Security GRC Analyst

LiveRamp is the data collaboration platform of choice for the world’s most innovative companies. A groundbreaking leader in consumer privacy, data ethics, and foundational identity, LiveRamp is setting the new standard for building a connected customer view with unmatched clarity and context while protecting precious brand and consumer trust. LiveRamp offers complete flexibility to collaborate wherever data lives to support the widest range of data collaboration use cases—within organizations, between brands, and across its premier global network of top-quality partners.

Hundreds of global innovators, from iconic consumer brands and tech giants to banks, retailers, and healthcare leaders turn to LiveRamp to build enduring brand and business value by deepening customer engagement and loyalty, activating new partnerships, and maximizing the value of their first-party data while staying on the forefront of rapidly evolving compliance and privacy requirements.

The LiveRamp Security team is dedicated to building trust in the LiveRamp brand through effective data stewardship. The security program is designed to reduce risk in alignment with business goals by establishing and leading the execution of a comprehensive security strategy. Security serves to protect information and physical assets of LiveRamp by establishing the security framework (policies, standards and processes). The Security team works in collaboration with the business leads to align the security function, to deeply understand business risks and changes, foster accountability for security, and strengthen the partnership between security and business leaders.

You will:

LiveRamp is seeking an experienced security risk analyst who will drive risk assessment remediation and tracking and participate in risk assessments. This role will report to the Senior Director of Global Security Governance, Risk, and Compliance and work with cross-functional teams and external parties to support security risk management, security governance programs and activities and advise on security risks. 

• Work under the direction of the Senior Director of Global Security Governance, Risk, and Compliance in supporting security risk management, security maturity assessments, cloud security governance and reporting efforts.

• Assist in leading risk assessments and risk reporting

• Monitor risk findings and remediation efforts

• Follow-up with risk owners on risk remediation and act as a security ambassador to assist teams with risk mitigation and treatment.

• Understand and update the risk model

• Assist with the continuous monitoring of security GRC functions, developing executive reporting, and performing security risk management.

• Support security compliance and certification functions such as ISO 27001, HIPAA, NIST CSF, GDPR, and SOC2

• Develop strong working relationships with support teams, management, and cross functional working groups.

• Manage status and reporting on activities, issues, projects to team leadership

• Strengthen technical ability to understand security risk and mitigating/compensating controls.

• Stay current on security industry trends, attack techniques, mitigation techniques, and security technologies by attending conferences, networking with peers, and other educational opportunities.

Your team will: 

The GRC mission is to maintain a scalable and cohesive risk and compliance function by integrating risks, policies, and controls. Enabling continuous risk management and cross-functional coordination between Security and the Business while meeting the needs of our customers.

About you: 

• Good understanding of Information Security principles and technologies, technical information, and security concepts.

• Demonstrated conceptual, analytical, and innovative problem-solving and evaluative skills, and an ability to conduct independent research and analysis, identify issues, formulate options, and make conclusions.

• Understanding of existing and emerging technologies.

• Project management skills – planning, status reporting, issues resolution, risk mitigation.

• Highly effective communication with all levels of the organization including senior and executive management.

• Ability to deliver high-quality documentation deliverables including business requirements documents, design documents, test cases, and end user training guides.

• Strong organizational, interpersonal and presentation skills.

• Excellent written and oral communication skills.

• Ability to multi-task and handle multiple projects at the same time.

• Exceptional problem solving, critical thinking, and analytical skills.

• Bachelor’s Degree in Information Technology, Computer Science, Computer Information Systems, Risk Management, Cybersecurity, or equivalent educational or professional experience/qualifications.

• Understanding of security controls (e.g. secure software development, access control, auditing, authentication, encryption, integrity, physical security, and application security).

• Strong problem-solving skills, including the ability to develop innovative risk mitigation solutions that address core issues.

• Team-oriented with experience working with diverse teams.

The approximate annual base compensation range is $113,000 to $170,000. The actual offer, reflecting the total compensation package and benefits, will be determined by a number of factors including the applicant's experience, knowledge, skills, and abilities, geography, as well as internal equity among our team

Benefits:

• People: Work with talented, collaborative, and friendly people who love what they do.

• Fun: We host in-person and virtual events such as game nights, happy hours, camping trips, and sports leagues. 

• Work/Life Harmony: Flexible paid time off, paid holidays, options for working from home, and paid parental leave.

• Comprehensive Benefits Package: LiveRamp offers a comprehensive benefits package designed to help you be your best self in your personal and professional lives.  Our benefits package offers medical, dental, vision, life and disability, an employee assistance program, voluntary benefits as well as perks programs for your healthy lifestyle, career growth and more.

• Savings: Our 401K matching plan—1:1 match up to 6% of salary—helps you plan ahead.  Also Employee Stock Purchase Plan - 15% discount off purchase price of LiveRamp stock (U.S. LiveRampers)

• RampRemote: A comprehensive office equipment and ergonomics program—we provide you with equipment and tools to be your most productive self, no matter where you're located

More about us:

LiveRamp’s mission is to connect data in ways that matter, and doing so starts with our people. We know that inspired teams enlist people from a blend of backgrounds and experiences. And we know that individuals do their best when they not only bring their full selves to work but feel like they truly belong. Connecting LiveRampers to new ideas and one another is one of our guiding principles—one that informs how we hire, train, and grow our global team across nine countries and four continents. Click here to learn more about Diversity, Inclusion, & Belonging (DIB) at LiveRamp.

LiveRamp is an affirmative action and equal opportunity employer (AA/EOE/W/M/Vet/Disabled) and does not discriminate in recruiting, hiring, training, promotion or other employment of associates or the awarding of subcontracts because of a person's race, color, sex, age, religion, national origin, protected veteran, disability, sexual orientation, gender identity, genetics or other protected status. Qualified applicants with arrest and conviction records will be considered for the position in accordance with the San Francisco Fair Chance Ordinance. 

California residents: Please see our California Personnel Privacy Policy for more information regarding how we collect, use, and disclose the personal information you provide during the job application process.

To all recruitment agencies: LiveRamp does not accept agency resumes. Please do not forward resumes to our jobs alias, LiveRamp employees or any other company location. LiveRamp is not responsible for any fees related to unsolicited resumes.