Zoom · 10 hours ago
GRC Analyst
United States
Full-time
Remote
Entry, Mid Level
$88K/yr - $186K/yr
2+ years expZoom is seeking a talented GRC Tech Analyst to join our Security GRC team. The role focuses on maturing the Common Controls Framework and expanding certification landscape while collaborating with various teams to automate compliance monitoring and implement controls.
CollaborationInformation TechnologyMessagingSaaSVideo Conferencing
Responsibilities
Playing a central role in the maturation and documentation of Zoom's Common Controls Framework
Evaluating, documenting, and communicating security issues and risks related to control design and gaps
Co-administering the GRC platform and its modules across multiple teams
Assessing the effectiveness of management, operational, and technical security controls
Developing and managing a security exceptions process
Collaborating with cross-functional teams to gather and document security requirements
Identifying automation opportunities for evidence collection and control compliance verification
Supporting external auditors during regulatory and compliance assessments. Consulting with key stakeholders on information security policies, standards, and procedures
Qualification
Required
Have 2+ years of experience in cybersecurity governance, risk management, compliance, or assessments/audits
Demonstrate understanding of cybersecurity, GRC lifecycle, security assessment methodologies, security questionnaires, and evidence review processes
Show familiarity with security, cloud, and compliance frameworks (e.g., ISO 27001/27002, NIST (CSF, 800-53, 800-171), SOC 1/2). This also includes frameworks such as CIS Controls, PCI DSS, HITRUST, FedRAMP, CSA CCM, and ISO 27017/27018
Be able to analyze complex environments against cybersecurity control requirements and communicate conformance clearly to technical and non-technical audiences
Show effective organizational and project management skills with attention to detail. Excellent written and verbal communication skills
Demonstrate knowledge of data protection regulations (e.g., GDPR, CCPA/CPRA, HIPAA/HITECH, GLBA) and familiarity with cloud-based IaaS architectures, preferably in AWS and OCI (a bonus)
Have experience with SaaS-based GRC tools or platforms (e.g., HyperProof, ServiceNow, or similar platforms). Also have experience with security monitoring offered natively in platforms and applications, such as AWS, SIEM and PAM tools, and vulnerability scanning solutions. (a bonus)
Possess professional certifications such as CISA, CISM, CISSP, ISO 27001 Auditor (a bonus)
Benefits
A variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health
Support work-life balance
Contribute to their community in meaningful ways
Company
Zoom
Zoom is a software company that offers a communications platform that connects people through video, voice, chat, and content sharing.
5001-10000 employees
H1B Sponsorship
Zoom has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (16)
2024 (178)
2023 (144)
2022 (259)
2021 (86)
2020 (34)
Funding
Current Stage
Public CompanyTotal Funding
$276MKey Investors
ARK Investment ManagementSequoia CapitalEmergence Capital
2021-11-04Post Ipo Equity· $130M
2019-04-19Post Ipo Equity
2019-04-18IPO
Leadership Team
Eric Yuan
Founder & CEO
Xuedong Huang
Chief Technology Officer
Recent News
Crunchbase News
2026-01-23
2026-01-22
2026-01-22
Company data provided by crunchbase