Related skills
compliance saas grc📋 Description
- Develop and improve GRC policies, standards, and control frameworks.
- Lead SOC 2 Type II, ISO 27001, PCI DSS compliance initiatives with evidence collection.
- Ensure controls are technically implemented, not just documented.
- Validate exceptions meet security and compliance expectations with security teams.
- Manage vendor risk posture and remediation or contractual security requirements.
- Design scalable workflows for risk assessments, vendor reviews, and evidence.
🎯 Requirements
- Bachelor's degree in Information Systems, Computer Science, Cybersecurity, or related field.
- 4.5+ years in GRC, risk management, or compliance with exposure to technical security controls.
- Strong understanding of SOC 2, ISO 27001, and NIST standards.
- Hands-on risk assessments, exception management, and third-party security reviews.
- Ability to interpret technical security data (architecture diagrams, cloud controls, access models).
- Certifications such as CISA, CRISC, CGEIT, CISSP, or equivalent.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest — finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!