GRC Analyst (Compliance)
Our GRC team is growing and we’re looking for a talented technology audit, compliance, and risk professional to join the team!
The Squarespace GRC team’s initiatives have wide ranging visibility and provide a unique opportunity to actively partner with departments across the organization. The GRC team at Squarespace is comprised of two sub-teams: Risk/Data Privacy and Compliance. The GRC Analyst (Compliance Focus) role will report into the GRC Compliance team lead and focus primarily on developing ongoing audit/monitoring plans for the technology controls in place throughout our Engineering department. Specifically, the GRC Analyst will be involved in the evaluation of internal control design and operating effectiveness to ensure compliance with security and financial reporting frameworks. In addition to a strong partnership with GRC and Engineering team members, the GRC Analyst role will also liaise with teams across the organization (Internal Controls, Finance, Security Engineering) in order to execute technology audits that address the organization’s current needs.
All Squarespace employees are working remotely at this time. We are closely monitoring the status of COVID-19 as we continue our work to build a return-to-work plan that ensures a safe return to our offices and provides flexibility for our employees.
RESPONSIBILITIES
- Assist with ongoing maintenance of information security policies as they relate to Squarespace compliance initiatives.
- Conduct design and operational effectiveness testing to confirm adherence to company policy and controls.
- Clearly document audit procedures and results.
- Demonstrate a clear understanding of how technology scoping works in a SOX engagement.
- Possess an entry level understanding of the differences between operational, security, and financial reporting risk.
- Work closely with engineering teams to understand and assess the controls within their particular environment(s).
- Assist with roadmaps that outline audit approaches and plans for each quarter.
- Liaise with Finance, Accounting, and Internal Controls teams to understand business processes and how technology controls fit into those processes.
- Display a working knowledge of SOX IT General Controls requirements.
- Work closely with the Security Engineering team to understand their audit needs and build those needs into quarterly roadmaps.
- Provide regular status updates to the GRC Compliance team lead and proactively communicate delays in work as they occur.
- Partner with external audit firms on audit and compliance initiatives.
QUALIFICATIONS
- Roles at this level require a university/college degree.
- 2+ years relevant experience in an IT audit/compliance/risk management role.
- Must have experience in controls testing in line with SOX and/or SOC 1/2/3 frameworks.
- Proven ability to plan and execute ITGC testing and subsequent status reporting.
- Familiarity with working cross departmentally (Internal Controls, Finance, Accounting, People).
- Ability to effectively communicate audit findings to GRC team members.
- Experience with security audits is a plus.
- Should have experience with identifying, tracking, reporting and remediating IT procedural and technical risk.
- Working knowledge of web based technologies and cloud environments is a major plus.
- Big-4 experience is a plus.
- CISA certification is a plus.
BENEFITS & PERKS
- Health insurance with 100% premium covered for you and your dependent children
- Fertility and adoption benefits
- Retirement benefits with employer match
- Flexible vacation & paid time off
- Up to 20 weeks of paid family leave
- Equity plan for all employees
- Pretax commuter benefits
- Education reimbursement
- Employee donation match to community organizations
- 7 Employee Resource Groups across locations
- Dog-friendly workplace
- Free lunch and snacks
- Private rooftop
ABOUT SQUARESPACE
Squarespace is a leading all-in-one website building and ecommerce platform that enables millions to build a brand and transact with their customers in an impactful and beautiful online presence. Our suite of products enables anyone at any stage of their journey to manage their projects and businesses through websites, domains, ecommerce, marketing tools, and scheduling, along with tools for managing a social media presence with Unfold and hospitality business management via Tock. Squarespace democratizes access to best-in-class design, helping our customers in approximately 200 countries and territories maintain consistent branding across all digital touchpoints to stand out online. Our team of more than 1,400 is headquartered in downtown New York City, with offices in Dublin, Ireland, Portland, Oregon, Los Angeles, California and Chicago, Illinois. For more information, visit www.squarespace.com.
OUR COMMITMENT
Today, more than a million people around the globe use Squarespace to share different perspectives and experiences with the world. Not only do we embrace and celebrate the diversity of our customer base, but we also strive for the same in our employees. At Squarespace, we are committed to equal employment opportunity regardless of race, color, ethnicity, ancestry, religion, national origin, gender, sex, gender identity or expression, sexual orientation, age, citizenship, marital or parental status, disability, veteran status, or other class protected by applicable law. We are proud to be an equal opportunity workplace.