GRC Specialist
חברה בתחום אחר
- רמת גן
We are looking for a highly dedicated GRC Specialist to join our Information Security Team. In this role, you'll help validate our services and environments against rigorous security standards and build customer trust through InfoSec compliance. The ideal candidate is security-focused, driven by curiosity about information security and data protection, and brings a proactive mindset to both technical and interpersonal challenges.
Responsibilities:
Own the development and implementation of GRC frameworks, policies, and procedures
Ensure compliance with key regulations and standards (ISO 27001, SOC2, HIPAA, GDPR)
Handle security questionnaires and InfoSec documentation for prospects and customers
Lead internal and external audit processes across multiple security frameworks
Design and deliver comprehensive security awareness training programs
Drive the vendor due-diligence process and maintain security standards
Manage risk assessment processes and develop mitigation strategies
Provide expert guidance on regulatory requirements and industry standards
Partner with IT, legal, and operational teams to implement security measures
Support audit preparation and execution with thorough documentation
Responsibilities:
Own the development and implementation of GRC frameworks, policies, and procedures
Ensure compliance with key regulations and standards (ISO 27001, SOC2, HIPAA, GDPR)
Handle security questionnaires and InfoSec documentation for prospects and customers
Lead internal and external audit processes across multiple security frameworks
Design and deliver comprehensive security awareness training programs
Drive the vendor due-diligence process and maintain security standards
Manage risk assessment processes and develop mitigation strategies
Provide expert guidance on regulatory requirements and industry standards
Partner with IT, legal, and operational teams to implement security measures
Support audit preparation and execution with thorough documentation
Requirements:
In order to be great at this job, youll need:
3+ years of experience in GRC, Audit, Information Security, or similar roles
3+ years working in a SaaS environment (AWS)
Proven track record managing third-party risk assessments
Strong technical foundation and understanding of security principles
Demonstrated expertise in risk assessment and management methodologies
Outstanding communication skills with ability to influence cross-functional teams
In-depth knowledge of security frameworks (ISO 27001, SOC 2, HIPAA)
Information security certifications preferred (CISA, CISM, CEH)
written documentation skills
Nice to Have:
Experience with cloud security architectures and data privacy regulations
Strong project management skills with ability to handle multiple priorities
Previous experience in AI/ML technology companies
Background in speech-to-text or transcription technologies
Additional requirements:
English native speaker.
In order to be great at this job, youll need:
3+ years of experience in GRC, Audit, Information Security, or similar roles
3+ years working in a SaaS environment (AWS)
Proven track record managing third-party risk assessments
Strong technical foundation and understanding of security principles
Demonstrated expertise in risk assessment and management methodologies
Outstanding communication skills with ability to influence cross-functional teams
In-depth knowledge of security frameworks (ISO 27001, SOC 2, HIPAA)
Information security certifications preferred (CISA, CISM, CEH)
written documentation skills
Nice to Have:
Experience with cloud security architectures and data privacy regulations
Strong project management skills with ability to handle multiple priorities
Previous experience in AI/ML technology companies
Background in speech-to-text or transcription technologies
Additional requirements:
English native speaker.
This position is open to all candidates.
רוצה לראות עוד משרות מתאימות? Jobify מנתחת את הניסיון התעסוקתי שלך ומציגה לך משרות עדכניות - בחינם!
