GRC Lead

Job Summary

A company is looking for a GRC Lead to support their governance, risk, and compliance initiatives.

Key Responsibilities

• Develop and maintain security policies, standards, and procedures aligned with various frameworks
• Lead risk management programs, including risk assessments and mitigation plans
• Manage compliance initiatives and prepare for internal and external audits

Required Qualifications

• 8 years of experience in GRC, InfoSec, or risk & compliance functions
• Strong understanding of industry standards and frameworks such as SOC 2 and ISO 27001
• Experience leading compliance projects and audits end-to-end
• Hands-on experience with GRC tooling and risk management workflows
• Relevant certifications such as CISA, CISM, or ISO 27001 Lead Implementer/Auditor are a plus