💼 About This Role

You'll support Benevity's security governance, risk, privacy, and regulatory program by assisting with compliance activities and risk assessments. You'll gain hands-on experience with ISO 27001, SOC 2, and GDPR while responding to client due diligence requests. This role offers significant growth across governance, risk, audit, and privacy domains.

🎯 What You'll Do

• Assist in maintaining security and privacy policies and control frameworks.
• Support enterprise risk assessments and vendor risk reviews.
• Help respond to client security questionnaires and TPRM requests.
• Contribute to audit readiness and evidence gathering for certifications.

📋 Requirements

• 2–4 years experience in cybersecurity, GRC, or privacy in a SaaS environment.
• Working knowledge of ISO 27001, NIST, SOC 2, PCI DSS, GDPR, PIPEDA, FINTRAC, or CCPA/CPRA.
• Exposure to GRC tooling (e.g., OneTrust, Hyperproof, AuditBoard).
• Familiarity with risk assessment methodologies and compliance evidence gathering.

✨ Nice to Have

• Willingness to support client due diligence processes.
• Interest in leveraging automation and AI for GRC.
• Certifications such as Security+, CISM, CISA, or CIPM.

🎁 Benefits & Perks

• 💻 Flexible hybrid work
• 📈 Innovative work and growth opportunities
• 🤝 Caring co-workers
• 🌟 Purpose-driven work

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Hiring Manager Interview· 45 min
3. 3Technical Interview· 60 min