GRC Analyst, Operations & Risk

Whoop
Boston, US
On-siteCareer-pivot friendly

Who this role is best for

Best suited to mid-level professionals with experience in governance, risk, and compliance operations who thrive in fast-paced environments.

Best fit for

  • Candidates adept at managing GRC intake and third-party risk activities.
    — “support the WHOOP Governance, Risk, and Compliance program
  • Individuals skilled in identifying workflow trends and improving operational efficiency.
    — “use intake and ticketing data to identify workflow trends
  • Professionals experienced in compliance operations and audit readiness.
    — “support vendor risk reviews, remediation follow-up, audit readiness

Things to consider

  • Role requires managing multiple GRC tasks in a fast-paced setting.
    — “in a fast-paced environment
  • Involves continuous improvement and process documentation responsibilities.
    — “continuous improvement across the GRC program

How to stand out

  • Highlight experience with GRC tools and automation in your resume.
    — “opportunities to improve guidance, templates, reporting, automation
  • Demonstrate past success in coordinating cross-functional compliance activities.
    — “cross-functional GRC requests
  • Showcase instances where you improved stakeholder experience in GRC.
    — “improve guidance, templates, reporting, automation, and stakeholder experience
Pace · SteadyCollaboration · HighAutonomy · MediumDecision Impact · TeamLevel · Junior

Derived from job-description analysis by Serendipath's career intelligence engine.

What success looks like

  • supported vendor risk reviews
  • improved visibility across risk and compliance work
Typical background
GRC program management experience

Skills & requirements

Required

GRC Program ManagementThird-party Risk ManagementAudit ReadinessCompliance Operations

Preferred

Vendor Risk ReviewsRemediation Follow-up

Stack & domain

Grc IntakeThird-party Risk ActivitiesOperational WorkflowsVisibility Across Risk And Compliance WorkVendor Risk ReviewsRemediation Follow-upAudit ReadinessCompliance OperationsCross-functional Grc RequestsIntake And Ticketing DataWorkflow TrendsRecurring QuestionsHandoff GapsOpportunities To Improve GuidanceTemplatesReportingAutomationStakeholder ExperienceCompliance Calendar ActivitiesControl MonitoringProcess DocumentationSecurity Awareness CoordinationContinuous ImprovementSupport The Whoop Governance, Risk, And Compliance ProgramManage Grc IntakeCoordinate Third-party Risk ActivitiesStrengthen Operational WorkflowsImprove Visibility Across Risk And Compliance WorkSupport Vendor Risk ReviewsUse Intake And Ticketing DataIdentify Workflow TrendsGrcThird-party RiskVisibility Across Risk And Compliance

About the role

Original posting from Whoop via Lever

As a GRC Analyst, Operations & Risk, you will support the WHOOP Governance, Risk, and Compliance program by helping manage GRC intake, coordinate third-party risk activities, strengthen operational workflows, and improve visibility across risk and compliance work. This role will support vendor risk reviews, remediation follow-up, audit readiness, compliance operations, and cross-functional GRC requests in a fast-paced environment.

A key focus of this role will be helping ensure GRC work is reviewed, prioritized, routed, tracked, and completed effectively. You will use intake and ticketing data to identify workflow trends, recurring questions, handoff gaps, and opportunities to improve guidance, templates, reporting, automation, and stakeholder experience. You will also support broader GRC initiatives, including compliance calendar activities, control monitoring, process documentation, security awareness coordination, and continuous improvement across the GRC program.

Source: Whoop careers (Lever)

Similar roles