The Senior GRC Analyst role will be part of the Security GRC team at Postman. The Security GRC team is responsible for the overall security posture of Postman by ensuring compliance with applicable regulations and contractual obligations and maintaining effective and efficient governance, risk, and compliance programs. In addition, the Security GRC team is directly involved with supporting and enabling Sales and driving security and compliance initiatives to further the growth of Postman. We seek a Senior GRC Analyst with extensive experience implementing, managing, and maturing compliance programs, including but not limited to SOC 2, ISO 27xxx, HIPAA, GDPR, CCPA, and FedRAMP. This role must possess a significant level of technical knowledge that allows for clear communication with engineering stakeholders and the ability to provide actionable guidance and recommendations on processes (e.g. translate risk language to engineering requirements). As a senior member of the Security GRC team, this role will be instrumental in guiding the strategy of the GRC program in partnership with senior management. In addition to technical acumen, the role requires an individual who is results-oriented and pragmatic and demonstrates effective problem-solving and communication skills. The Senior GRC Analyst often serves as a subject matter expert for colleagues and line-of-business managers, and experience with multiple technologies, compliance requirements and risk management methodologies is crucial.