GRC Security Specialist (Cybersecurity)

TL;DR

GRC Security Specialist (Cybersecurity): Deploying and managing governance, risk, and compliance processes and controls to ensure data protection and regulatory adherence for a cloud networking and security platform with an accent on developing compliance strategies, conducting internal audits, and assessing risks. Focus on maintaining policies and procedures for legal and audit requirements, managing projects, and advising on compliance program implementation.

Company

hirify.global is a product company that converges enterprise networking and security into a centralized and global cloud service, leading the SASE market.

What you will do

• Proactively protect the availability, integrity, and confidentiality of all customer and company data.
• Develop and implement policies, procedures, and controls to ensure compliance with regulatory, legal, and audit requirements.
• Define controls to meet regulatory, legislative, and industry-specific compliance requirements.
• Act as a compliance officer, handling inquiries and coordinating with subject matter experts.
• Conduct periodic internal reviews, audits, and investigations of compliance issues.
• Assess product, compliance, or operational risks and develop risk management strategies.

Requirements

• At least 3+ years of hands-on experience in Governance, Risk, and Compliance.
• Demonstrated knowledge of authoritative industry sources such as FedRAMP, PCI DSS, SOC2, and ISO standards.
• Experience with software development and QA life cycle; SaaS experience preferred.
• Knowledge of complex application, network, host, and virtual system operations.
• Expert-level knowledge of risk assessment and remediation methodology, processes, and procedures.
• Strong project management experience.