GRC Analyst (Cybersecurity)

TL;DR

GRC Analyst (Cybersecurity): Supporting compliance programs, audit preparation, and risk assessments for a digital experience platform with an accent on security governance and risk mitigation. Focus on maintaining the central risk register, executing external audits (SOC2, ISO 27001), and implementing AI governance frameworks.

Location: Based in Dublin, Ireland; must be able to support operations aligned with U.S. Central and Eastern time zones.

Company

hirify.global is a leading provider of agentic digital experience software that helps global brands deliver personalized, predictive, and dynamic customer experiences.

What you will do

• Perform vendor risk reviews, due diligence assessments, and maintain the central risk register.
• Coordinate and prepare evidence for external and internal audits including PCI, HIPAA, SOC2, SOC1, and ISO 27001/42001.
• Configure and maintain GRC tooling to automate compliance workflows and controls testing.
• Develop and update security policies, standards, and procedures in alignment with ISMS and AIMS.
• Collaborate cross-functionally with Engineering, Product, Legal, and IT teams on compliance initiatives.
• Prepare status reports, dashboards, and metrics on GRC activities for leadership.

Requirements

• Bachelor’s degree in Information Technology, Cybersecurity, or a related field.
• 3+ years of experience in GRC, risk management, or audit support.
• Familiarity with industry frameworks such as ISO 27001, SOC 2, HIPAA, GDPR, PCI DSS, and NIST.
• Must be based in Dublin, Ireland.
• Flexibility to work across multiple time zones with clear communication skills.

Nice to have

• Experience with GRC tools like Vanta, Drata, or OneTrust.
• Knowledge of AI Governance, ISO 42001, and the EU AI Act.

Culture & Benefits

• Collaborative global team spanning over 25 countries.
• Active cultivation of AI skills across all teams to increase efficiency and insight.
• Commitment to equal opportunity and an inclusive workplace.