Senior Staff Analyst, GRC

The Senior Staff Analyst, GRC role at Mozilla is integral to the Security Function within the broader Infrastructure team. This position focuses on developing and implementing a comprehensive Governance, Risk, and Compliance (GRC) framework across both enterprise and product verticals. Mozilla, known for pioneering products like the Firefox browser, is committed to building a safe and secure internet, aligning with its mission to make the internet better for people.

Key responsibilities include developing and maintaining a GRC strategy aligned with business objectives, leading the creation and enforcement of standards, policies, controls, audits, and reporting across various enterprise and product verticals. The role also involves developing and operationalizing a risk assessment and management framework, ensuring compliance with regulatory standards such as ISO, NIST, SOC2, CCPA, and GDPR, and leading internal and external audit activities. Collaboration with Legal, IT, Finance, and Security teams is essential to deliver a cohesive integrated risk management framework.

Candidates should have over 10 years of experience in developing and delivering integrated GRC frameworks, with a strong understanding of regulatory frameworks and tools related to building robust GRC structures. Experience in leading cross-functional requirements for product and enterprise teams to implement compliance controls is crucial. Relevant industry certifications such as CISA, CISSP, CISM, or CRISC are preferred. Strong critical thinking skills, the ability to develop Root Cause Analysis and remediation plans, and the capacity to collaborate and influence diverse stakeholders are also important.

Mozilla offers generous performance-based bonus plans, comprehensive medical, dental, and vision coverage, and generous retirement contributions with immediate vesting. Additional benefits include quarterly all-company wellness days, country-specific holidays plus a day off for your birthday, a one-time home office stipend, an annual professional development budget, and considerable paid parental leave.

Joining Mozilla means contributing to a mission-driven organization that values diversity, equity, and inclusion. With a relatively small team serving hundreds of millions of users, Mozilla provides opportunities for personal and professional growth, encouraging exploration and mentorship within a culture that prioritizes people and their privacy over profits.