HQ - GRC Lead

Remote Full-time
We are looking for a GRC Lead to own and scale our Governance, Risk, and Compliance function within a fast-growing product company. This is a key role responsible for ensuring compliance with SOX, ISO 27001, and GDPR, while enabling the business to move fast in a secure and controlled way.

You will act as the main driver of our compliance strategy, working cross-functionally with Engineering, Security, Legal, Finance, and Product teams.

\n

What you will do

Own and lead the company’s GRC strategy across SOX, ISO 27001, and GDPR

Design, implement, and maintain SOX control frameworks, including documentation, testing, and audit readiness

Build and manage the Information Security Management System (ISMS) aligned with ISO 27001

Ensure GDPR compliance across all data processing activities, including data mapping, DPIAs, and privacy controls

Lead internal and external audits, acting as the primary point of contact for auditors

Identify compliance gaps and drive remediation plans with technical and non-technical teams

Develop governance policies, procedures, and risk management frameworks

Partner closely with Engineering and Security teams to embed controls into systems and SDLC processes

Monitor regulatory and compliance changes and translate them into actionable requirements

Requirements

8+ years of experience in GRC, Risk, Compliance, or IT Audit roles

Strong hands-on experience with SOX compliance programs (design, testing, audit coordination)

Solid knowledge of ISO 27001 and experience managing or supporting ISMS implementation

Practical experience with GDPR in a product or corporate environment

Experience working with internal and external auditors

Strong stakeholder management and communication skills across technical and non-technical teams

Ability to translate regulatory requirements into scalable business processes

Fluent English

Nice to have

Experience in SaaS or product-led companies

Experience in Big 4 (Deloitte, EY, PwC, KPMG) or similar audit environments

Familiarity with cloud environments (AWS, GCP, Azure)

Security certifications (CISA, CISM, ISO 27001 Lead Implementer/Auditor)

\n#LI-ML3

Apply To This Job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

AI Engineering Manager- United States

Remote

Remote Customer Service Representative at blithequark - Exceptional Career Opportunity with Competitive $45k Annual Salary

Remote

Transcriptionist (Part-time / Remote)

Remote

Content Marketing (Projects, Independent)

Remote

Trauma Data Abstractor, Remote TX

Remote

Remote Customer Service Representative - Applicant Support Specialist | 100% Work-From-Home Position

Remote

Outbound Logistics Summer Intern (Remote Friendly)

Remote

QA Automation Engineer | EMEA

Remote

Principal Operations Strategy – TPRM Learning Strategy

Remote

Senior Front-end Engineer (Performance) - Technology

Remote
← Back