Tech Stack

Description

You will drive critical GRC processes to mitigate risk and maintain compliance, evolving the technical foundation of Brex's Trust program by automating security controls and building integrations. Working at the intersection of security, engineering, and compliance, you'll translate regulatory requirements into technical solutions and eliminate manual toil.

Requirements

• 5+ years experience in GRC, IT Governance, or Security Engineering
• Deep experience with SOC 2, PCI DSS, ISO 27001, NIST CSF in cloud-native environments
• Technical proficiency in Python and API integrations
• Builder mindset with ability to design automated control testing and continuous monitoring
• Exceptional communication skills

Responsibilities

• Drive GRC processes to mitigate risk and maintain compliance
• Automate security controls and build integrations between security tools and GRC platforms
• Design workflows using Tines and create dashboards for security metrics
• Support audits (SOC 2, PCI DSS, SOX/ITGC, FINRA, ISO) and AI governance framework implementation
• Collaborate cross-functionally to implement controls that enable growth