GRC Professional

Description:

Are you ready to evolve from a GRC professional into a strategic leader? We are looking for a high-potential GRC Specialist to join Fiverr.

As a GRC at Fiverr you will be responsible for aligning Fiverr’s security compliance and regulatory requirements. You will be responsible for preparing the business for certifications and regulations. You will verify that existing controls are adequate and define and oversee the implementation of new security controls. In addition, you will be responsible for) Risk management, employee awareness and Vendor Security assessment. You will devise new policies and update existing ones while aligning with business processes.

• Oversee the company's security GRC program.
• Lead annual certifications (ISO 27001, SOX-ITGC) and prepare for security audits (e.g., PCI DSS).
• Third-party risk management.
• Develop policies and guidelines aligned with security best practices for complex environments.
• Conduct risk management and build plans to mitigate risks while engaging stakeholders.
• Collaborate with IT, Legal, HR, Finance, and security teams to address gaps versus best practices.
• Drive the security awareness program and explore strategies to enhance the security posture.

• 1+ years in security & GRC.
• Proven experience in leading security compliance efforts, including certifications such as SOX, PCI DSS, and ISO 27001.
• Strong project management and familiarity with cloud and SaaS technologies.
• Basic working knowledge of AI tools and the ability to apply them in daily work to improve efficiency, drive innovation, and strengthen GRC activities.
• Experience in vendor management, including handling security agreements and security questionnaires (advantage).
• Technical mindset with experience in security tools (advantage).
• Curiosity, eagerness to learn, and a proactive attitude.
• Strong interpersonal skills and ability to work effectively with people.

At Fiverr, we’re not about checklists. If you don’t meet 100% of the requirements for this role but still feel passionate about the position and think you have the right skills and qualifications to excel at it, we want to hear from you.