Innovation starts from the heart. Edwards Lifesciences is the leading global structural heart innovation company, driven by a passion to improve patient lives. With millions of patients served in over 100 countries, each team makes a meaningful contribution by improving patient outcomes and discovering lasting solutions for unmet patient needs. Our Analyst, Info Security GRC position is a unique career opportunity that could be your next step towards an exciting future.
How you’ll make an impact:
The Analyst, Info Security GRC is responsible for administration of the enterprise control model, risk mappings, due diligence inquiries, risk assessments and governance documentation. This position supports operational consistency, audit readiness, and regulatory responsiveness across information security, data, and AI governance domains.
The role also addresses sustained execution demand driven by a growing volume of third‑party cyber questionnaires and regulatory inquiries ensuring timely, accurate, and defensible responses. This analyst plays a critical role in scaling existing governance processes and enabling expansion into data and AI governance.
Control Model & Governance Administration
- Maintain and administer the enterprise information security control model and supporting governance documentation
- Support control mappings across assets, systems, and business processes
- Ensure documentation consistency to support audit readiness and regulatory examinations
Risk Mapping & Profiling
- Map identified risks to applicable controls and in‑scope assets
- Manage and update risk profiles for information security, data, and AI governance domains
- Support alignment between risk statements, controls, and affected business capabilities
Regulatory & Questionnaire Support
- Support responses to third‑party cyber and regulatory questionnaires, including EU‑based regulatory inquiries
- Assist with increased regulatory alignment activities, particularly within the evolving EU regulatory landscape
- Ensure responses align with approved control statements and governance artifacts
Data, AI & Metrics Enablement
- Support expansion of governance activities into data protection and AI risk domains
- Contribute to governance reporting, dashboards, and documentation accuracy
- Assist with improving traceability between risks, controls, assets, and regulatory requirements
General Responsibilities
- Execute defined governance processes with accuracy and consistency
- Support strategic initiatives requiring timely risk mapping and documentation
- Identify opportunities to streamline governance workflows and reduce rework
- Other duties as assigned by management
What you'll need (Required):
- A university degree combined with several years of experience in information security; experience in regulated industries (e.g. healthcare, financial services, or government) is preferred
- Fluent in English, both written and spoken
What else we look for (Preferred):
- Solid understanding of cybersecurity and information security risk principles, along with knowledge of core security concepts
- Experience supporting governance, risk, and compliance (GRC) activities, including risk documentation, audit support, and control management
- Ability to manage complex mappings between risks, controls, assets, and business processes
- Experience building and maintaining security metrics and dashboards, preferably using Power BI
- Experience supporting or implementing requirements aligned with frameworks such as NIST 800-53 or equivalent
- Exposure to EU regulatory requirements related to cybersecurity, data protection, or AI governance is a plus
- Experience working with GRC platforms (e.g. OneTrust) or similar risk management tools
- Professional certifications (e.g. CISA, CRISC, CISM, or equivalent) are considered a strong asset
- Strong analytical skills with high attention to detail
- Excellent written communication skills, particularly for audit and regulatory documentation
- Structured, process-oriented mindset with the ability to manage multiple priorities
- Ability to work independently while collaborating effectively with global stakeholders
- Proactive mindset with a strong sense of ownership and ability to drive tasks to completion
What is it like to work at Edwards Lifesciences in the Czech Republic?
As a global leader in patient-focused medical innovations, we offer rewarding opportunities and exciting challenges in a truly international, dynamic and friendly work environment.
We are committed to fostering a diverse and inclusive work environment where all employees can grow, personally and professionally. To achieve this, we offer on-the-job development, training opportunities and the support and guidance provided by dedicated employee groups (the Edwards Network of Women, Edwards Foundation charity team, sustainability activities, and others).
Edwards Lifesciences in the Czech Republic also offers the following benefits:
- Competitive Compensation and Benefits package
- Flexible working hours, home office
- Pension Plan Risk Life Insurance
- Virtual Medical Clinic (online access to healthcare)
- Meal Benefits
- Service Awards
- Enhanced Sick Leave Benefits
- Flexible Benefit Plan (Cafeteria)
- Employee Stock Purchase Program
- Employee Assistance Program
- Comprehensive Wellness Program including onsite gym, Yoga, Pilates or SM System classes, massages, fresh fruit in the office, healthy lifestyle workshops, educational events, charity activities and much more.
Benefits are regulated by an internal policy which contains the full details regarding the entitlement and conditions for the benefits. Benefits policy and components may vary by location.