[Remote] GRC Analyst
Note: The job is a remote job and is open to candidates in USA. Mesh is on a mission to enable consumers to pay and be paid with any asset, bridging the gap in crypto payments. They are hiring a GRC Analyst to build the compliance foundation for global crypto payments, ensuring secure and responsible scaling while managing compliance processes and controls.
Responsibilities
- Own and strengthen our controls environment, ensuring compliance requirements are effectively implemented and maintained
- Support and mature our GRC program, including SOC 2 operations and alignment with broader security frameworks such as NIST
- Build and maintain our Business Continuity and Disaster Recovery program, including BIAs, continuity plans, and recovery runbooks
- Conduct vendor and third-party risk assessments as we expand our global network of partners
- Support MiCA licensing and U.S. Money Transmitter License applications through due diligence, regulatory responses, and compliance reporting
- Manage the security issue lifecycle, driving remediation efforts and partnering with teams to reduce risk
- Help standardize policies, controls, and compliance processes that can scale across jurisdictions and regulatory frameworks
Skills
- 3–5 years of hands-on GRC experience in an operating environment, with a track record of building and managing compliance programs—not just auditing them
- Deep familiarity with one or more major frameworks, such as SOC 2, NIST, PCI, MiCA, NYDFS, or CCPA
- Experience building or maturing Business Continuity and Disaster Recovery programs, with a strong understanding of how business impact assessments inform recovery strategies
- Comfortable supporting the full risk lifecycle, including risk assessments, control testing, issue management, and remediation
- A hands-on builder who enjoys improving processes, operationalizing controls, and turning requirements into scalable programs
- Regularly uses AI tools to increase efficiency and improve outcomes across areas such as policy development, process monitoring, or program management
- Experience in fintech, crypto, payments, or other regulated industries is a plus
- Familiarity with GRC platforms such as Vanta, Drata, or Archer
Benefits
- Competitive salary and equity that grows as you and the company grow
- Comprehensive health coverage for you and your family
- Unlimited PTO—and we mean it
- Dedicated budget for courses, conferences, and certifications
- Work from wherever you're most productive with our remote-friendly approach
- Count on having the top-tier tools and equipment you need to do exceptional work
Company Overview