Tech Stack

Description

You will drive GRC processes to mitigate risk and maintain compliance, evolving the Trust program by automating security controls and building integrations between security tools and GRC platforms. Work at the intersection of security, engineering, and compliance to translate regulatory requirements into technical solutions.

Requirements

• 5+ years experience in GRC, IT Governance, or Security Engineering
• Deep experience with SOC 2, PCI DSS, ISO 27001, NIST CSF in cloud-native environments
• Technical proficiency in Python or similar scripting languages
• Experience building integrations using APIs to connect security tools with GRC systems
• Builder mindset with ability to design automated control testing and continuous monitoring

Responsibilities

• Manage and scale IT infrastructure, services, and tooling
• Optimize services with diverse IT partners
• Implement new services aligned with IT vision
• Scale services via configuration as code using Terraform or APIs
• Produce documentation and lead training sessions to upskill IT partners