Senior GRC Analyst
Full-time
Workato
ABOUT WORKATO
Workato delivers enterprise infrastructure for the agentic era, redefining iPaaS and helping enterprises unify data, applications, processes, and AI into a single, governed platform. A leader in Enterprise MCP and trusted by 50% of the Fortune 500, Workato’s cloud-native architecture connects every application, data source, and process to power real-time orchestration at scale. With enterprise-grade security and continuous innovation at its core, Workato provides the trusted foundation for organizations to automate with confidence and operationalize AI across the business. To learn more, visit [WHY JOIN US?
Ultimately, Workato believes in fostering a flexible, trust-oriented culture that empowers everyone to take full ownership of their roles. We are driven by innovation and looking for team players who want to actively build our company. But, we also believe in balancing productivity with self-care. That’s why we offer all of our employees a vibrant and dynamic work environment along with a multitude of benefits [ they can enjoy inside and outside of their work lives. If this sounds right up your alley, please submit an application. We look forward to getting to know you! Also, feel free to check out why: * Business Insider [ named us an “enterprise startup to bet your career on” * Forbes’ Cloud 100 [ recognized us as one of the top 100 private cloud companies in the world * Deloitte Tech Fast 500 [ ranked us as the 17th fastest growing tech company in the Bay Area, and 96th in North America * Quartz [ ranked us the #1 best company for remote workersRESPONSIBILITIES
Workato is seeking a detail-oriented, driven, and technically experienced Senior GRC Analyst to strengthen and advance its security governance, risk, and compliance (GRC) program — with a primary focus on FedRAMP authorization and ongoing federal compliance operations. This role will lead FedRAMP readiness, authorization, and continuous monitoring activities in alignment with NIST 800-53 requirements, while also supporting broader compliance frameworks including ISO 27001, NIST 800-171, PCI-DSS, and IRAP. The ideal candidate will bring deep federal compliance expertise combined with strong analytical, communication, and problem-solving skills to evaluate controls, identify gaps, and drive improvements across security domains. In this role, you will also be responsible for: * Leading FedRAMP authorization efforts — including System Security Plan (SSP) development, Security Assessment Report (SAR) review, Plan of Action & Milestones (POA&M) management, and preparation for Third Party Assessment Organization (3PAO) engagements * Owning continuous monitoring (ConMon) activities in accordance with FedRAMP requirements, including monthly vulnerability scanning, incident reporting, and annual assessments * Maintain and update FedRAMP authorization documentation, including SSP, CIS, CRM, and associated artifacts * Lead internal and external audits for frameworks including FedRAMP (NIST 800-53), ISO 27001/27701, PCI-DSS, NIST 800-171, and IRAP * Coordinate with process owners, control owners, 3PAOs, and federal agency stakeholders to ensure findings are tracked and remediated * Conduct risk assessments, security audits, and third-party/vendor risk reviews with a focus on FedRAMP boundary and supply chain risk * Review contracts to ensure security and compliance requirements — including FedRAMP flow-down clauses — are met * Identify control gaps and recommend improvements to enhance the organization's federal security posture * Communicate FedRAMP requirements, risks, and compliance status clearly to both technical and non-technical stakeholders, including federal agency customers * Perform regular user access reviews aligned to least-privilege and FedRAMP AC control requirements- Develop and track remediation plans for identified risks and POA&M items
- Maintain and update the risk register with federal risk considerations
- Oversee vendor and subservice provider security assurance processes relevant
REQUIREMENTS
QUALIFICATIONS / EXPERIENCE / TECHNICAL SKILLS
* 8+ years of experience in cybersecurity, audits, risk management, compliance, or remediation * Hands-on FedRAMP experience required — including direct involvement in FedRAMP authorization (Moderate or High baseline preferred), SSP authoring, POA&M management, or 3PAO coordination * Deep familiarity with NIST 800-53 Rev 5 control families and FedRAMP-specific overlays, guidance, and templates * Experience working with cloud platforms such as AWS GovCloud, Azure Government, or Google Cloud (government regions) * Proven ability to negotiate and prioritize risk remediation with internal and federal stakeholders * Bachelor's degree in Information Systems, Computer Science, Information Security, or a related field * Strong understanding of security controls in cloud environments, including boundary definition, encryption, access control, and vulnerability management- Familiarity with NIST 800-171 and CMMC as complementary federal frameworks
- Experience auditing frameworks such as PCI-DSS, SOC 2, and ISO 27001/27701
- Relevant certifications strongly preferred: CISSP, CISA, FedRAMP-specific
SOFT SKILLS / PERSONAL CHARACTERISTICS
* Strong communication skills with the ability to translate federal compliance requirements into technical actions and executive-level summaries * High energy and adaptability in a fast-paced, high-stakes compliance environment * Strong collaboration and knowledge-sharing mindset across engineering, legal, and customer-facing teams * Excellent time management and organizational skills — particularly for managing concurrent ConMon and audit cycles * High attention to detail, integrity, and ethical standards consistent with handling federal data and programs * Willingness to learn and take on new challenges as Workato's federal footprint growsNICE TO HAVE
- This position requires overlap with U.S. Pacific Time (PST) working hours.
