# GRC Analyst

**Company:** [Vercel](https://hotfix.jobs/companies/vercel)
**Location:** Remote
**Role:** Other
**Salary:** $134k – $202k/yr
**Experience:** 3+ years
**Skills:** SOC 2, ISO 27001, HIPAA, Pci Dss, Audit Lifecycle, Internal Controls, GRC, Cloud Infrastructure, AWS, Azure, Drata, Linear, Datadog, SDLC, Project Management
**Posted:** 2026-07-02

> GRC Analyst responsible for maintaining compliance with security and privacy frameworks (ISO 27001, SOC 2, HIPAA, PCI), managing audits, internal controls, remediation, and supporting customer security inquiries in a fast-paced cloud environment. Requires 3+ years audit experience and strong project management skills.

## Job Description

## Responsibilities
- Collaborate with internal teams to maintain an effective suite of internal controls and drive remediation efforts to completion with clear documentation of progress.
- Build strong working relationships across the business so compliance accountability is shared and stakeholders are informed.
- Streamline annual audits by managing audit deliverables, developing treatment plans, and coordinating across teams to document and track completion to ensure audit success.
- Monitor and improve controls, processes, and evidence management practices; identify opportunities to automate and streamline GRC operations; contribute to controls maturity scoring and reporting.
- Enable go-to-market teams and accelerate deal cycles by supporting security questionnaires, addressing compliance inquiries, and maintaining clear, customer-facing documentation on Vercel’s security and compliance posture.
- Design and manage company training and enhance visibility on compliance-specific topics for internal stakeholders to ensure an understanding of compliance, ethics, and regulatory requirements.

## Requirements
- At least 3 years of relevant experience in supporting the audit lifecycle in a cloud-centric environment (SOC 2, ISO 27001, PCI, HIPAA, etc.).
- Strong organizational skills to be flexible and proactive in a high-growth, start-up environment.
- Experience collaborating closely with internal partners to seamlessly incorporate policies and technical controls into the SDLC.
- Strong project management skills and sense of ownership with the ability to communicate and collaborate effectively, and execute projects across various business units and levels.

## Nice-to-Haves
- Strong experience with cloud infrastructure (e.g., Azure, AWS).
- Familiarity with compliance or software development tools and systems (e.g., Drata, Linear, Datadog, etc.).
- Experience with frontend development and open source components.
- Relevant industry certifications (i.e., CISM, CISSP, CCEP).

## Similar roles

- [Manager, Data Center Operations](https://hotfix.jobs/jobs/0ee6e6f0-7128-49e5-821d-2ff8b71f1b3f) - Crusoe - Springfield, OH - $135k – $175k/yr
- [Site Selection Manager](https://hotfix.jobs/jobs/5c569876-d1de-4df1-819c-903612fb709f) - Fluidstack - Austin, TX - $135k – $235k/yr
- [Tenant Improvement Project Manager](https://hotfix.jobs/jobs/e228d693-2a38-426a-8f73-c8589e16dea0) - Launchdarkly - Oakland, CA - $135k – $177k/yr
- [Digital Assets Compliance](https://hotfix.jobs/jobs/006ae40b-30be-451f-a057-6c14caf987e1) - Column - San Francisco, CA - $130k – $170k/yr
- [Product Compliance Manager](https://hotfix.jobs/jobs/df984159-24b8-43fb-8f2a-a96545be0ca1) - Cardless - San Francisco, CA - $130k – $150k/yr

**Apply:** https://hotfix.jobs/jobs/315005e5-d4c0-41ab-8471-8c379d25b9d6
**Canonical:** https://hotfix.jobs/jobs/315005e5-d4c0-41ab-8471-8c379d25b9d6