Junior Cybersecurity Architect (GRC & Risk)

TL;DR

Junior Cybersecurity Architect (GRC & Risk): Support governance, risk analysis, and security process design by translating security findings into structured mitigation plans and improving methodologies and frameworks. Focus on conducting maturity assessments, leading mitigation workshops, and mapping technical findings to governance, risk, and control gaps.

Herzliya, Israel

Company

hirify.global helps security and risk leaders gain a clear, defensible view of their cyber exposure, grounded in financial impact and real-world attack paths.

What you will do

• Conduct customer and third-party security assessments and questionnaires.
• Lead or support mitigation workshops and build actionable remediation plans.
• Develop and refine methodologies, processes, and architectural guidelines.
• Map technical findings to governance, risk, and control gaps.
• Perform NIST CSF 2.0-aligned maturity assessments.
• Produce clear reports and executive summaries.
• Maintain internal documentation and ensure framework alignment.

Requirements

• 1–2 years in cybersecurity GRC, IT risk, compliance, audit/assurance, or related process-oriented security roles.
• Strong understanding of governance, risk management, and operational processes.
• Familiarity with cybersecurity frameworks (NIST CSF, ISO 27001 concepts), risk assessment, mitigation planning, and third-party risk management.
• Basic conceptual understanding of cloud/SaaS shared responsibility models.
• Ability to communicate technical issues in business-aligned language.
• Strong writing, communication, and facilitation skills.
• Comfortable collaborating with internal stakeholders and external customers.