Sr. Risk Manager (GRC)

TL;DR

Sr. Risk Manager (GRC): Strengthening information security maturity through the creation and upkeep of a risk management program with an accent on GRC functions and third-party risk. Focus on designing technical solutions to mitigate security risks, executing internal control testing, and managing industry-specific audits.

Location: Remote (US)

Salary: $120K – $150K

Company

hirify.global creates intuitive products that simplify learning and personal development to amplify the power of people to grow and succeed.

What you will do

• Review and improve the information risk program to identify, measure, and remediate risks with business owners.
• Collaborate with security personnel to identify enterprise-level risks and develop solutions for the CISO.
• Assist in annual audits for industry-specific reports including ISO27001, PCI, and SOC 1/2.
• Partner with engineering teams to design and implement technical solutions to mitigate security risks.
• Evaluate third-party vendors to ensure compliance with established standards and risk tolerance.
• Develop and execute information security internal control testing across the enterprise.

Requirements

• 7+ years of experience in information security, GRC, and/or risk management.
• Must be based in the US (required for identity verification and residential address check).
• Bachelor’s degree in information security or IT-related program preferred.
• Excellent written and verbal communication skills.

Nice to have

• Security+, CRISC, or CISA certifications.

Culture & Benefits

• Employee ownership program for all full-time staff.
• Flexible work culture with remote, hybrid, and in-office collaboration.
• Annual “Dim the Lights” period in late December for recharging.
• Comprehensive wellness programs and mental health support.
• Learning and development resources, including tuition reimbursement.
• Motivosity employee recognition program.