GRC Operations Specialist (Web3)

TL;DR

GRC Operations Specialist (Web3): Managing Governance, Risk, and Compliance programs to ensure the security and trust of digital asset management solutions with an accent on Third Party Risk Management (TPRM) and security awareness. Focus on automating GRC efficiency, driving internal and external audits, and aligning security standards with business requirements.

Company

hirify.global provides a secure platform and network for companies to manage digital assets, trusted by major financial institutions and Web3 companies.

What you will do

• Own and continuously improve the Third Party Risk Management (TPRM) program to meet security standards and business SLAs.
• Manage the security awareness program, including the development of training and performance testing (phishing, vishing, social engineering).
• Oversee GRC team operations, including project tracking, financial planning, and periodic reporting.
• Enhance GRC efficiency through innovation, automation, and data-driven research.
• Support internal and external audits, risk assessments, certification processes, and policy management.

Requirements

• Minimum of 3+ years of experience in cybersecurity or GRC.
• Proven experience in IT or third-party risk management.
• Expertise in the security awareness domain, including the implementation of training programs.
• Strong understanding of industry frameworks and standards such as SOC 2, ISO, NIST, CIS, DORA, and GDPR.
• Exceptional communication and interpersonal skills for engaging technical and non-technical audiences.
• Strong analytical and problem-solving skills with the ability to manage multiple projects under tight deadlines.

Nice to have

• Experience working with GRC software for compliance, policy, risk, and vendor management.
• Professional background in the financial or digital assets sector.
• Technological understanding and familiarity with product development practices.