Senior GRC Specialist

Are you ready to lead and advance governance, risk, and compliance programs for our client? This is a remote-first role with the opportunity to influence organizational strategy and strengthen their cGRC maturity. Please note that you must be located within or nearby NYC, Boston, North Carolina, Florida or Connecticut as you'll be required to interview in-person during the process.

What you’ll do

Lead development, implementation, and ongoing improvement of cGRC policies, frameworks, and processes

Conduct enterprise-wide risk assessments, including third-party/vendor evaluations, and recommend mitigation strategies

Manage compliance with regulatory requirements (e.g., NIST CSF, ISO 27001, GDPR, SOC1/2) and internal policies

Oversee internal and external audits, ensuring timely and accurate documentation and responses

Provide guidance, training, and strategic recommendations to senior management and cross-functional teams

Track and report metrics on IT security risks, vendor compliance, and program effectiveness

Promote a strong security and compliance culture throughout the organization

What we’re looking for

5–7 years of experience in GRC, risk management, or compliance

Relevant certifications such as CISSP, CISM, CRISC, or equivalent

Strong understanding of regulatory standards and industry best practices

Experience with GRC tools and software

Excellent analytical, problem-solving, and communication skills

Knowledge of emerging AI regulations, risks, and governance frameworks is a plus

#J-18808-Ljbffr