GRC Specialist

At 2U, we are all in on purpose. We are motivated by our mission – to eliminate the back row in education – and connected by our shared passion to deliver world-class digital education at scale. As the parent company of edX, the world’s leading online learning platform, 2U powers more than 4,000 online higher education offerings – from free courses to full degrees. Together with more than 230 colleges, universities, and corporate partners, we are helping to unlock human potential. What We’re Looking For: As an analyst of information security in the Governance, Risk and Compliance team, you will work with internal and external stakeholders across all business units to contribute to the maturation of 2U’s systems, controls, applications and processes. By assessing and recommending standards and controls, you will work within a team to influence the improvement of 2U’s Cybersecurity Program and work closely with employees and partners to ensure standards are measured, upheld and matured. As an individual, you complete tasks and projects with minimal supervision and act as a vital member of the global cybersecurity team, as well as, a valuable embedded resource within 2U governance teams. Responsibilities Include, But Are Not Limited To: Participate as a member of Cybersecurity in all annual compliance projects and  initiatives. Participate in annual PCI-DSS, SOC2, SOX and CyberEssentials assessments and audit engagements. Assist with requests from internal and external partners and contribute to the Third Party Risk Management process such as vendor onboarding and continuous vendor monitoring. . Participate in engagements with teams across business units to translate governance requirements and standards into tangible controls and solutions. Identify required security training for engineers, developers and internal security team, where necessary and contribute to effectiveness of the 2U Security Awareness Program. Stay abreast of emerging compliance regulations and standards with the aim of constantly improving the organization's security posture. Be active in the Cybersecurity communities and stay informed on current threats, attack techniques and strategies. Things That Should Be In Your Background: 5 years of combined experience in IT engineering, security governance or related fields. Knowledge of Security Frameworks and best practices (PCI-DSS, NIST, ISO27001,  COSO, etc). Risk Management frameworks and processes. Threat and vulnerability management policies, systems and remediations. Ability to translate control requirements into technical language. Documenting, implementing and measuring controls and processes. Able to conduct assessments and communication of the results thereof. An industry related certification (ex. CEH, CISSP, CISA). Experience with technical and narrative writing. Other Attributes That Will Help You In This Role: Open to change and ability to pivot to different priorities and situations. Must be able to work well independently as well as part of a larger team. Ability to work on a diverse team with a diverse range of people While this position is open to remote candidates across the U.S., we will prioritize those who live in the Washington-Baltimore metropolitan area and who are available to come into our Headquarters in Lanham, MD two days a week. Benefits & Culture Our global employee base is a diverse collection of innovators, dreamers, and doers working together to transform lives through higher education. We believe that every employee can advance our shared purpose, and that life at 2U should be fun and meaningful. If you’re excited by the opportunity to provide over 40 million learners and counting with access to world-class online higher education, then join us – and do work that makes a difference. #NoBackRow We offer comprehensive benefits (unique per country) and excellent work/life balance. Full-time, U.S.benefits include:  Medical, dental, and vision coverage Life insurance, disability, and 401(k) employer match Employee stock purchase plan Free snacks and drinks in-office Generous paid holidays and leave policies, including unlimited PTO Additional time off benefits include: volunteer days, parental leave, and a company-wide winter break The anticipated base salary range for this role is ($81,000 -$100,000), with potential bonus eligibility.  Salary offers are made based on the candidate’s qualifications, experience, skills, and education as they directly relate to the requirements of the position, budget for the position and cost of labor in the market in which the candidate will be hired. 2U Diversity and Inclusion Statement At 2U, we are committed to building and sustaining a culture of belonging, respect, and inclusion. We are proud of the steps we’ve taken to bring together an employee base that embodies diverse walks of life, ideas, genders, ages, races, cultures, sexual orientations, abilities and other unique qualities. We strive to offer a workplace where every employee feels empowered by what makes us different, as well as by how we are alike.  2U is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodations, please reach out to us at: recruitingaccommodations@2u.com .   About 2U Inc. (NASDAQ: TWOU) For more than a decade, 2U, Inc. has been the digital transformation partner of choice to great non-profit colleges and universities delivering high-quality online education at scale. As the parent company of edX, a leading global online learning platform, 2U provides over 45 million learners with access to world-class education in partnership with more than 230 colleges, universities, and corporations. Our people and technology are powering more than 4,000 digital education offerings — from free courses to full degrees — and helping unlock human potential. To learn more: visit 2U.com. About edX edX is the education movement for restless learners and a leading global online learning platform from 2U, Inc. (Nasdaq: TWOU). Together with the majority of the world’s top-ranked universities and industry-leading companies, we bring our community of over 45 million learners world-class education to support them at every stage of their lives and careers, from free courses to full degrees. And we're not stopping there — we're relentlessly pursuing our vision of a world where every learner can access education to unlock their potential, without the barriers of cost or location. Learn more at edX.org. Learn more at https://2u.com/careers/ #NoBackRow The above statements are intended to describe the general nature and level of work performed by individuals assigned to this position, and are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed. 2U is an equal opportunity employer that does not discriminate against applicants or employees and ensures equal employment opportunity for all persons regardless of their race, creed, color, religion, sex, sexual orientation, gender identity, pregnancy, national origin, age, marital status, disability, citizenship, military or veterans’ status, or any other classifications protected by applicable federal, state or local laws. 2U’s equal opportunity policy applies to all terms and conditions of employment, including but not limited to recruiting, hiring, training, promotion, job benefits and pay.