Lead GRC Analyst (GRC, AI)

TL;DR

Lead GRC Analyst (GRC, AI): Leading efforts to strengthen security and privacy posture and ensure adherence to critical regulatory and industry standards with an accent on building and managing a comprehensive security GRC framework. Focus on organizing risk assessments, managing compliance audits, and supporting AI governance initiatives.

Location: Hybrid (Dallas, TX)

Company

hirify.global is a leader in travel and expense solutions, creating a future where technology drives business value and inspires extraordinary results with an AI-powered platform.

What you will do

• Establish and maintain security policies, standards, and controls aligned with industry frameworks (NIST, ISO 27001, PCI, SOC 2).
• Develop a metrics and reporting framework to assess the effectiveness of security and privacy programs.
• Organize information security risk assessment processes and oversee treatment efforts to address negative findings.
• Manage compliance audits (SOC 1, SOC 2, ISO 27001, PCI-DSS, Tx-RAMP) and privacy programs (GDPR, PIPEDA, CCPA, CPRA).
• Support the development and implementation of a continuous controls monitoring program and automation of manual processes.
• Coordinate security incident response and resiliency activities from a compliance and governance perspective.
• Manage Third Party Risk Management oversight and support AI Governance initiatives.

Requirements

• Bachelor’s Degree and a minimum of 5+ years of technology project/program management.
• Ability to manage security audits and frameworks (e.g., PCI, ISO, SOC 1, SOC2, NIST, SOX).
• Ability to manage privacy audits and frameworks (e.g., GDPR, CPRA, CCPA, PIPEDA).
• Ability to manage AI audits and frameworks (e.g., ISO 42001).
• Demonstrable experience interacting with auditors and strategic partners in cloud-based environments.
• Experience with GRC tools such as Drata.
• Experience working on large cross-functional teams, representing GRC on initiatives like change management, identity and access management, and policy management.

Nice to have

• Certifications: CISSP, CIPP/EU, CIPM, Security+, CISA, PMP.

Culture & Benefits

• Competitive pay and flexible work arrangements.
• Inclusive and collaborative environment that supports your success.
• Opportunity to work alongside bright minds in finance, tech, and AI to solve real-world challenges.
• Work that drives efficiency, innovation, and smarter financial decision-making for businesses.