At Bluebeam, we empower people to advance the way the world is built. We create smart software solutions that make construction sites more efficient, connected and safe and improve the lives of design and construction professionals everywhere.
The GRC Analyst supports Bluebeam teams in implementing and maintaining Information Security Governance, Risk Management, and Compliance (GRC) initiatives with emphasis on managing the process to complete external security questionnaires for Bluebeam and its customers. This includes maintenance and optimization of its systems for answering such questionnaires. In addition, the GRC analyst will support internal risk assessments, assist in audit and regulatory compliance projects, contribute to policy drafting/finalization, support security awareness initiatives, and support other GRC and Information Security projects as assigned in cooperation with the various relevant functions.
About the Role:
- Manage the customer security questionnaire process, including responding to customer security questionnaires and requests within organizational SLAs
- Support internal and external audits
- Support the documentation and maintenance of internal controls and associated evidence
- Support and/or lead security awareness efforts
- Manage security reviews of vendors and other third-parties during procurement and annual reviews
- Review, maintain, and update information security policies, procedures, standards, and other information security related documentation
- Collaborate across the organization on documenting, implementing, monitoring and managing Information Security controls
- Collect, consolidate, and update Information Security Team on regulatory developments and control gaps
- Support business projects and perform other duties as assigned
About You:
- 1-3 + years of full-time work experience in IT audit or IT risk management
- Bachelor’s Degree in Computer Science with emphasis in security
- Experience in leading security assessments, Loopio experience a plus
- Working knowledge of common IT technologies and processes
- Basic understanding of technical aspects of information security
- Experience with Security compliance frameworks such as SOC2, ISO27001, NIST, PCI, etc.
- Understanding of risk management principles and methodologies
- Strong communication skills including ability to present technical subjects to non-technical audiences including Bluebeam’s customers
- Experience with application security, SaaS, or cloud security is a plus
Extras:
- CISA, or similar risk management, audit or security certification
What we offer:
- People-focused, entrepreneurial culture with the backing of a stable, global, corporate entity – Nemetschek
- Competitive compensation and benefits package
- 100% paid medical premiums for employees, 80% paid for dependents
- Fully vested 401K right from the day you start
- Generous PTO, including sick/mental health & volunteer days
- Free & unlimited access to BetterUp Care, a well-being platform
- Work-life balance fostered through a culture of diversity, inclusion, and appreciation of individual lifestyle needs
- Opportunity for continuous professional development
- Free & unlimited access to LinkedIn Learning
- Up to $5K annual education reimbursement (after 1 year tenure)
Below is our DEIBA (Diversity, Equity, Inclusion, Belonging, and Accessibility) mission statement:
Bluebeam is committed to building an inclusive environment in which everyone, regardless of background, has an opportunity to experience a deep sense of belonging. Each of our unique perspectives amplifies our collective power, and by encouraging diverse perspectives in an environment infused with mutual respect, we arrive at better solutions. And when we bring the best version of ourselves to work, we can make our best contributions to the global community of people who build our world.
About Bluebeam
The construction industry is adopting new technology at a feverish pace. Tablets and cell phones are replacing paper blueprints, drones are surveying jobsites in 3D, and cloud collaboration is changing the way teams work together. Bluebeam plays a crucial role in this transformation. The key to our success is a customer-focused approach to product development: we work with the industry to create solutions for the industry. Today, over 3 million people throughout the world use Bluebeam. In the US, we’re a critical partner for the majority of top AEC firms, and rapidly expanding our presence globally, with offices in Sweden, Germany and the UK.
Come design and build your future with us!
Bluebeam is proud to be an equal opportunity workplace. We are committed to equal opportunity regardless of race, color, ancestry, religion, gender, gender identity, parental or pregnancy status, national origin, sexual orientation, age, citizenship, marital status, disability, or veteran status.
Base pay offered will depend upon qualifications and other operational considerations. Base pay is one part of Bluebeam’s Total Rewards program, which seeks to compensate and recognize employees for their work. Most sales positions are eligible for commission under the terms of an applicable commission plan, while most non-sales position are eligible for a bonus under the terms of an applicable bonus plan. Additionally, Bluebeam provides best in class benefits, with 100% employee covered health and welfare benefits and paid time off. Bluebeam is a growing company with many opportunities. If this role and/or pay range is not an exact fit, we still encourage you to apply.
The base pay range for this position is: $77,100 – $96,400
#Bluebeam #LI-FT1 LI-Remote
