Grc Analyst • Mid-Level

Who you are

You have a strong background in governance, risk, and compliance (GRC) with experience in executing compliance programs such as SOC 1, SOC 2, PCI DSS, and ISO 27001. You understand the importance of regulatory requirements and can translate them into practical technical controls that align with business operations. Your ability to build high-quality documentation and evidence is essential for ensuring compliance and trust within the organization.

You are a collaborative team player who enjoys working closely with engineering and infrastructure teams. You have a knack for embedding security and compliance into everyday operations, ensuring that controls are not only theoretical but also practical and automated where possible. Your experience in audit programs and risk management processes will be invaluable as you help shape Astra's compliance landscape.

What you'll do

As Astra’s first dedicated GRC Analyst, you will own the full spectrum of GRC execution. This includes driving compliance programs end-to-end and ensuring that the organization meets the expectations of banks, enterprise customers, auditors, and regulators. You will have the opportunity to design the governance framework that supports Astra's rapid growth while maintaining regulatory excellence.

You will collaborate with leaders across engineering, product, and operations to structure audit programs and vendor due diligence workflows. Your role will involve translating complex regulatory requirements into actionable controls and ensuring that these controls are effectively implemented and monitored. You will also be responsible for developing and maintaining documentation that demonstrates compliance and supports audit readiness.

What we offer

Astra provides a dynamic work environment where you can make a significant impact as part of a growing compliance team. You will have the opportunity to shape the compliance culture and processes from the ground up. We encourage you to apply even if your experience doesn't match every requirement, as we value diverse perspectives and backgrounds in our team. Join us in building a mission-critical infrastructure that powers real-time financial transactions.