Security GRC Analyst I

About Scoutmotors

Here at Scout Motors, we’re carrying forward the heritage of one of the most iconic American vehicles in history. A vehicle dating back to 1960. One that forged the path for future generations of rugged SUVs and will do so once again. But Scout is more than just a brand, it’s a legacy steeped in a culture of exploration, caretaking, and hard work. The Scout brand is all about respect. Respect for the environment by developing electric vehicles with the capability to get you to any location. Respect for the past and the future by taking an iconic American brand that hasn’t been around for a while, electrifying it, digitizing it, and loading it with American innovation. Respect for communities by creating a company that stands for its people and its customers. And respect for both work and play, with vehicles that are equally at home at a camp site, a job site, or on a Tuesday commute. At Scout Motors, we empower our talented, inclusive, and entrepreneurial teams to innovate. What makes a Scout employee? Someone who is a visionary and a leader, who seeks new paths and shares lessons learned. A knowledgeable doer who collaborates across the company to build better. A go-getter with unrivaled passion. Join us at Scout Motors and be part of shaping the future of transportation. If you’re ready to drive change and make history, apply now!

Job Summary

Scout Motors Inc. (Scout) is hiring a Security Governance, Risk, and Compliance Analyst I that will be responsible for assisting in the development and management of various elements of security governance, risk, and compliance, along with customer trust and privacy. This role will require eagerness and enthusiasm to learn, grow, and build GRC functions/programs alongside senior team members to meet the objectives of the Security Organization. Our ideal candidate for this role will be someone who has 1-3 years of experience in the GRC, customer trust, and privacy space and wants to continue to learn and grow across the GRC space while working for a promising and exciting startup. Additionally, this team member needs to be analytical, data driven, and forward thinking to ensure the privacy, trust, or GRC functions are built to scale the business. This role will be an individual contributor (IC) role with potential for advancement and people management.

Key Responsibilities

• Assist in the development, annual review, and off-cycle requests for security policy and standards.
• Assist in the development and operation of cyber risk management programs, driving the documentation and management of risk treatment.
• Assist in the execution of cyber risk assessments for business processes, technology, and products.
• Provide guidance for the risk treatment/management process to risk owners and team members.
• Help to build functions for the engagement of privacy, trust and GRC programs.