Associate Governance, Risk And Compliance Specialist (Remote)

TL;DR

Associate Governance, Risk, and Compliance Specialist (Cybersecurity): Assisting in the identification, assessment, monitoring, and reporting of risk through hirify.global’s GRC program with an accent on customer assurance program, including responding to customer security assessments and maintaining hirify.global’s trust portal. Focus on supporting GRC functions in relation to audit and compliance of hirify.global’s products and third parties including vendors and partners.

Location: USA - Remote

Salary: $70,000 - $95,000 per year

Company

hirify.global is a global leader in cybersecurity, protecting the people, processes and technologies that drive modern organizations.

What you will do

• Respond to hirify.global and customer questions regarding GRC, information security, privacy, and related topics.
• Assist with internal and external audits and assessments including control assessment, monitoring, and reporting including collection and organization of evidence.
• Work with various internal teams and external parties to define and prioritize remediation efforts, tracking remediation activities, and inspecting/validating solutions that have been implemented.
• Perform other duties within the scope of governance, risk, and compliance as needed.

Requirements

• Practical experience with policy and regulatory mandates such as SOC 1/SOC 2, CSA-CCM, ISO27001/27002/22301/27017/42001, GDPR, CCPA, PCI-DSS, the NIST Risk Management Framework, and associated standards such as NIST SP(s) 800-34/800-53 Revision 5/800-171, FedRAMP, CMMC 2.0.
• Understanding of Third Party Risk Management concepts such as organizational risk impact, determining data classification, evaluating control implementations, and assessing adequacy of compensating controls.
• Experience in typical office applications including Microsoft Word, Excel, and the Google Workspace Suite.
• Fundamental technical understanding of key technologies such as Windows, Linux, and Apple operating systems, networks, application development, databases, virtualization, containerization, and cloud infrastructures.
• Bachelor’s degree in a relevant field (e.g., Information Security, Risk Management, or related discipline) with 1+ year of experience in governance, risk, and compliance, or customer trust, or equivalent combination of education and practical experience.

Nice to have

• Experience implementing, managing, and/or operating a customer trust portal.
• Practical experience in programming languages including JavaScript, Python or similar.
• Experience in scoping work, project management, critical path analysis, resourcing, managing time estimates, project risks, and/or quality.
• Ability to think strategically about risks and tie those risks to tactical organizational activities.
• Experience with a cloud environment and the hirify.global products or services.
• Open to learning and working on new domains and technology

Culture & Benefits

• Market leader in compensation and equity awards.
• Comprehensive physical and mental wellness programs.
• Competitive vacation and holidays for recharge.
• Paid parental and adoption leaves.
• Professional development opportunities for all employees regardless of level or role.
• Great Place to Work Certified™ across the globe.