alignment with organizational risk tolerance. You also serve as an informal mentor & advisor to less experienced staff. You have the unique ability to make appropriate decisions considering the relative costs, risks, and benefits of potential actions
Responsibilities
  • Assist in executing strategies that improve the efficacy, efficiency & reliability of governance, risk, compliance & privacy enterprise wide. Support the Director and other key stakeholders to mature the privacy program & integrate into the overall security program
  • Assist in the creation and maintenance of information security policies, standards, and controls for the organization
  • Assist with managing the information risk management process, including risk analysis and mitigation activities. Assist in the creation of Enterprise Risk Management (ERM) program
  • Assist with all facets of Information Security Compliance, procedures, and controls to ensure compliance with applicable regulatory and legal requirements, including but not limited to the General Data Protection Regulation (GDPR), Family Educational Rights & Privacy Act (FERPA), ISO, SOC2, etc
  • Support the compliance program with ISO 27001, ISO 27002, & ISO 27701 process prioritization, creation & maturation, as well as future external audit processes
  • Support, improve & mature the privacy program, as well as enhance relationships with all stakeholder departments regarding privacy practices
  • Assist and support the development, implementation, and management of the vendor risk management program through RFP, vendor/customer due diligence process & overhaul customer-facing security program documentation to greatly improve customer experience & improve the sales cycle
  • Support teams with security and privacy controls and requirements
  • Apply your understanding of design and oversight of FERPA, SOC 2 Type 2, ISO 27001, 27002, 27701, 27017 & 27018 and willingness to support a common control framework. Refine controls under the guidance of zero trust principles
  • Assist in the development of reporting and metrics to senior leadership (KRI's & KPI's)
  • Bring 3-5 years of relevant experience
Hudl

1,001-5,000 employees

Sports film application and platform
Company mission
Hudl's mission is to make software that helps teams and athletes win. The company builds a platform to share and edit sports film.
Benefits
  • Free lunch (everyday!)
  • Free snacks, soda & coffee
  • New hire graduation
  • $5 t-shirts
  • Anniversary gifts
  • Casual dress code
  • Fantasy football & march madness brackets
  • Pop-a-shot
  • 3-on-3 basketball tourney
  • Unlimited vacation
  • 401(k)
  • Social events committee
  • Birthday bagels & donuts
  • Hudl helps
  • Hudl works smarter
  • Annual retreat
  • Free tickets to div. 1 & nfl games
  • Computer stipend
Company Values
  • DOMINATE: If something is worth doing, it’s worth dominating. We’re committed to giving every project our all.
  • WE LISTEN: A company is only as good as the product and support it provides. Our phone lines and inboxes are always open for feedback and questions.
  • WE'RE A FAMILY: Our friendship isn’t bound by office walls. We hang out after work, attend each other’s weddings, and show up for a Hudlie in need.
  • WE THRIVE ON THE FRONT LINES: To understand the product, we get to know our users. From clinics to campus visits, we’ll go just about anywhere to make sure our stuff works.
  • WE'RE RESPECTFULLY BLUNT: If there’s a problem or room for improvement, we speak to one another directly to work things out. No sugarcoating allowed. #RealTalk