GRC Analyst - Mesh

Remote $130k–$175k 22 days ago full-time quality 7.8/10

What You'll Do

  • Own and strengthen our controls environment, ensuring compliance requirements are effectively implemented and maintained.
  • Support and mature our GRC program, including SOC 2 operations and alignment with broader security frameworks such as NIST.
  • Build and maintain our Business Continuity and Disaster Recovery program, including BIAs, continuity plans, and recovery runbooks.
  • Conduct vendor and third-party risk assessments as we expand our global network of partners.
  • Support MiCA licensing and U.S. Money Transmitter License applications through due diligence, regulatory responses, and compliance reporting.
  • Manage the security issue lifecycle, driving remediation efforts and partnering with teams to reduce risk.
  • Help standardize policies, controls, and compliance processes that can scale across jurisdictions and regulatory frameworks.

Who You Are

  • 3–5 years of hands-on GRC experience in an operating environment, with a track record of building and managing compliance programs—not just auditing them.
  • Deep familiarity with one or more major frameworks, such as SOC 2, NIST, PCI, MiCA, NYDFS, or CCPA.
  • Experience building or maturing Business Continuity and Disaster Recovery programs, with a strong understanding of how business impact assessments inform recovery strategies.
  • Comfortable supporting the full risk lifecycle, including risk assessments, control testing, issue management, and remediation.
  • A hands-on builder who enjoys improving processes, operationalizing controls, and turning requirements into scalable programs.
  • Regularly uses AI tools to increase efficiency and improve outcomes across areas such as policy development, process monitoring, or program management.
  • Experience in fintech, crypto, payments, or other regulated industries is a plus, as is familiarity with GRC platforms such as Vanta, Drata, or Archer.

Why You’ll Love It Here

  • Competitive salary and equity that grows as you and the company grow.
  • Comprehensive health coverage for you and your family.
  • Unlimited PTO—and we mean it. Take the time you need to recharge and show up at your best.
  • Dedicated budget for courses, conferences, and certifications.
  • Remote-friendly approach with top-tier tools and equipment.

Similar jobs

Before you apply

  • Legitimate employers never ask you to pay anything to apply or get hired.
  • Never share seed phrases or private keys. No real job needs them.
  • Do not install software ("test tasks", "trading tools", "video call clients") sent during hiring.
  • Check that the application page's domain really belongs to Mesh.