We're revolutionizing the fitness & wellness industry, and we’re looking for talented people to help us do it. Mindbody + ClassPass bring together the best of both sides of the market: Mindbody is the industry’s most trusted all-in-one technology platform; ClassPass is one of the most popular apps for fitness & self-care enthusiasts. Together we’re partnering with more than 70,000 fitness studios, gyms, salons, and spas around the world. We’re not just another tech company—we’re far and away the leader of our industry. So join the team, work with mission-led people, and enjoy amazing benefits. Let’s see what we can accomplish together!

Who we are

We’re a passionate engineering, platform, and operations team, developing and supporting ground-breaking products. Together, we’ll build for the future, creating more opportunities for wellness businesses around the world to help their customers lead full, healthy lives. We push ourselves and our company to always strive for this higher purpose, recognizing the power in working together toward the same goal. We believe in building a diverse company where everyone feels safe bringing their authentic selves to work. And we believe that the secret to success is our people.  Join the team, and let’s see what we can accomplish together!

Your role

The GRC Engineer is an important individual contributor to the cyber security risk and resilience team, focused on developing and maturing the cybersecurity governance, risk and compliance (GRC) program for the Mindbody organization. In this role, you will support management in identifying, cataloging, managing, and automating the cyber risk workflow including data correlation, threat based risk assessments, maturity assessments, policies and standards in a dedicated Governance, Risk and Compliance tool.

You'll likely spend time working on

• Designing repeatable, sustainable processes that operationalize the Cybersecurity GRC function
• Evaluate, and improve current frameworks, and maintain overall operations of the GRC tool
• Track technology governance, perform assessments, generate findings, monitor follow-through for remediation, and validate closure to increase the cybersecurity risk maturity across the Mindbody organization
• Maturing the cybersecurity policies, standards and framework for governance, risk & compliance
• Work with different stakeholders to obtain and fulfill evidence requests
• Validate key controls with stakeholders on a periodic basis to provide an early warning to management for timely correction and remediation action
• Assess findings / gaps including control weaknesses in coordination with different stakeholders and assist with development of corrective action plans
• Develop and present recommendations to management based on risk and compliance impact in a subject matter expert capacity
• Negotiate appropriate remediation plans for identified issues while maintaining internal and external relationships

About The Right Team Member

• Ability to analyze information and draw meaningful conclusions using critical thinking skills
• Strong collaboration and ability to build relationships with internal resources
• Ability to understand and translate security concepts, controls, and risk scenarios to identify their impact on technology, business, and customers
• Understanding of various disciplines present in a cloud-based SaaS organization (e.g., threat detection/intelligence, security platforms, GRC, etc.)

You'll thrive in this role with experience in

• Technology Risk Management, Cybersecurity Risk Management, Compliance, Operational Risk Management, and/or IT Risk Management
• Auditing cloud-based environments for policy compliance
• Familiarity with CIS 18, PCI, HITRUST, ISO, NIST, SOC1/2
• Certifications such as CISA, CIA, CISM, CISSP, CRISC
• Familiarity with GRC tools and a general understanding of cyber security audit roles and risk functions

Technologies you'll be working with

• AuditBoard, a dedicated Governance, Risk and Compliance tool
• AWS Cloud
• General coding languages used for data correlation such as excel, python, SQL, github, and/or R
• Microsoft tools such as powerpoint, visio, and word

Pay transparency

It is Mindbody’s intent to pay all Team Members competitive wages and salaries that are motivational, fair and equitable. The goal of Mindbody’s compensation program is to be transparent, attract potential employees, meet the needs of all current employees, and encourage Team Members to stay with our organization.

Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to skill set, depth of experience, certifications, and specific work location.

The base salary range for this position in the United States is $122,000 to $183,000. The total compensation package for this position may also include performance bonus, benefits and/or other applicable incentive compensation plans.

Have we piqued your curiosity?

Sound like the role for you? We’d love to hear from you! Even if you’re not 100% sure about potential fit, we still encourage you to apply. We’re looking for the right person, not the perfect series of checkboxes.

Mindbody is an Equal Opportunity Employer. We highly value diversity at our company and encourage people of all different backgrounds, experiences, abilities and perspectives to apply. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or other protected characteristics.

Note From The Remote JobHunters:

• When you apply, be sure to mention that you heard about this position from The Remote JobHunters!
• Looking for more entry-level remote positions? If so, be sure to join The Remote JobHunters Facebook group, Subreddit, and subscribe to our weekly newsletter!