🛠 Tech Stack

💼 About This Role

You'll drive the execution and innovation of Benevity's security governance, risk, and compliance program, ensuring alignment with standards like ISO 27001, SOC 2, and GDPR. You'll lead risk assessments, support client due diligence, and mentor junior team members to strengthen the organization's security culture.

🎯 What You'll Do

• Develop and maintain security policies and control frameworks
• Lead enterprise-wide risk assessments and manage risk register
• Support audit readiness for ISO 27001, SOC 2, PCI DSS
• Respond to client security questionnaires and TPRM requests

📋 Requirements

• 5+ years experience in cybersecurity, GRC, or privacy
• Strong knowledge of ISO 27001, SOC 2, NIST, GDPR frameworks
• Hands-on with GRC tooling (OneTrust, Hyperproof, etc.)
• Experience in risk assessments and TPRM

✨ Nice to Have

• Certifications such as CISM, CRISC, CISSP, CISA
• Experience with FINTRAC/AML obligations

🎁 Benefits & Perks

• 🏖️ Flexible hybrid work
• 📈 Growth opportunities
• 🤝 Caring co-workers
• 🌟 Purpose-driven work

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Call· 30 min
2. 2Hiring Manager Interview· 45 min
3. 3Technical/Panel Interview· 60 min