Head Of Grc (SaaS)

175 000 - 225 000$

Формат работы

remote (только USA)/onsite

Тип работы

parttime

Грейд

head

Английский

Страна

Вакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:

TL;DR

Head of GRC (SaaS): Building and maintaining hirify.global's compliance policies, procedures, and controls with an accent on SOC 2 compliance, GDPR, CCPA, NIST, and ISO 27001. Focus on managing compliance reviews, questionnaires, and vendor risk assessments from enterprise customers and prospects.

Location: San Francisco is preferred, but remote will be considered for the right candidate.

Salary: $175,000 to $225,000 USD, adjusted for experience, qualifications, and employment structure (full / part time).

Company

hirify.global is building the agent infrastructure for enterprise revenue.

What you will do

Own the compliance program end-to-end, building, maintaining, and continuously improving hirify.global's compliance policies, procedures, and controls.
Manage SOC 2 compliance program, drive audit readiness, maintain evidence collection, and ensure alignment with relevant frameworks and regulations (GDPR, CCPA, and customer-specific requirements).
Manage inbound compliance reviews, questionnaires, and due diligence requests from enterprise customers and prospects.
Develop and run compliance trainings for the team and provide regular updates to the founders on risk landscape and compliance status, as well as recommended investments.

Requirements

8+ years of experience in GRC, compliance, and information security, with at least 3 years in a leadership or head-of-function capacity.
Experience at a high-growth B2B SaaS company is strongly preferred, ideally at the Series A–C stage where you had to build from scratch.
Deep experience with SOC 2 Type II audits and compliance programs.
Familiarity with GDPR, CCPA, NIST, and ISO 27001 is expected.
Strong technical foundation with understanding of cloud infrastructure (AWS, GCP, or Azure) and modern SaaS architecture.
Excellent communication skills.

Nice to have

CISSP, CISM, or equivalent certification is a plus.
Experience with AI/ML-specific security considerations or supporting enterprise sales cycles from a compliance/security perspective is also a plus.

Culture & Benefits

Joining a company with real traction, rapid growth, and meaningful backing where every person still shapes the outcome.
Building a high-performing, in-person culture at our San Francisco HQ, where the team collaborates shoulder-to-shoulder five days a week.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →