Information Risk Analyst - GRC

MongoDB is looking for an Information Risk Analyst to support the information risk management strategy within the Governance, Risk, and Compliance (GRC) function. The role involves performing comprehensive risk assessments, supporting the design and implementation of risk management strategies, and driving continuous improvement in the organization’s risk posture.

Requirements

• Bachelor’s or Master’s degree in Information Security, Information Systems, Risk Management, or a related field
• 3–5 years of hands-on experience in information risk, security assessment, compliance, or related functions
• Strong understanding of risk frameworks (NIST RMF, ISO 27005, FAIR, etc.) and control standards (ISO 27001, NIST 800-53, CIS, etc.)
• Experience with GRC platforms (e.g. ServiceNow, JIRA, Auditboard, etc)
• Excellent analytical, writing, and communication skills, with the ability to synthesize technical details into executive-level summaries
• Demonstrated ability to communicate complex risk and security concepts clearly and effectively to senior leadership and non-technical stakeholders
• Proven ability to work independently and manage multiple priorities in a fast-paced environment

Benefits

• Equity
• Participation in the employee stock purchase program
• Flexible paid time off
• 20 weeks fully-paid gender-neutral parental leave
• Fertility and adoption assistance
• 401(k) plan
• Mental health counseling
• Access to transgender-inclusive health insurance coverage
• Health benefits offerings