InfoSec GRC Analyst (Cybersecurity)

TL;DR

InfoSec GRC Analyst (Cybersecurity): Building and enhancing hirify.global's regulatory compliance program by assessing internal controls, risk management, and governance processes. Focus on identifying risks, ensuring adherence to frameworks like SOC2 and ISO 27001, and recommending improvements to safeguard assets in the blockchain and payments industry.

Location: This role offers a fully remote work option globally or a hybrid arrangement at the London, UK Moonbase.

Company

hirify.global is a unified payments platform for digital currency, aiming to onboard the world to the decentralized economy by making crypto transactions easy and secure.

What you will do

• Assess internal control, risk management, and governance processes to confirm they are working as intended.
• Identify issues and recommend solutions to improve hirify.global’s efficiency and effectiveness.
• Safeguard assets, ensure compliance with laws and policies, and identify potential fraud.
• Act as an advisor, providing insight to enhance the overall control environment and operational performance.
• Promote a culture of integrity and accountability throughout the organization.
• Become knowledgeable with compliance frameworks such as SOC2, ISO 27001, 27701, 27018, PCI-DSS, NIST 800-171, MiCA, and DORA.
• Assist in gathering and reviewing evidence to support compliance audits and manage identified risks.

Requirements

• Minimum of 3-5 years of experience in Governance, Risk, and Compliance.
• Focus on IT Operations, Secure Development, Change Management, Access Control, and Information Security.
• Experience performing reviews under at least two of the following frameworks: ISO 27001, SOC 2, SOX 404a/b, or PCI-DSS.
• Strong understanding of cybersecurity principles and best practices.
• Excellent critical thinking, analytical, and problem-solving skills.
• Ability to demonstrate completeness and accuracy in evidence provision and maintain organization with large amounts of documentation.
• English: B2 required.

Nice to have

• Certifications: CISSP, CISM, or equivalent.
• Technical Proficiency with tools such as Google Workspace, Mac OS, SharePoint/GRC Platforms, Okta/Active Directory, Jira/Linear.

Culture & Benefits

• Competitive salary and equity package with pay-for-performance equity bonuses.
• Unlimited holidays and enhanced parental leave.
• Hybrid working schedule allowing fully remote work or at a Moonbase.
• Private Healthcare benefits and an annual training budget.
• Home office setup and remote working allowance.
• Monthly budget for hirify.global products and zero-fee crypto transactions.
• Regular remote company offsites and a rewarding environment for excellence.

Hiring process

• Artificial intelligence (AI) tools may be used to support parts of the hiring process.