GRC Lead

Company Description

At Freshworks, we are creating a global workplace that enables everyone to find their true potential, purpose, and passion irrespective of their background, gender, race, sexual orientation, religion or ethnicity. We are committed to providing equal opportunity for all and believe that diversity in the workplace creates a more vibrant, richer work environment that advances the goals of our employees, communities and business.

Freshworks makes it fast and easy for businesses to delight their customers and employees. More than 50,000 companies use Freshworks SaaS to enable a better customer experience (CX, CRM) and employee experience (ITSM, HRSM). Headquartered in San Mateo, California, Freshworks has a dedicated global team operating from 13 locations to serve our customers throughout the world.

Freshworks has received numerous accolades ranking #16 on the prestigious Forbes Cloud 100 and #22 on the Battery Ventures/Glassdoor Best Places to Work lists.

Job Description

Job Summary

The Audit & Assurance function is responsible for ensuring compliance against the industry standards, certifications, and internal controls across all internal groups and domains, and interfacing with the external auditors to facilitate the audits and attestations.

We are looking for a passionate and self-driven professional to join our Audit & Assurance team to monitor, maintain, and measure compliance with the internal controls, regulatory requirements, certifications, and industry standards, and work closely with technology functions to identify areas of improvement and supporting initiatives to promote information security within the organisation. 

Role Expectation

• Facilitation of internal and external audits. Handling and delivering audits per the annual audit plan.
• Collaborate with the relevant stakeholders for the purpose of conveying and or gathering information required to perform audit duties.
• Understanding the business processes, working with the business leaders to comply with SOX and other regulations (ISO27001, ISO27701, Cyber Essentials, PCI DSS, HIPAA, SOC 1/2).
• Manage and/or conduct test procedures, compile audit findings, document and communicate remediation plans and complete work papers for SOX ITGC & other standards/frameworks.
• Perform control testing and derive metrics to substantiate the operating effectiveness of the control framework.
• Support the external auditors and external service providers in completing the audit and/or consulting projects.
• Working closely and sharing audit outcomes with the stakeholders and tracking issue remediation for effective closure.
• Perform data analysis to provide significant inferences and identify key risk areas.

Qualifications

• 9+ years of experience in Information Security audits (internal/external), SOX, internal auditing with a specific focus on technical control testing.
• In-depth knowledge of Sarbanes Oxley requirements, COBIT, and the COSO Internal Controls framework. 
• Experience in process documentation, developing RCMs, report writing, root cause analysis, remediation and should be able to provide mentorship to the other team members.
• Experience in designing and assessing processes and controls and driving improvements.
• Excellent interpersonal skills to interact across all functions within the company; nationally and internationally.
• Ability to gather, analyse, and evaluate facts and to prepare and present concise, detailed, and clear oral and written reports.
• Ability to provide creative recommendations for minimisation of business risks and improving business processes, a sense of urgency, and an ability to defend conclusions.
• Ability to work with multiple stakeholders in various time zones.
• Work experience or conceptual understanding of AWS cloud platform to audit controls for the cloud environment.
• Have a deep understanding of security control frameworks such as ISO27001, PCI DSS, HIPAA, SOC 1/2, NIST Cyber Security Framework, NIST800-171, and the Cloud Compliance Framework.
• Ability to build relationships, influence others, instill accountability, and get results.
• Ability to thrive in a dynamic, fast-paced environment taking up multiple responsibilities.
• Be a team player and a go-getter and thrive for success.

Additional Information

At Freshworks, we are creating a global workplace that enables everyone to find their true potential, purpose, and passion irrespective of their background, gender, race, sexual orientation, religion and ethnicity. We are committed to providing equal opportunity for all and believe that diversity in the workplace creates a more vibrant, richer work environment that advances the goals of our employees, communities and the business.