Support and administer, from a GRC perspective, Microsoft Purview (Compliance Portal), including eDiscovery, legal holds, retention policies, and content search.
Manage litigation holds and the eDiscovery lifecycle for legal and regulatory matters.
Partner with Legal, Risk, Privacy, enterprise Data Management and IT teams on discovery, audit, regulatory inquiries, compliance, and evidence collection
Maintain and audit data retention schedules across Microsoft 365 and other collaboration platforms.
Support data privacy operations, including DSARs under GDPR, CCPA, and related regulations.
Support documentation, SOPs, and GRC governance workflows related to eDiscovery.
Identify opportunities to improve or automate GRC processes related to eDiscovery.

3+ years of experience in eDiscovery, information governance, compliance operations, privacy operations, or a related field
Hands-on experience supporting or administering Microsoft Purview
Familiarity with regulatory and best practice frameworks GDPR, TRAIGA and NIST CSF, NIST Privacy Framework and NIST Risk Management Framework (RMF)
Familiarity with GRC best practices (Controls Management, Risk Management, Policy Management, Third-Party Risk Management)
Familiarity with the eDiscovery lifecycle and litigation holds.
Experience with Microsoft 365 (SharePoint, Teams), Box, and similar platforms
Strong documentation, organization, and cross-functional communication skills
Ability to work independently while continuing to develop new skills.

GRC e-Discovery and Risk Analyst

Key skills