Loading...
Loading...
Himalayas
About usHimalayas PlusCommunityTech stackEmployee benefitsTerms and conditionsPrivacy policyContact usFor job seekers
Create your profileBrowse remote jobsDiscover remote companiesJob description keyword finderRemote work adviceCareer guidesJob application trackerAI resume builderResume examples and templatesAI cover letter generatorCover letter examplesAI headshot generatorAI interview prepInterview questions and answersAI interview answer generatorAI career coachFree resume builderResume summary generatorResume bullet points generatorResume skills section generator© 2025 Himalayas. All rights reserved. Built with Untitled UI. Logos provided by Logo.dev. Voice powered by Elevenlabs Grants
Join the remote work revolution
Join over 100,000 job seekers who get tailored alerts and access to top recruiters.
@haddasahmfam
Experienced GRC analyst with a focus on compliance and risk management.
United StatesI am a dedicated GRC professional with over four years of experience in governance, risk management, and compliance. My expertise lies in leading audits and managing risk to ensure organizations maintain compliance with frameworks such as SOC 2, PCI-DSS, and ISO 27001. I have successfully implemented compliance tools and owned the audit process from scoping to reporting, enhancing security posture and operational efficiency.
In my current role as a Senior GRC & Risk Analyst at Warren & Carter Technologies, I have led complete audit cycles and developed compliance metrics dashboards for senior leadership. My proactive approach has allowed me to coordinate annual penetration tests and develop comprehensive Information Security Policies. I am passionate about bridging the gap between compliance requirements and organizational needs, ensuring that compliance is not just a checkbox but a fundamental aspect of business operations.
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
Work history, roles, and key accomplishments
Warren & Carter Techonologies
Nov 2023 - Present (2 years)
Led complete audit cycles for SOC 1 & 2 Type I/II, PCI-DSS v3.2/v4.0, and ISO 27001, delivering ROC/AOC and attestation reports across all frameworks. Owned and maintained the enterprise risk register, performing risk assessments and tracking remediation to support internal and external audits.
Warren & Carter Techonologies
Jan 2023 - Present (2 years 10 months)
Managed evidence collection and walkthrough coordination for multiple annual audits, identifying control owners, tracking deliverables, and validating evidence. Mapped controls across ISO 27001, SOC 2, and PCI-DSS requirements to streamline evidence tracking under a unified control framework using Drata.
Sochrist Ventures Limited
Jul 2022 - Present (3 years 4 months)
Assisted in evidence collection for Interim and Roll-Forward Period for SOC2 Type II and SOC 1 Type II Audits for legacy and new applications. Handled administrative tasks in coordinating third-party Internal Audits, resulting in reports being issued in a timely manner.
Degrees, certifications, and relevant coursework
WUBachelor's of Science, Cloud Computing
Currently pursuing a Bachelor's of Science in Cloud Computing. Expected to graduate in December 2026.
Software and tools used professionally
United StatesYou can contact Haddasah and 90k+ other talented remote workers on Himalayas.
Message Haddasah
EEEdafe Ekuvero
Risk and Compliance Analyst, Benko Business Services LLC
AYAde Yemi
IT Compliance Analyst, Dell Technologies
TTTewan Teams
Senior GRC Analyst, Xerox Corporation
Kehinde Adegboyega
Governance, Risk, and Compliance Analyst, Teleworld Solutions
BKBenjamin Kontoh
Senior Information Security GRC Analyst, Tailored Brands
EFElias fon
GRC Analyst, HenryScheinOne
RARotimi Akinyemi
Senior Governance, Risk & Compliance (GRC) Analyst, Amazon
agyekum User
Senior GRC Analyst, Lockheed Martin
Chris Conley
Compliance & Policy Analyst, Catchafire (Nonprofit Client)
AGAyo Griffin
Information Security Analyst, KPMG
