Browse All Jobs

Security GRC Associate Analyst at LastPass

Security GRC Associate Analyst to support risk and compliance efforts.
Remote
Portugal
Undisclosed salary

LastPass is seeking a Security GRC Associate Analyst to support its Governance, Risk, and Compliance (GRC) program. The ideal candidate will be proactive and collaborative, working cross-functionally to support information security risk and compliance efforts across product and enterprise functions. This role involves adapting to change, collaborating with stakeholders, and driving security initiatives to support a customer-centric approach.

The GRC Team enhances LastPass' operational resilience and stakeholder trust by aligning security, compliance, and business objectives. The role offers the opportunity to engage in complex problem-solving and contribute to a culture of innovation and teamwork.

Role Involves:

  • Providing guidance on information security program objectives and risk management strategies.
  • Assessing and communicating compliance requirements with security standards and frameworks like ISO 27001 and SOC 2.
  • Monitoring and responding to support requests in the GRC team intake queue.
  • Conducting security risk assessments, including third-party assessments.
  • Responding to information security inquiries and questionnaires from customers and business partners.
  • Performing control assurance activities for continuous control reporting and monitoring.
  • Assisting in the preparation and execution of internal and external audit activities.
  • Contributing to the ongoing operation and improvement of the security program.

Requirements:

  • A background in GRC or security-related roles with 2+ years of experience.
  • Knowledge of security and privacy-related standards and frameworks such as NIST 800-53, FedRAMP/StateRAMP, CMMC, ISO 27001, SOC 2, and SOX ITGC.
  • Ability to integrate security and privacy controls into business processes.
  • Excellent listening, written, and verbal communication skills.
  • Capable of working independently with strong initiative and organizational skills.
  • Strong ability to communicate complex cybersecurity concepts to a diverse audience.
  • A growth-oriented mindset with the ability to challenge the status quo.

What LastPass offers:

  • Market-leading password manager
  • High-growth, collaborative environment with inclusive teams
  • Remote-first culture
  • Flexible Paid Time Off policies
  • Generous parental leave
  • Comprehensive health coverage, including dependents
  • Home office setup support
  • LastPass Families free account for up to 5 members
  • Continuous learning and development opportunities
Apply

LastPass