GRC Specialist

Our Mission

Our vision is to let everyone enjoy financial freedom, regardless of their banking status, credit score, or other obsolete metrics.

Our platform does just that, without depending on the traditional banking system.

We provide digital financial services for a variety of populations, serving tens of thousands of customers every month.

Using cutting-edge technologies and our global financial network, we provide our customers, individuals, or businesses, advanced services including multi-currency accounts, international Visa cards, and real-time cross-border payments, with expertise in hard to reach destinations.

We’re looking for a GRC Specialist to join our Cyber Security Department and lead cybersecurity Governance, Risk, and Compliance efforts for a growing, disruptive fintech operating in a regulated environment.

This role is ideal for someone who thrives on detail and complexity, enjoys working deeply with regulations and frameworks, and can translate dense requirements into clear, actionable controls.

What you’ll do

• Own, implement, and continuously improve GRC frameworks, policies, and processes
• Track and enforce execution of policies across Neema, including documentation and evidence collection
• Manage cybersecurity risk assessments and translate findings into business-relevant insights
• Drive compliance with ISO 27001, PCI DSS, GDPR, DORA, EU AI Act, and any related European and Israeli privacy and banking regulations
• Lead audits, third-party risk assessments, and customer/partner security due diligence
• Manage and enhance the GRC platform and related workflows

What we’re looking for

• 2+ years of experience in GRC, information security, risk, or compliance
• Strong attention to detail and comfort working with long, technical regulatory texts
• Ability to break down abstract requirements into practical, real-world security controls
• Organized, methodical, and comfortable with structured, process-driven work
• Experience with standards, regulatory frameworks, and audit processes, with the ability to learn and implement new ones
• Proven project management and stakeholder coordination skills
• Excellent written and verbal communication skills in Hebrew and English
• Strong desire to learn and stay current with evolving regulations, security frameworks, and industry best practices

Nice to have

• Relevant certifications (CISSP, CISM, CISA, CRISC, CISO, PMP, ISO Auditor)
• Hands-on experience with ISO 27001, PCI DSS, and Israeli privacy regulations