GRC Specialist

We are looking for a GRC Specialist to join our Information Security team and play a key role in governance, risk management, compliance, and third-party risk activities across the organization.

Working closely with the CISO and cross-functional teams, you will help strengthen the organization's security posture, ensure regulatory compliance, and support risk management initiatives in a dynamic and technology-driven environment.

Responsibilities:

• Lead and support Governance, Risk & Compliance (GRC) activities across the organization.
• Manage and maintain compliance programs aligned with frameworks and regulations such as ISO 27001, GDPR, Israeli Privacy Protection Law, and other relevant standards.
• Drive Third-Party Risk Management (SCRM) processes, including vendor assessments, supplier classification, security reviews, and onboarding activities.
• Coordinate and support internal and external audits, cybersecurity assessments, penetration testing engagements, and security questionnaires.
• Develop, review, and maintain information security policies, procedures, standards, and governance documentation.
• Support enterprise risk management processes, including cybersecurity and privacy risk assessments, risk tracking, and mitigation plans.
• Monitor regulatory and compliance developments and assess their impact on the organization.
• Lead security awareness and compliance initiatives across the company.
• Collaborate closely with Information Security, Infrastructure, Legal, Digital, Procurement, and Business teams.

Requirements:

• 1–3 years of experience in GRC, Information Security Risk Management, IT Risk, Compliance, Audit, or a related field.
• Familiarity with information security and privacy frameworks such as ISO 27001, GDPR, and privacy regulations.
• Understanding of Third-Party Risk Management (TPRM/SCRM), including vendor risk assessments and supplier security reviews.
• Knowledge of cybersecurity or operational risk management methodologies.
• Strong analytical and problem-solving skills.
• Excellent communication and stakeholder management abilities.
• Ability to work independently in a fast-paced, multi-stakeholder environment.
• Strong English communication skills, both written and verbal.

Location: Airport City, Israel (Full-Time, On-Site)