Senior Staff Analyst, GRC

Job Category: Technology and IT
Job Type: Full Time / Remote
Job Location: United States
Salary: Competitive salary
Company Name: Mozilla

Position Overview:

The GRC Lead at Mozilla plays a critical role in developing, implementing, and maintaining a comprehensive Governance, Risk, and Compliance (GRC) framework across both enterprise and product teams. This position ensures alignment of security, privacy, regulatory, and risk management initiatives, providing oversight, guidance, and measurable outcomes to enhance organizational resilience.

Key Responsibilities

  • Governance: Develop and maintain a strategic GRC roadmap aligned with business objectives. Lead creation and enforcement of policies, standards, controls, audits, and reporting across enterprise and product verticals.

  • Risk Management: Operationalize a risk assessment framework, enabling prioritization and remediation of critical issues. Define measurable metrics and scorecards for data-driven decisions.

  • Compliance: Ensure adherence to regulatory standards (ISO, NIST, SOC2, CCPA, GDPR, etc.) and lead internal and external audits, tracking resolutions and remediations.

  • Cross-Functional Partnership: Collaborate closely with Legal, IT, Finance, and Security teams to deliver an integrated risk management framework.

  • Data Lifecycle Oversight: Define requirements and reporting for data lifecycle management across enterprise and product domains in coordination with data platform and legal teams.

Qualifications

  • Experience: 10+ years of progressive experience in developing and implementing integrated GRC frameworks.

  • Knowledge: Deep expertise in regulatory frameworks, risk governance, and compliance processes.

  • Certifications: Relevant industry certifications such as CISA, CISSP, CISM, CRISC.

  • Technical Skills: Hands-on experience with SIEM, BI tools, and other GRC technologies.

  • Leadership & Collaboration: Strong ability to influence diverse stakeholders, drive change, and implement long-term organizational improvements.

  • Problem-Solving: Ability to perform Root Cause Analysis (RCA) and develop remediation plans for risk deficiencies.

What Mozilla Offers

  • Performance-based bonus plans

  • Comprehensive medical, dental, and vision coverage

  • Generous retirement contributions with immediate vesting

  • Paid wellness days, professional development budget, and well-being stipend

  • Paid parental leave and other country-specific benefits

  • Home office stipend and employee referral programs

About Mozilla

Mozilla is a non-profit-backed technology company committed to making the internet open, secure, and user-focused. With flagship products like Firefox and Pocket, Mozilla serves over 225 million people globally. The company prioritizes privacy, inclusivity, and innovation while fostering a supportive work environment for employees and contributors worldwide.

Diversity & Inclusion: Mozilla encourages applications from all equity-seeking communities and provides reasonable accommodations to qualified individuals with disabilities.

APPLY

Apply for this position

Allowed Type(s): .pdf, .doc, .docx