- Strong hands-on experience with FedRAMP, NIST 800-53, ISO 27001, NIST
- May involve some international travel.
- Must be eligible to work on U.S. federal government-related programs; ability
(REQ ID: 2761)
#LI-NJ1
Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Senior GRC Analyst in Palo Alto, CA vacancy
$80 - $82 per hour
Itlearn360 is seeking a Sr GRC Analyst in Santa Clara, CA, responsible for vendor risk assessments across various security domains and supporting customer audit requests. The perfect candidate will have a Bachelor's Degree in Technology or Risk Management and relevant certifications...SeniorHourly pay- Exact Sciences Corporation in Redwood City is seeking a Senior SAP Security Application Analyst to support SAP applications and improve processes. This role involves designing solutions, troubleshooting issues, and mentoring junior analysts. The successful candidate will...Senior
- ...infrastructure. Our culture is open, positive, collaborative, and results-driven. Come join us! Position Overview DataVisor is seeking a Senior Risk Consultant to join our Professional Services team. In this role, you will lead a variety of technical and strategic client...SeniorRemote workFlexible hours
$80 - $82 per hour
Sr GRC Analyst job at Pinnacle Group. Santa Clara, CA. Job Description: Duties: Perform vendor risk assessments against all security domains Perform technical implementation assessments from a security perspective related to vendor integrations (i.e. API integrations...SeniorFull time$176.5k - $238.5k
Intuit is seeking a Staff Fraud and Risk Analyst based in Mountain View, California. This role will develop and implement fraud risk policies, collaborating with cross-functional teams to innovate consumer lending products. The ideal candidate should have over 5 years of...Senior- Pharma Search Partners, Inc. is seeking a Senior Director/Director of Biostatistics to lead statistical efforts in oncology drug development in Palo Alto, CA. This role involves overseeing cross-functional teams, developing strategies, and ensuring the quality of deliverables...Senior
$163.2k - $220.8k
Wilson Sonsini is the premier legal advisor to technology, life sciences, and other growth enterprises worldwide. We represent companies at every stage of development, from entrepreneurial start‑ups to multibillion‑dollar global corporations. Responsibilities Lead AI risk...SeniorWorldwideShift work- Nubank, located in Palo Alto, is seeking a Senior AI Risk Management professional to define and enhance their frameworks for AI and Agentic AI. This hands-on position emphasizes quality assessments and developing controls for safe AI deployment. Candidates should possess...SeniorWork at officeRemote work
$278.2k - $339.25k
A leading AI and data platform company in Mountain View is seeking a Senior Data Security leader to enhance the security of its infrastructure. Ideal candidates will have over 10 years of experience in Data Security and considerable expertise in cryptography and systems...Senior$197.6k - $261.3k
Gen is seeking a Senior Principal Product Manager for Ecosystem, Partnerships & Distribution in Mountain View, California. This senior role involves owning the ecosystem strategy and developing partnerships to enhance Gen Digital's product capabilities. The ideal candidate...Senior- JPMorgan Chase in Palo Alto seeks a Senior Principal Software Engineer to lead the architectural development of AI solutions. The role requires expertise in LLMs and GNNs, applying extensive experience in deploying model serving platforms to drive business impact. You...Senior
$150.5k - $204k
...base while managing the financial risk exposure for Intuit. As a senior member in the risk team, your focus is to enhance and develop... ...global business solutions. Collaborate with stakeholders and analysts to ensure analytical and risk solutions are scalable, repeatable...SeniorWorldwide$156k - $234k
...employees in multiple countries committed to serving patients worldwide. Please visit for more information. Brief Description: The Senior Principal Statistician, Biostatistics will be a lead statistician on individual studies, across related studies, and for integrated...SeniorRemote workWorldwideFlexible hours$230k - $320k
...equivalent federal compliance frameworks * Experience building or significantly improving compliance automation (evidence pipelines, GRC platform integrations, continuous monitoring) * Familiarity with GRC platforms (LogicGate, Drata, Vanta, or similar) as a power...SeniorFull timeTemporary workWork at officeRemote workFlexible hours- ATX Venture Partners seeks a Principal Engineer to drive technology initiatives and create scalable solutions. You'll develop systems in a highly collaborative environment, utilizing both front-end and back-end technologies, particularly in AI domains. The ideal candidate...Senior
$280k - $385k
