Senior GRC Engineer (Automation)

TL;DR

Senior GRC Engineer (Automation): Designing and implementing automated Governance, Risk, and Compliance frameworks with an accent on streamlining processes, risk management, and audit support. Focus on developing automated solutions for compliance monitoring, control testing, and integrating GRC into product security and DevSecOps practices.

Location: Remote. Must be based in Canada or the United States. hirify.global does not offer visa sponsorship for this role.

Salary: $147.2K–$184K (USD)

Company

hirify.global is a remote-first software company making app development easier, trusted by over 20 million monthly users.

What you will do

• Design and develop automation workflows to streamline GRC processes like compliance monitoring and risk assessments.
• Implement and customize GRC platforms using programming languages and APIs.
• Build and maintain dashboards for real-time risk and compliance monitoring.
• Monitor, assess, and mitigate risks leveraging automated systems and data-driven insights.
• Oversee and maintain the Risk Register and Risk Management program.
• Support internal and external audits by providing automated solutions for data collection and evidence generation.

Requirements

• 6 to 8 years of experience in Information Technology, Security Engineering, or Governance, Risk and Compliance.
• Proven experience in GRC engineering with a strong focus on automation and programming (Python, Golang).
• Familiarity with setting up APIs and Webhooks, scripting, and at least one public cloud architecture (AWS, Azure, Google Cloud).
• Experience with DevSecOps practices and integrating security compliance into CI/CD pipelines.
• In-depth knowledge of security framework controls as they apply to public cloud and SaaS environments.
• Solid understanding of regulatory and compliance standards (GDPR, ISO 27xxx, SOC 2) and strong project management skills.

Nice to have

• Relevant industry certifications such as CISSP, CISA, CRISC.

Culture & Benefits

• Remote-first culture with flexibility and designated quarterly "Whaleness Days" plus an end-of-year break.
• Home office setup and a technology stipend.
• 16 weeks of paid parental leave.
• Generous PTO plan and a training stipend for conferences and courses.
• Equity in a growing startup.
• Medical benefits, retirement, and holidays vary by country.