Dear Vanta Talent Acquisition team,
I would like to apply for the GRC Analyst role you have posted on your careers page. My focus these past few years has been governance, risk and compliance, and I would be glad to bring that to your team.
Ahead of writing I read about Vanta, and what stood out was your compliance automation platform and the security write-ups your team keeps publishing on getting audit-ready faster. This looks like a strong time to join, and I would gladly put my governance, risk and compliance experience to work there.
Reading the posting, the three needs that stand out most are risk assessments and controls, compliance frameworks and audits and policy and stakeholder reporting. Those decide whether a GRC hire works out, and I have real results behind each.
On risk assessments and controls, my daily tools are NIST, ISO 27001 and risk registers. As a GRC Analyst at Coalfire, I handled running risk assessments across 30+ business units a year. Beyond that, I built the risk register leadership now reviews each quarter.
For compliance frameworks and audits, I rely on SOC 2, audit prep and evidence collection. During my time as a GRC Analyst at Coalfire, I took on steering a SOC 2 Type II audit to a clean report with zero exceptions.
On policy and stakeholder reporting, I bring policy writing, GRC platforms and reporting. Working as a GRC Analyst at Coalfire, I owned rewriting the security policies so teams could actually follow them. Beyond that, I cut evidence-collection time before each audit from weeks to days.
I would be glad to walk through this in an interview and show why I fit. I am ready to keep your controls audit-ready and your risks in front of leadership, and to grow with the team.
I would be glad to find a time to talk.
Yours sincerely,
Theo Script
theo.script@gmail.com