Risk And Compliance Analyst (LegalTech)

TL;DR

Risk and Compliance Analyst (LegalTech): Supporting security, risk, and compliance initiatives within the company's control landscape with an accent on modernizing the Security Control Program and automating evidence collection. Focus on designing integrations between GRC tooling and source systems, performing control testing, and translating complex regulatory requirements into scalable technical implementations.

Location: Kraków, Poland (Hybrid)

Salary: 120,000–180,000 PLN

Company

hirify.global is a leading provider of legal data intelligence software, committed to security and innovation in the legal technology industry.

What you will do

• Coordinate information security management program activities, including reviews, evidence tracking, and risk assessments.
• Perform control testing, process audits, and review system implementations.
• Identify control evidence suitable for automation and partner with owners to replace manual submissions.
• Design and maintain integrations between GRC tooling and source systems using APIs and scripts.
• Build and recommend enhancements to security management programs and workflow tools.
• Maintain accurate audit control testing files and risk ratings for identified exceptions.

Requirements

• Bachelor’s degree in Risk Management, Information Systems, Cybersecurity, or a related field.
• 1-3+ years of professional experience in risk management, internal audit, or compliance.
• Familiarity with frameworks such as ISO/IEC 27001/27018, NIST 800-53, or SOC 2.
• Ability to translate control requirements into repeatable, scalable technical implementations.
• Strong written and verbal communication skills for articulating risk to technical and non-technical stakeholders.
• Knowledge of IT/security general controls including change management, access control, and encryption.

Nice to have

• Proficiency with scripting or query languages like Python, PowerShell, or SQL.
• Experience designing automated evidence collection workflows.
• Relevant security certifications such as CISA, Security+, or Network+.
• Experience working with internal or external auditors.

Culture & Benefits

• Comprehensive health, dental, and vision insurance plans.
• Flexible work arrangements and parental leave.
• Two week-long company breaks per year plus additional time off.
• Long-term incentive program and training investment budget.
• Inclusive environment that celebrates diverse skills and life experiences.