GRC Specialist (Cybersecurity)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
GRC Specialist (Cybersecurity): Build and scale a modern compliance and security program from the ground up, embedding security into product, engineering culture, and customer conversations with an accent on SOC 2, ISO 27001, and other frameworks. Focus on managing security controls, responding to audits and questionnaires, driving awareness training, and automating GRC processes for scalability.
Tel Aviv
Company
Fast-growing cybersecurity startup backed by Menlo Ventures, Sequoia Capital, and Cyberstarts, de-risking critical vulnerabilities across hybrid environments using agentic capabilities and existing security tools.
What you will do
- Own and manage security compliance program including SOC 2, ISO 27001, and other frameworks
- Lead responses to customer security questionnaires and vendor assessments
- Build and maintain internal security controls framework and evidence collection processes
- Establish continuous compliance monitoring and validation initiatives
- Develop security policies, standards, and procedures supporting compliance and business goals
- Manage external auditors during compliance audits and drive security awareness training
- Support customer-facing security discussions and monitor regulatory changes for SaaS platforms
- Build scalability into GRC processes through automation and tooling
Requirements
- 4+ years in information security and GRC
- Proven track record managing SOC 2 Type 2, ISO 27001, or similar for SaaS organizations
- Experience with SOC operations and cybersecurity incident response
- Hands-on with IT and security tools
- Strong understanding of NIST CSF, CIS Controls, OWASP
- Technical knowledge of cloud (AWS/Azure/GCP), application, and infrastructure security
- Excellent communication skills to translate technical concepts
- Self-starter able to build processes with limited oversight
- Relevant certifications preferred (CISSP, CISM, CISA, or equivalent)
Culture & Benefits
- Serious about mission with impactful work
- Teammates who challenge and inspire
- Plenty of fun along the way
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Похожие вакансии
Threat Detection Researcher (Windows/Linux) (Cybersecurity)
Junior Cybersecurity Architect (GRC & Risk)
Security Researcher (Cybersecurity)
Cloud Security Lead (Cybersecurity)
Senior Product Security Engineer (AI)