Principal GRC Specialist

March 7

Apply Now

Receive Emails with Similar Jobs

LastPass

WebsiteLinkedInAll Job Openings

LastPass is a leading password management and cybersecurity company that offers solutions for both individuals and businesses. With a strong focus on security and privacy, LastPass provides a secure vault for storing and managing passwords, ensuring that sensitive information remains protected. It offers multi-device access and a variety of features such as password sharing, dark web monitoring, and multifactor authentication to enhance user security. LastPass serves various user groups with its Personal, Families, Teams, and Business plans, catering to both personal and enterprise-level security needs. Additionally, its zero-knowledge encryption model ensures that only users have access to their password details. LastPass's commitment to providing a safe and user-friendly password management experience makes it a preferred choice for millions worldwide.

Password Management • Identity Management • Single Sign-On • SaaS • Cloud

501 - 1000 employees

Founded 2008

🔒 Cybersecurity

☁️ SaaS

🤝 B2B

📋 Description

• LastPass is looking for Principal GRC Specialist to enhance governance, risk, and compliance. • You will collaborate with stakeholders across regions to strengthen security and compliance controls. • Adapt to change and drive continuous improvement within a fast-paced environment. • You will work cross-functionally to lead assurance activities within the GRC framework. • Your work supports LastPass’ customer-centric security strategy.

🎯 Requirements

• Background in compliance or security-related roles with experience is preferred • Expert-level knowledge of security and privacy-related standards and frameworks such as NIST 800-53, FedRAMP/StateRAMP, CMMC, ISO 27001, 27701, SOC 2, and SOX ITGC • Proven ability to integrate security and privacy-related controls into business processes, with a focus on enabling business outcomes while maintaining robust security and privacy standards • Excellent listening, written and verbal communication skills with the ability to engage effectively across all organizational tiers • Capable of working independently with exceptional initiative, planning, and organizational skills to efficiently see tasks through to completion • Strong ability to communicate complex cybersecurity concepts to a diverse audience, including both technical and non-technical stakeholders • Growth-oriented mindset, challenging the status-quo and the ability to drive project and program-level initiatives forward • Certifications such as CISSP, CISM, CRISC, CISA Security+ or related certifications in information security or audit are great, but not required • Experience working with global teams is also great, but not required

🏖️ Benefits

• Market-leading password manager • High-growth, collaborative environment with inclusive teams • Remote-first culture • Competitive compensation • Flexible Paid Time Off policies, including but not limited to: Quarterly Self-Care Days (4 extra paid days off annually) and Volunteer Days • Generous parental leave • Comprehensive health coverage, including dependents • Home office setup support • LastPass Families free account for up to 5 members • Continuous learning and development opportunities, including an annual learning stipend to invest in your growth • Peer-to-peer recognition through Motivosity • Employee Assistance Program for well-being support • Remote work stipend to support your home office needs • Short-Term or Remote-Centric Work Arrangements for added flexibility