A leading data and AI company seeks senior leaders to define the strategy for its security platform, focusing on Authentication. Candidates should have extensive experience in Data Security, leadership skills, and a strong communication background. The role offers a competitive...SeniorRemote job- Namely, based in Mountain View, California, is seeking a Distinguished Software Development Engineer to lead the development of innovative AI and machine learning solutions within the Galaxy ecosystem. The ideal candidate will have over 6 years of experience in software...Senior
- A leading financial institution is seeking a Senior Principal Software Engineer to provide engineering expertise within the Commercial & Investment Bank. This role involves developing strategies for Model serving solutions, implementing MLOps practices, and optimizing...Senior
- El Camino Health in Mountain View is seeking a skilled Compensation Lead to analyze and improve compensation programs. The role involves developing job descriptions, ensuring regulatory compliance, and collaborating with various teams to enhance total rewards strategies...Senior
- A leading health technology company is seeking a Senior Actuary to develop actuarial models and financial projections that highlight the clinical and financial value of their AI platform. Located in Palo Alto, this role involves analyzing medical claims data and creating...Senior
- DW Simpson Global Actuarial & Analytics Recruitment is seeking a detail-oriented actuary to join their pricing team in Palo Alto, California. The candidate will lead the analysis and execution of state-level rate changes and manage new program launches. The ideal candidate...Senior
- ...Senior Actuary Hippocratic AI is looking for a Senior Actuary to join our G&A team, reporting to the Chief Business Development Officer. This role is central to how we engage with payor partners — you'll build the actuarial models, risk analyses, and economic frameworks...SeniorContract work
- Hippocratic AI in Palo Alto is seeking a Senior Actuary to join the G&A team. In this pivotal role, you'll build actuarial models and economic frameworks, engaging with payor partners and influencing the company's go-to-market strategy. The ideal candidate will have a...Senior
$110k - $130k
Omnissa, LLC is looking for a seasoned professional to join our team and optimize deal approval processes through effective collaboration with Sales, Finance, and Legal teams. The successful candidate will have at least 5 years of deal desk experience in Software and SaaS...Senior- ...Senior Reporting Analyst – Center of Excellence (Pune, India) In this role you will own OTC KPI reporting, including ARR and related SaaS metrics. Validate and reconcile ARR/OTC data across Salesforce (SFDC) reporting datasets and Oracle, resolving issues tied to completeness...Senior
$110k - $130k
Omnissa, LLC is seeking a Senior Analyst to support the sales team through deal structuring and pricing negotiations. The ideal candidate will have over 5 years of Deal Desk experience within the Software and SaaS sectors. This hybrid role emphasizes analytical and problem...Senior$63k - $75k
...Senior Business Immigration Analyst About the Role: Fragomen's Senior Business Immigration Analyst position will provide you with the opportunity to make an immediate impact on our business, as well as offer training, development, and long-term growth opportunities....SeniorWork at officeImmediate start$145k - $167k
...Senior Regulatory Affairs Specialist Palo Alto, CA - Hybrid Hyperfine, Inc. is the groundbreaking health technology company that has redefined brain imaging with the Swoop systemthe first FDA-cleared, portable, ultra-low-field, magnetic resonance brain imaging system...SeniorWork experience placementWork at officeWorldwideWork visaNight shiftWeekend work3 days per week- ...Palo Alto Networks, Inc. is seeking a visionary Senior Principal AI / Data Scientist to lead the transformation of our Autonomous Digital Experience Management (ADEM) team. This role will leverage cutting-edge AI and Machine Learning to revolutionize network troubleshooting...Senior
- Waymo is seeking a Business Analyst to join their Strategy & BizOps team in Mountain View, California. This role involves driving research outcomes, analyzing business trends, and collaborating with cross-functional teams to achieve successful outcomes. Candidates should...Senior
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior GRC Analyst. Be the first to apply!
Related searches
- senior cloud service delivery manager Palo Alto, CA
- senior business analyst contract Palo Alto, CA
- senior product design engineer Palo Alto, CA
- senior game producer Palo Alto, CA
- senior software manager Palo Alto, CA
- senior manager business analytics Palo Alto, CA
- senior marketing account manager Palo Alto, CA
- senior marketing manager Palo Alto, CA
- sr operations manager Palo Alto, CA
- senior director of development Palo Alto, CA


