WiseTech Global
https://wisetechglobal.comAbout
Company social profiles
Jobs at WiseTech Global
About WiseTech Global:
WiseTech Global is a leading force in empowering and revolutionizing the world's supply chains. Our innovative technologies play a pivotal role in safeguarding the data and ensuring the security of thousands of users globally, including the world's largest freight forwarders. We are dedicated to delivering efficiency, transparency, and confidence through our Governance, Risk, and Compliance (GRC) framework.
The Opportunity:
We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Analyst with expertise in managing acquisitions, integrating them seamlessly into our company's way of working as well as responding to our customers' security questionnaires.
The ideal candidate should have 7+ years of direct work experience and a proven track record of successfully navigating the challenges associated with assimilating newly acquired entities into existing business operations.
The role requires a keen understanding of regulatory compliance, risk management, and a strategic mindset to ensure smooth and efficient integration processes. The GRC Analyst will play a critical role in enhancing our overall GRC posture and maintaining regulatory compliance for WiseTech Global.
Given the close collaboration with technical security teams, the ideal candidate will bring a solid background in technical cybersecurity (e.g. experience as a Security Analyst, SecOps Analyst, Incident Response Analyst or similar), alongside recent and relevant experience in governance, risk, and compliance (GRC).
Key Responsibilities:
· Acquisition Assessment: Collaborate with cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities.
· Integration Planning: Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy.
· Risk Management: Evaluate and mitigate risks associated with integration processes, working closely with risk management teams.
· Policy and Procedure Harmonization: Bridge gaps between existing practices and those of acquired entities, harmonizing policies, procedures, and controls.
· Communication and Stakeholder Management: Effectively communicate integration plans and progress, fostering strong relationships with key stakeholders.
· Reporting and Documentation: Maintain accurate documentation of integration activities and generate insightful reports for senior management.
· Continuous Improvement: Identify areas for improvement and drive enhancements to the integration process.
· Customer Security Questionnaire Support: Collaborate with various teams to ensure accurate and comprehensive responses to customer security questionnaires.
· Strong foundation in core IT or Cybersecurity principles, ideally supported by hands-on experience in areas such as networking, system administration, or security operations.
Qualifications and Desired Experience:
· 7+ years of hands-on experience in GRC, preferably with a focus on acquisition integration.
· Strong knowledge of regulatory compliance requirements, risk management frameworks, including ISO 27001, NIST.
· Experience with SOC1/2, GDPR, and privacy frameworks.
· Proficiency in information security tools, techniques, and controls.
· Experience with metrics and KPIs to measure and track information security risk.
· Ability to develop policies, standards, and guidelines.
· ISO27001:2022 Lead Implementer, and lead auditor certifications are desirable.
· CISA, CISM, CISSP, or CRISC certifications are desirable.
· Experience with GRC tools, such as Vanta, Archer, ServiceNow Risk modules is highly desirable.
· Exposure to CMMC/FedRAMP is highly desirable.
Candidate Characteristics:
· Exceptional communication and interpersonal skills.
· Analytical mindset with the ability to identify, assess, and mitigate risks.
· Good project management skills with ISMS and control implementation experience.
· Knowledge of GRC software tools and technology.
· Attention to detail and commitment to high-quality deliverables that meet business and compliance objectives.
Why Join WiseTech Global:
At WiseTech Global, we don't just offer a job; we provide an opportunity to excel. We believe in hiring the best talent who can drive themselves and our business to greater heights. Join us in our mission to transform global trade, one innovation at a time.
Join WiseTech Global and be a part of a dynamic and innovative team dedicated to transforming global trade.
Before You Apply:
From time to time, WiseTech Global may use an external service provider to assess applications on our behalf. Accordingly, by applying for this role and providing your personal information to WiseTech Global, you consent to WiseTech Global providing this information to our external service providers who are required to treat such information with strict confidentiality in line with privacy and data protection laws and regulations.
Similar companies
About the company
We build network solutions for the emerging Next Generation Central Office (NGCO) market.
We have re-applied design patterns from the hyper-scale world to Service Provider and cloud networks in order to faster implement new features into operational networks.
Our parallel modular architecture allows customers programmability, performance and scale to alter CAPEX and OPEX.
Jobs
2
About the company
Jobs
16
About the company
Jobs
2
About the company
Quantiphi is an award-winning AI-first digital engineering company driven by the desire to reimagine and realize transformational opportunities at the heart of the business. Since its inception in 2013, Quantiphi has solved the toughest and most complex business problems by combining deep industry experience, disciplined cloud, and data-engineering practices, and cutting-edge artificial intelligence research to achieve accelerated and quantifiable business results.
Jobs
5
About the company
Jobs
7
About the company
Jobs
3
About the company
Jobs
1
About the company
Jobs
3
