Job Summary
A company is looking for a GRC Lead to support their security governance initiatives and compliance efforts.
Key Responsibilities
- Develop and maintain security policies and procedures aligned with various frameworks
- Lead enterprise, product, and vendor risk management programs and assessments
- Manage security compliance initiatives and prepare for audits
Required Qualifications
- 8+ years of experience in GRC, InfoSec, or risk & compliance functions
- Strong understanding of industry standards and frameworks (e.g., SOC 2, ISO 27001, PCI, NIST, GDPR)
- Experience leading compliance projects and audits end-to-end
- Hands-on experience with GRC tooling and risk management workflows
- Relevant certifications such as CISA, CISM, CRISC, or ISO 27001 Lead Implementer/Auditor are a plus
Comments