GRC Analyst - Mesh

Join Mesh as a GRC Analyst to help build the compliance foundation for global crypto payments. You'll manage compliance programs and strengthen controls in a fast-paced environment. About Mesh At Mesh, our mission is to enable consumers to pay and be paid with any asset. Today, trillions of dollars in tokenized assets exist but remain largely unusable for everyday commerce. Mesh is bridging this gap by making crypto payments reliable, useful, and ubiquitous. We combine a powerful orchestration engine with a seamless consumer app to unlock liquidity for the world. Backed by leading investors like PayPal Ventures, Paradigm, and Galaxy Ventures, we are building the infrastructure for the next era of the global economy. Join us!

• •Own and strengthen our controls environment, ensuring compliance requirements are effectively implemented and maintained.
• •Support and mature our GRC program, including SOC 2 operations and alignment with broader security frameworks such as NIST.
• •Build and maintain our Business Continuity and Disaster Recovery program, including BIAs, continuity plans, and recovery runbooks.
• •Conduct vendor and third-party risk assessments as we expand our global network of partners.
• •Support MiCA licensing and U.S. Money Transmitter License applications through due diligence, regulatory responses, and compliance reporting.
• •Manage the security issue lifecycle, driving remediation efforts and partnering with teams to reduce risk.
• •Help standardize policies, controls, and compliance processes that can scale across jurisdictions and regulatory frameworks.

• •Competitive salary and equity that grows as you and the company grow.
• •Comprehensive health coverage for you and your family.
• •Unlimited PTO—and we mean it. Take the time you need to recharge and show up at your best.
• •Dedicated budget for courses, conferences, and certifications.
• •Remote-friendly approach with top-tier tools and equipment.

• •3–5 years of hands-on GRC experience in an operating environment, with a track record of building and managing compliance programs—not just auditing them.
• •Deep familiarity with one or more major frameworks, such as SOC 2, NIST, PCI, MiCA, NYDFS, or CCPA.
• •Experience building or maturing Business Continuity and Disaster Recovery programs, with a strong understanding of how business impact assessments inform recovery strategies.
• •Comfortable supporting the full risk lifecycle, including risk assessments, control testing, issue management, and remediation.
• •A hands-on builder who enjoys improving processes, operationalizing controls, and turning requirements into scalable programs.
• •Regularly uses AI tools to increase efficiency and improve outcomes across areas such as policy development, process monitoring, or program management.
• •Experience in fintech, crypto, payments, or other regulated industries is a plus, as is familiarity with GRC platforms such as Vanta, Drata, or Archer.