Whoop company logo

Whoop is hiring a GRC Analyst, Operations & Risk

Get the latest jobs to your inbox!

Job Description

As a GRC Analyst, you will support the WHOOP Governance, Risk, and Compliance program. You will help manage risk reviews, operational requests, and cross-functional security compliance workflows. Success in this role requires strong attention to detail, responsiveness and accountability through completion in a fast-paced environment.

A key focus of this role will be helping ensure GRC work is reviewed, prioritized, routed, tracked, and completed effectively. You will use intake and ticketing data to identify workflow trends, recurring questions, handoff gaps, and opportunities to improve guidance, templates, reporting, automation, and stakeholder experience. You will also support broader GRC initiatives, including compliance calendar activities, control monitoring, process documentation, security awareness coordination, and continuous improvement across the GRC program.


RESPONSIBILITIES:
  • Support day-to-day GRC program operations – manage and triage GRC intakes and accurate tracking through resolution

  • Perform and support third-party risk management activities, including vendor reviews, reassessments, partner coordination, remediation tracking, and cross-functional follow-up with Security, Legal, Privacy, Procurement, IT, Finance, and business owners

  • Assist with risk program management activities

  • Support security compliance monitoring and audit readiness activities, managing audit request lists and taking ownership of gathering security audit evidence to verify compliance with internal policies / regulations and industry best practices

  • Coordinate security awareness and training program management activities


  • QUALIFICATIONS:
  • 2+ years of experience in GRC, third-party risk management, security compliance, internal audit, risk management, or a related function

  • Deep understanding of Cybersecurity compliance frameworks and cybersecurity compliance controls – ISO 27001, NIST CSF, COSO, SOC 2, PDI-DSS

  • Possess a strong risk mindset, exceptional attention to detail, and the ability to apply critical thinking when assessing complex issues and control gaps

  • Highly organized and strong operational discipline ensuring clear and expedient escalations with informed recommendations to management

  • Superior interpersonal and communication skills – verbal and written

  • Being a team player and working to achieve common goal in a dynamic setting

  • Strong commitment to embracing and leveraging AI tools in day-to-day tasks, ensuring AI-assisted work aligns with the same high-quality standards as personal contributions.

  • A minimum bachelor’s degree in any discipline. Computer science, cyber security and risk or technology degrees preferred. CISA or CRISC certification preferred


  • Sponsored
    ⭐ Featured Partner

    Explore Biotech Careers

    Discover exciting opportunities in biotechnology. Join innovative companies that are advancing healthcare and life sciences through cutting-edge research and development.

    Remote FriendlyCompetitive SalaryBiotech

    Salary Information

    Salary: $95,000 - $110,000

    🤖 This salary estimate is calculated by AI based on the job title, location, company, and market data. Use this as a guide for salary expectations or negotiations. The actual salary may vary based on your experience, qualifications, and company policies.

    Compare salaries in Boston

    Create a Job Alert

    Interested in building your career at Whoop? Get future opportunities sent straight to your email.

    Create Alert

    Related Opportunities

    Discover similar positions that might interest you