Grc Specialist

TL;DR

Grc Specialist (Cybersecurity): Building and scaling compliance programs, controls, and processes across frameworks and regulatory requirements with an accent on AI governance and public sector requirements. Focus on automation, tooling, and scalable workflows to improve compliance operations.

Location: Hybrid

Company

hirify.global is training and deploying frontier models for developers and enterprises who are building AI systems to power magical experiences.

What you will do

• Build, implement, and scale compliance programs, controls, and processes across frameworks and regulatory requirements.
• Support and mature compliance efforts related AI governance including work aligned to ISO 42001 and the EU AI Act.
• Drive compliance readiness for FedRAMP, DoD, and related public sector requirements.
• Partner with Security, Engineering, Modeling, Product, Legal, and other cross-functional teams to translate requirements into practical, scalable controls.
• Improve compliance operations through automation, tooling, and scalable workflows.
• Support audits, assessments, and customer or regulatory compliance requests.

Requirements

• 5+ years of experience building and scaling compliance programs across multiple frameworks and regulatory requirements, including SOC 2, ISO 27001, HIPAA, with extensive experience in FedRAMP, DoD, and public sector or highly regulated environments.
• Experience with AI governance and frameworks such as ISO 42001.
• Strong project management and cross-functional execution skills.
• Technical fluency and comfort working with Engineering and Security teams.
• Experience with automation, workflow tooling, or process design; some hands-on experience with Python or similar scripting for lightweight automation is a plus.
• Strong written communication, organization, and attention to detail.

Nice to have

• Experience designing and implementing mature risk management frameworks, including FAIR, quantitative risk methodologies, and other structured enterprise risk models.
• Consulting experience in regulated environments, including multi-jurisdictional compliance programs and regulatory requirements across the U.S. and international markets.
• Experience with additional frameworks such as NIST CSF, NIST RMF, NIST AI RMF, CMMC, or similar standards.
• Experience working in cloud-native, SaaS, or highly technical product environments.
• Experience preparing reports, metrics, and presentations for senior leadership, including communicating compliance posture, program progress, and risk insights to executive stakeholders.

Culture & Benefits

• Open and inclusive culture and work environment.
• Work closely with a team on the cutting edge of AI research.
• Weekly lunch stipend, in-office lunches & snacks.
• Full health and dental benefits, including a separate budget to take care of your mental health.
• 100% Parental Leave top-up for up to 6 months.
• Remote-flexible, offices in Toronto, New York, San Francisco, London and Paris, as well as a co-working stipend.