3 дня назад
Lead Grc Technologist (SaaS)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
Текст:
TL;DR
Lead GRC Technologist (SaaS): Integrating governance, risk, and compliance processes with technical automation in a SaaS environment, acting as a bridge between security engineering, DevOps, and legal/privacy teams. Focus on driving continuous compliance through automation in cloud-native ecosystems.
Location: Budapest / Remote Hungary
Company
empowers organizations to improve loyalty and business outcomes by creating the best experiences for their customers and employees.
What you will do
- Evaluate and advise the business on new certification programs, regulatory requirements, and technologies.
- Design and implement scalable, automated compliance workflows supporting cloud (AWS) operations.
- Lead the automation of evidence collection, control testing, and compliance monitoring.
- Conduct and automate risk assessments and technical remediation tracking.
- Serve as the technical SME for external audits and certification processes (SOC 2, ISO 27001, PCI-DSS, HIPAA, HDS, ENS, ISO 42001 etc.).
- Mentor junior GRC and security analysts on automation tools and control implementation best practices.
Requirements
- Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
- 8–12 years of experience in information security, GRC, or cloud compliance, with at least 4 years focused on SaaS environments.
- Proven experience designing or automating compliance programs for cloud-native SaaS platforms.
- Deep understanding of cloud security controls, identity management, and encryption standards.
- Proficiency with automation and scripting (Python).
- Strong communication and stakeholder management skills.
Nice to have
- CISSP, CISM, CRISC, or CISA certifications.
- ISO 27001 Lead Auditor/Implementer certification.
- Cloud certifications such as AWS Certified Security – Specialty, Azure Security Engineer Associate, or CCSP.
- Familiarity with IaC / DevSecOps tools (Terraform, GitHub, Jenkins).
- Experience with GRC and compliance automation platforms.
Culture & Benefits
- Employees have the independence to make a larger impact on the company and take ownership of their work.
- Great benefits and perks like larger tech companies.
- Embrace empathy and cultivate collaboration to succeed.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →