CrawlJobs Logo

GRC Security Compliance Advisor

United States, Plano Employment contract 106575.00 - 177625.00 USD / Year · Job Posted July 04, 2026
Apply Position
Job Link Share

Job Description

We are currently seeking a GRC Security Compliance Advisor to join our team in Plano, Texas (US-TX), United States (US). This is a hybrid role, on-site at our client site several times per week. The GRC Security Control Compliance L3 role is responsible for executing and supporting governance, risk, and compliance (GRC) activities related to information security controls, regulatory compliance, audit readiness, and risk management. The role focuses on assessing security controls, monitoring compliance adherence, supporting audits, tracking remediation activities, and ensuring alignment with organizational security policies and industry standards. The GRC Security Compliance Specialist works closely with cybersecurity, infrastructure, cloud, application, risk, audit, and business teams to validate control effectiveness, identify gaps, and drive corrective actions. This role requires hands-on experience in security frameworks, compliance assessments, and operational governance processes.

Job Responsibility

  • Executing and supporting governance, risk, and compliance (GRC) activities related to information security controls, regulatory compliance, audit readiness, and risk management
  • Assessing security controls, monitoring compliance adherence, supporting audits, tracking remediation activities, and ensuring alignment with organizational security policies and industry standards
  • Working closely with cybersecurity, infrastructure, cloud, application, risk, audit, and business teams to validate control effectiveness, identify gaps, and drive corrective actions

Requirements

  • 10 years of security experience
  • Hands-on experience in security frameworks, compliance assessments, and operational governance processes
  • Knowledge of risk management concepts
  • Knowledge of systems and network administration (i.e., desktop, server)
  • Familiarity with information security technologies and issues on multiple platforms
  • Knowledge of Globally Accepted Information Security Principles
  • Knowledge of network security that pertains to communications, computer system environments and related infrastructures
  • Knowledge of server and desktop configurations that will protect systems from unauthorized access and software invasion
  • Preferred: CISSP, GIAC, SSCP or CEH

Nice to have

  • CISSP
  • GIAC
  • SSCP
  • CEH

What we offer

  • Medical insurance
  • Dental insurance
  • Vision insurance with an employer contribution
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • 401k program with company match
  • Additional voluntary or legally-required benefits

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

GRC Security Compliance Advisor

8 matching positions

Security Analysis Specialist Advisor

Location
Location
India , Noida
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to self-manage work schedule to ensure timely delivery of audit and compliance services
  • Ability to drive IT teams and escalate where necessary to ensure timely delivery of audit and compliance services
  • Solid critical thinking and problem-solving skills
  • Ability to manage competing priorities and comfortable to work through ambiguity
  • Minimum 2 years of hands-on information technology operations experience and a strong knowledge of IT security standards and best practices
  • Minimum of 2 years recent audit experience spanning at least two full cycles of any two of the following: SSAE16 SOC1 Type 2, SSAE16 SOC2 Type 2, SOX, PCI-DSS, HIPPA, ISO/IEC 27001:2005, or similar
  • Strong understanding and application of IT Security frameworks such as: PCI DSS, ISO/IEC 27001:2005, CIS, HIPAA, NIST 800-53 etc.
  • Strong understanding of IT general controls
  • Ability to work within a fast-paced environment within an ITO organization
  • Strong interpersonal relationship building and business acumen
Job Responsibility
Job Responsibility
  • Develop and maintain an effective audit and compliance program strategy based on client requirements
  • Evaluate, interpret, and ensure clarity of contractual audit and compliance obligations and client objectives
  • Implement and drive governance, risk, and compliance approach to promote ongoing audit readiness and to contribute toward effective IT security hygiene and management of risk
  • Participate in audit lifecycle including internal/external audits and assessments
  • Provide oversight and guidance for internal/external audits and assessments
  • Drive recurring internal assessment of controls environment to ensure compliance with information security policies and established security controls
  • facilitate remediation
  • Maintain annual audit calendar for supported client
  • Maintain IT security controls library and documentation repository for supported client
  • Coordinate the collection of audit evidence and provide timely responses to support audits and/or assessments from internal/external auditors/assessors
Read More
Arrow Right
New

Senior Governance, Risk & Compliance Business Partner

Are you a seasoned GRC professional who thrives on moving beyond advisory to act...
Location
Location
Australia , Adelaide
Salary
Salary:
70.00 - 75.00 AUD / Hour
https://www.randstad.com Logo
Randstad
Expiration Date
July 23, 2026
Flip Icon
Requirements
Requirements
  • Proven Delivery Track Record: Deep, practical experience in governance, risk, and compliance within complex environments, with a proven history of personally leading or materially driving GRC uplift initiatives
  • Framework Expertise: Strong working knowledge of risk management principles aligned directly to ISO 31000
  • Executive Presence: Demonstrated ability to operate as a trusted advisor to executive leadership, with exceptional verbal and written communication skills
  • Execution & Analytical Capability: Strong analytical capability with the ability to interpret complex policy or legislation (including Freedom of Information processes) and translate them into actionable business solutions
  • Agility: The ability to determine priorities, bring structure to ambiguity, manage competing demands, and deliver high-quality outcomes to tight timeframes
  • 10 years experience
Job Responsibility
Job Responsibility
  • Drive GRC Maturity: Strengthen and uplift the organisation's GRC maturity, translating risk and compliance frameworks into practical, embedded business practices
  • Internal Audit & Assurance: Lead the development and formulation of a detailed, risk-based Internal Audit Plan for executive and board sub-committee approval
  • Strategic Business Partnering: Influence, consult, and partner with executives and senior leaders to embed clear accountability for risk, compliance, and internal controls
  • Policy & Framework Custodianship: Review, draft, and maintain robust corporate policies and procedures, ensuring strict alignment with legislative and government policy requirements (including protective security frameworks)
  • Reporting & Briefings: Prepare high-level briefings, reports, and papers for executive leadership and board-level review
Read More
Arrow Right
New

Staff Security Engineer, Enterprise Security Architecture

Aurora’s mission is to deliver the benefits of self-driving technology safely, q...
Location
Location
United States , Detroit
Salary
Salary:
171000.00 - 273000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of professional experience in Information Security, Enterprise Architecture, Security Engineering, or related technical leadership capacities
  • 5+ years specifically focused on designing enterprise-scale security architectures across diverse domains, including endpoint, network, infrastructure, vulnerability management, resilience, and enterprise platforms
  • Demonstrated success in developing enterprise security architecture strategies, reference architectures, and scalable technical standards
  • Extensive technical depth in Zero Trust principles, enterprise security frameworks, and modern backend or enterprise security architecture design patterns
  • Comprehensive knowledge of core enterprise security domains, including endpoint security, network security, PKI, enterprise vulnerability management, resilience, data protection, and governance integration
  • Proven ability to translate governance, compliance, and strategic business requirements into actionable technical architecture and implementation guidance
  • Experience representing security interests within architecture review boards, governance committees, or enterprise-wide design councils
  • Advanced familiarity with enterprise infrastructure, SaaS ecosystems, internal platforms, and the strategic integration of security tooling
  • Adept at evaluating technical tradeoffs, identifying scalability constraints, and assessing the long-term implications of enterprise security architecture decisions
  • Exceptional documentation skills, including the creation of detailed architecture diagrams, technical standards, and strategic narratives for executive leadership
Job Responsibility
Job Responsibility
  • Define and champion Aurora’s enterprise security architecture strategy, roadmap, and target-state operating model across enterprise and backend operational security domains
  • Develop enterprise security reference architectures, design patterns, and technical standards for endpoint security, network security, infrastructure security, enterprise vulnerability management, data protection, resilience, enterprise platforms, and security tooling
  • Translate security strategy, governance requirements, and business priorities into scalable technical architecture and implementation guidance
  • Partner with GRC to operationalize security policies, standards, and control objectives into practical enterprise security architectures
  • Support and influence Aurora’s broader Enterprise Architecture Committee by representing enterprise security priorities, technical standards, and strategic design principles
  • Participate in architecture review boards, design committees, and strategic planning forums to ensure enterprise security alignment across major initiatives
  • Architect secure solutions for workforce platforms, enterprise systems, internal infrastructure, and backend operational ecosystems using Zero Trust principles and modern security frameworks
  • Guide enterprise security design for endpoint security, network security, PKI, enterprise vulnerability management, BCP/DR, data security, enterprise infrastructure, and security tooling modernization
  • Provide architectural oversight for major enterprise security initiatives, ensuring scalability, interoperability, governance alignment, and reduced fragmentation
  • Partner with Security Engineering, GRC, Cloud Security, IT, Product Security, and IAM teams to align technical security capabilities while maintaining clear domain boundaries
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Benefits
  • Fulltime
Read More
Arrow Right

Cyber GRC Project Lead

Help us deliver like never before  We’re looking for a Cyber Risk Advisor – Majo...
Location
Location
Australia , Richmond
Salary
Salary:
Not provided
auspost.com.au Logo
Australia Post
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in cyber security, risk, or GRC within complex or program-based environments
  • Strong stakeholder engagement skills, with the ability to influence and act as a trusted advisor
  • Experience conducting or coordinating risk assessments, with an understanding of cyber frameworks and governance practices
Job Responsibility
Job Responsibility
  • Partner closely with program teams and cyber stakeholders to embed strong governance, risk and compliance practices across key transformation initiatives
  • Act as the central point of triage for cyber risk, providing insights, driving improvements, and building trusted relationships across the business
  • Lead and coordinate cyber risk assessments across major programs, acting as the central triage point for incoming work
  • Engage and influence key stakeholders to uplift cyber awareness and embed GRC practices into delivery
  • Provide timely reporting and insights on program risk posture, trends and key findings
  • Continuously improve processes through feedback and iteration to enhance how cyber GRC supports delivery
What we offer
What we offer
  • Work across high-impact, enterprise-wide transformation programs driving meaningful cyber outcomes
  • A genuinely collaborative environment where you're empowered to shape processes and ways of working
  • Opportunities to grow your capability and build trusted advisor relationships across Digital Technology and the broader business
  • Fulltime
Read More
Arrow Right

Senior SAP Cyber Security Architect

We are seeking an Senior SAP Cyber Security Architect to join our Global Cyber S...
Location
Location
Canada , Mississauga
Salary
Salary:
103636.00 - 142499.00 USD / Year
mercedes-benz.com Logo
Mercedes-Benz AG
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • University or college degree in Computer Science, Information Technology, or a related field, or 5+ years of hands-on SAP experience
  • Primary expertise in SAP technologies, including SAP Basis and SAP architecture
  • SAP Cloud experience is highly desirable
  • Secondary focus on security, with experience in SAP security concepts and IT security principles
  • Strong technical knowledge of SAP S/4HANA, SAP Governance, Risk, and Compliance (GRC), and identity and access management integrations, e.g. Azure AD / Entra ID
  • Relevant certifications such as CISSP, CISM, and/or SAP Security or SAP GRC are an advantage
  • Passion for viewing processes and procedures as opportunities for improvement, optimization, and further development
  • Self-motivated, with the ability to identify the best course of action and implement solutions that reduce manual effort and improve efficiency
  • Honest and professional, with a proactive mindset that supports a team culture of knowledge sharing, excellence, and collaboration
  • Fluent in English
Job Responsibility
Job Responsibility
  • Design secure SAP system architectures and continuously enhance existing landscapes, including SAP Basis, SAP Cloud, SAP Cloud solutions (BTP and SAP SaaS), and SAP IAM
  • Act as a trusted partner for global SAP transformations to SAP RISE and for the expansion of security controls
  • Define, document, and validate SAP security standards and procedures, including operating procedures, exception management, hardening measures, and additional security services such as secure defaults and the protection of RFC, API, and interface communications
  • Define and reshape the SAP Secure Operations Map and contribute to SAP security architecture, controls, and global services across a worldwide SAP landscape
  • Lead SAP integration within a landscape of global IAM services
  • Act as a trusted advisor to SAP Basis, development, and business teams by translating security requirements into practical SAP solutions
  • Align SAP security architecture with enterprise security strategy, risk management, and regulatory frameworks
  • Serve as a central communication and consulting partner for the SAP organization, CISO organization, global cyber security, SAP, and external parties
  • Integrate SAP cyber security seamlessly into global cyber security services
  • Provide advisory support for audits, assurance reviews, and control testing
What we offer
What we offer
  • Commitment to inclusion & diversity
  • Engaging corporate culture
  • Ever-evolving brand strategy granting opportunities to build business acumen
  • Training development and career growth opportunities
  • Benefits to support work-life balance/integration
  • A strong portfolio of corporate social responsibility initiatives
  • State-of-the-art working facilities
  • Vehicle purchase and experience programs
  • Comprehensive health, dental, and pension programs
  • Recognition rewards and discount programs
  • Fulltime
Read More
Arrow Right

Project Manager within GRC

As a Project Manager within our GRC product area, you lead the implementation of...
Location
Location
Sweden , Göteborg; Stockholm
Salary
Salary:
Not provided
Stratsys
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working broadly within GRC-related areas (e.g. risk, information security, compliance), with hands-on experience translating requirements into processes, systems, or implementation projects in a business context
  • Bachelor’s or master’s degree in a relevant field
  • Understanding of relevant regulatory frameworks such as NIS2, DORA, or similar
  • Experience from the private sector and working with different stakeholders
  • Experience of driving work forward, structuring initiatives, or leading projects
  • Interest in systems and how digital tools support business processes
Job Responsibility
Job Responsibility
  • Leading implementation and onboarding of Stratsys’ platform and GRC products which means hands-on configuring solutions in the system
  • Translating customer needs into structured and scalable solutions in the system
  • Guiding customers in how to apply the platform to their GRC processes
  • Acting as an advisor in customer dialogues with a focus on how to apply best practices within the platform and its GRC functionalities
  • Supporting more complex customer engagements and contributing to business and offering development
What we offer
What we offer
  • An engaging work environment with colleagues who share a common goal: delivering a world-class platform within important and impactful areas
  • Work with complex and business-critical topics such as risk, information security, and compliance
  • Be part of shaping how we deliver and scale GRC at Stratsys
  • Challenging, varied, and engaging tasks, with both the freedom and encouragement to work independently and think innovatively
  • Join a high-energy, close-knit team where successes are shared and celebrated together
  • Work from modern and centrally located offices at A House Ark in Stockholm or Kungsportplatsen in Gothenburg
  • Join a company with great benefits
  • Fulltime
Read More
Arrow Right

Director, Product Security

The Director of Product Security is a critical leadership role responsible for t...
Location
Location
United States , Buffalo
Salary
Salary:
178000.00 - 220000.00 USD / Year
acvauctions.com Logo
ACV Auctions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years experience in Information Security
  • 5+ years directly focused on Product Security or Application Security in a leadership role
  • Proven experience building and leading a centralized Product Security/AppSec program within a technology-driven, cloud-based SaaS company
  • Deep, hands-on knowledge of the Secure Software Development Lifecycle (SSDLC), CI/CD, and DevSecOps principles, including automating security tooling
  • Strong understanding of security frameworks and best practices (NIST CSF, ISO 27001, CIS Controls)
  • Extensive experience with cloud security, with a strong focus on securing applications deployed in AWS and/or GCP environments
  • Experience with modern software development including Agentic and Generative AI techniques
  • Expertise with multiple application security tools, including SAST, DAST, MAST, SCA, API security platforms, and Web Application Firewalls (WAF)
  • Excellent communication, interpersonal, and leadership skills, with an ability to translate complex technical risks into business context
  • Ability to work effectively in a remote environment and manage geographically dispersed teams
Job Responsibility
Job Responsibility
  • Design, implement, and manage the end-to-end Product Security program
  • Lead the adoption of DevSecOps practices, automating security tools and gates within the CI/CD pipelines
  • Establish and enforce Secure Software Development Lifecycle (SSDLC) requirements
  • Build, mentor, and manage a team of Product Security Engineers
  • Proactively identify and establish security guardrails for AI/ML model development and usage
  • Oversee the deployment, tuning, and management of application security testing tools (SAST, DAST, SCA)
  • Lead vulnerability remediation efforts for all ACV products
  • Perform and oversee deep-dive security architecture and design reviews for all new products, features, and core application services
  • Define and manage secure configuration standards for containerized applications, microservices, APIs, and their supporting cloud infrastructure (AWS and GCP)
  • Manage and coordinate external penetration testing and bug bounty programs
What we offer
What we offer
  • Multiple medical plans including a high deductible, low cost health plan
  • Company-sponsored (paid) Short-Term Disability, Long-Term Disability, and Life Insurance
  • Comprehensive optional benefits such as Dental, Vision, Supplemental Life/AD&D, Legal/ID Protection, and Accident and Critical Illness Insurance
  • Generous paid time off options, including uncapped vacation days, paid sick days, 6 paid company holidays, 2 floating holidays, parental leave, bereavement leave, jury duty leave, voting leave
  • Employee Stock Purchase Program with additional opportunities to earn stock in the Company
  • Retirement planning through the Company’s 401(k)
  • Fulltime
Read More
Arrow Right

Implementation Governance Specialist

The Implementation Governance Specialist is responsible for ensuring that techno...
Location
Location
Saudi Arabia , Riyadh
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology, Computer Science, Business Information Systems, or a related field (or equivalent experience)
  • Minimum of 5 years of experience in IT governance, change management, project delivery, or implementation oversight roles
  • Proven experience working within formal IT governance, risk, and compliance (GRC) frameworks (e.g., NCA, SAMA, PDPL, ISO 27001, NIST)
  • Strong understanding of IT change management processes, release management, and deployment methodologies
  • Experience reviewing technical implementation plans and assessing risks in complex enterprise environments
  • Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential
Job Responsibility
Job Responsibility
  • Serve as the primary governance authority and advisor for all major IT implementations, system deployments, and significant changes
  • Develop, maintain, and enforce implementation governance frameworks, policies, standards, and procedures
  • Review and approve (or reject) implementation plans, change requests, and deployment strategies to ensure alignment with organizational security, compliance, architecture, and operational standards
  • Conduct risk assessments and impact analyses for proposed implementations and changes
  • Facilitate and chair implementation governance review boards / change advisory boards (CAB / IGB)
  • Monitor implementation activities and post‑deployment validation to confirm adherence to approved plans and controls
  • Identify, track, and report on implementation governance risks, issues, exceptions, and non‑compliance
  • Collaborate with project managers, architects, security teams, and operations to embed governance requirements early in the implementation lifecycle
  • Drive continuous improvement of implementation governance processes based on lessons learned, audit findings, and emerging best practices
  • Maintain accurate records of governance decisions, approvals, and exceptions
  • Fulltime
Read More
Arrow Right