Grc Program Specialist

**Build your future with Sovos.**

If you're seeking a career where innovation meets impact, you've come to the right place. As a global leader, Sovos is transforming tax compliance from a business requirement to a force for growth while revolutionizing how businesses navigate the ever-changing regulatory landscape.

At Sovos, we're dedicated to more than just solving compliance challenges - we're committed to making a positive and lasting difference in everything we do. Our teams operate on the modern edge of digital technology, working not only to solve complex business challenges but also to enrich our personal, professional, and local communities.

Our purpose-built systems provide the tools you need to thrive in a world where governments demand increased visibility, faster reporting and greater control over business processes. Excited about the possibilities? So are we

**The Work You'll Do**:
The GRC Program Specialist will work as part of the Sovos Information Security Team and assist in the identification and remediation of regulatory, business process, and information security risks. This position works collaboratively within Sovos Information Security team to identify regulatory obligations, client requirements, and best practices and perform testing and evaluation of the effectiveness of implemented controls designed to help ensure Sovos’ ongoing compliance and security.
- More specifically you will:_
- Evaluate security policy, processes, and procedures for completeness.
- Conduct audits and compliance reviews against existing security standards.
- Identify vulnerabilities or weaknesses in systems.
- Examine employee compliance with security controls and deficiencies.
- Interpret government, industry, and contract security requirements into actionable controls.
- Act as a liaison between client security teams and auditors for the purpose of defining requirements and security controls to be implemented at Sovos.
- Perform validation and effectiveness testing of implemented controls both within Sovos and at Sovos third parties.
- Prioritize remediation of issues and findings by recording corrective and preventative action plans
- Respond to client security questionnaires.
- Assist with risk identification and management including but not limited to: business impact analysis, disaster recovery planning, business continuity, data retention, and risk management.
- Participate as a member of the Information Security team in developing and maintaining organization’s security strategies.
- Identify, create, and maintain security-related documentation.
- Maintain ongoing knowledge of regulations and guidelines, information security trends, techniques, and technologies.
- Maintain and ensure confidentiality of client and employee information.

**What We Need From You**:

- Degree in Computer Science, MIS, Business Management, or related technology field highly preferred.
- 2+ years of risk management/risk analysis experience - can include financial or business risk analysis
- 1+ years of information security-based analysis
- Demonstrated understanding of information security risks and countermeasures
- Strong analytical, organizational and problem-solving skills
- Highly responsible, motivated team player with ability to set and manage priorities judiciously
- Excellent communication and interpersonal skills
- Expert attention to detail
- Ability to produce clean, concise diagrams and documentation
- Understanding of internal and external audit process
- Demonstrated understanding of and experience with industry standards and regulations, including: NIST, GDPR, ISO 27001, COBIT, and CIS.

**What Does Sovos Offer You?**
- The tools to enhance your life - because we want you to enjoy your life outside of work_
- Health Insurance
- Life Insurance
- Personal Accidents Insurance
- Meal Allowance
- Continuing opportunities for further Learning & Development
- Progressive Wellness Program
- A chance to work with talented and passionate people in a rewarding and values-driven environment
- Visit our careers page to learn more

Sovos is an equal opportunity employer committed to providing an environment that celebrates diversity and where equal employment opportunities are available to all applicants and employees. We do not discriminate against race, colour, religions, national origin, age, sex, marital status, physical or mental disability, veteran status, gender identity, sexual orientation, or any other characteristic provided by law. At Sovos, all employees are encouraged to bring their whole selves to work.

**Company Background**

LI-Remote

x