CrawlJobs Logo

Grc Specialist Senior

citynational.com Logo

City National Bank of WV

Location Icon

Location:
United States , Coral Gables

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The GRC Specialist Senior is responsible for conducting security assessments, control testing, issues management, development of metrics and compliance reports in alignment with the Bank's technology risk management framework, regulatory requirements, and departmental policies, while collaborating with auditors and risk management to safeguard the Bank’s assets and sensitive information.This individual will also lead efforts to automate cybersecurity and GRC processes using AI technologies to improve efficiency and reduce manual workload. The role exercises discretion and independent judgment to evaluate risks, interpret regulatory requirements, and establish automated control procedures.

Job Responsibility:

  • Coordinate risk and control self-assessments with IT and cybersecurity subject matter experts and enterprise risk management team
  • Conduct control testing and document results to identify potential gaps in control design and/or control operating effectiveness
  • Collaborate with GRC, engineering, SecOps, IT operations, and BCP teams to define requirements and ensure scalable, secure, and maintainable AI-driven automation solutions
  • Identify opportunities to develop automated solutions using Microsoft Copilot, Power Automate, or another approved automation tool
  • Develop and maintain cybersecurity and IT policies, standards, procedures, program metrics and help develop automated compliance reports and risk metrics for executive leadership, to improve decision-making and reduce operational risk
  • Coordinate work assignments with process owners, control owners, external auditors, and consultants, ensuring issues are documented, monitored, and resolved
  • Advise internal stakeholders on internal control design for ongoing risk mitigation of information systems based on regulatory requirements and best practices
  • Communicate security issues and risks effectively to diverse audiences and ensure compliance with applicable controls based on a unified framework
  • Identify and correct process gaps proactively, recommending improvements to advance the Bank’s information security program maturity in alignment with company goals
  • Guide program leaders on risk remediation efforts, ensuring adequacy of response and timeliness based on risk severity
  • Perform major assignments related to GRC program operations, including evaluation of high-risk processes and applications, strategic planning inputs, and execution of automation initiatives
  • Work independently on complex programs and assignments with diverse teams and perform other duties as assigned

Requirements:

  • 5-7 years of of applied work experience in cyber security compliance management, cyber security programs, data engineering, analytics or integration, audits, assessments, risk and remediation
  • Knowledge of AI concepts (LLMs, prompt design, limitations, hallucinations, etc.)
  • Knowledge of information security management, governance, and compliance principles, practices, laws, rules, regulations, and frameworks such as GLBA, FFIEC, and NIST
  • Knowledge of IT systems and processes, network infrastructure, data architecture, and protocols
  • Skill in applying cyber and cloud security frameworks, architecture, design, operations, controls, and service orchestration
  • Proficiency in Microsoft Office products (Word, Excel, PowerPoint)
  • Ability to develop and implement enterprise governance, risk, and compliance strategies and solutions
  • Ability to research and locate information related to internal and external organizations using online and other sources
  • Skill in security project management and planning
  • Ability to maintain confidentiality and handle sensitive information appropriately
  • Ability to troubleshoot and operate computers and various software packages
  • Ability to define problems, collect and analyze data, establish facts, and draw valid conclusions
  • Ability to use judgment and ingenuity in maintaining objectives and technical standards
  • Ability to communicate technical issues effectively to diverse audiences, both in writing and verbally
  • Ability to apply a risk-based approach to planning, executing, and reporting on audit engagements and auditing processes
  • Bachelor's Degree in in Computer Science, Data Analytics, Engineering or related field, preferred
  • An equivalent combination of education and/or relevant professional experience may be considered in lieu of a degree

Nice to have:

  • Skills in using AI/ML platforms and automation frameworks, such as Microsoft AI solutions (Power Automate, Copilot Studio) and AI Foundry, for developing agents, workflow automation, and predictive analytics in cybersecurity and GRC environments
  • Certification in any of the following is preferred but not required: Microsoft certifications such as Power Platform Fundamentals (PL-900) or Copilot Studio Applied Skills (APL-7008)
  • CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), or CISSP (Certified Information Systems Security Professional)
What we offer:
  • Medical, dental, and vision plans with employer contributions
  • 401(k) with matching
  • Generous PTO and paid holidays
  • Access to mental health and financial wellness resources
  • Tuition Reimbursement
  • Flex Time

Additional Information:

Job Posted:
May 14, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
City National Bank of WV - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Grc Specialist Senior

Digital Assurance Senior Specialist

We are currently looking for a Digital Assurance Senior Specialist to join our I...
Location
Location
Greece , Athens
Salary
Salary:
Not provided
https://www.metlengroup.com Logo
Metlen Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Information Systems, Engineering, Finance, Business Administration, or a related field
  • 7+ years of client-facing experience delivering Digital Assurance services, with a background in Cyber/IT audit, SOX IT audits, and IT risk advisory
  • Hands-on experience auditing IT general controls, financial IT systems (e.g. Windows, Linux, SAP, Oracle, SQL), and cloud environments (e.g. AWS, Azure, AI tools)
  • Familiarity with IT standards and frameworks such as ISO 27001, COBIT, NIST, NIS2, and the AI Act
  • Certified in CISA, CRISC, CGEIT, CISM, ITIL, ISO 27001/LA, or similar credentials
  • Skilled in agile ways of working, sprint management, stakeholder engagement, and producing high-quality reports
  • Strong analytical, communication, and problem-solving skills, with a high sense of confidentiality
  • Fluent in English and willing to travel both in Greece and internationally
Job Responsibility
Job Responsibility
  • Apply the Internal Audit strategy/policies, update the Digital Audit and Assurance strategy and prepare the Digital Assurance annual plan
  • Participate in digital assurance engagements, ensuring the delivery of high-quality, tech-enabled solutions
  • Collaborate with business units to understand their systems and technologies and provide recommendations to mitigate risks
  • Develop and utilize GRC, data analytics and other innovative tools to help business units identify, assess and manage risk and controls during their transformation journey
  • Work closely with external audit teams and internal cybersecurity teams to ensure comprehensive risk management
  • Stay updated with emerging technologies (e.g., cloud, AI, cybersecurity) and provide insights to integrate them into client solutions
  • Provide mentorship to junior team members, fostering a culture of continuous learning and improvement
What we offer
What we offer
  • Competitive remuneration package
  • Ticket Restaurant Card
  • Group Health Insurance Plan
  • Preferential household electricity plan
  • Pension Plan
  • Fulltime
Read More
Arrow Right

Senior Specialist, Customer Assurance

We’re looking for a Senior Specialist, Customer Assurance to help us manage and ...
Location
Location
Canada , Vancouver
Salary
Salary:
78400.00 - 109800.00 CAD / Year
hootsuite.com Logo
Hootsuite
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated years of experience in a security, privacy, customer assurance, or compliance related role (e.g., Security Specialist, Security Support Specialist, Privacy Specialist, GRC Specialist, Information Security or Compliance Auditor) and/or relevant experience in SaaS or technology industry
  • Bachelor’s degree or equivalent industry experience
  • Previous experience leading a high volume support request queue
  • Working knowledge of content management or content automation systems
  • Solid understanding of information security, privacy, risk, and compliance
  • Ability to work within tight deadlines and under pressure
  • Commitment to Results: consistently achieves results, demonstrating high performance, and challenging self and others to deliver result
  • Priority Setting: focuses time/energy on the most important issues/opportunities. Clearly understand how to assess the importance of tasks and decisions
  • Collaboration and Teamwork: works with others to deliver results, meaningfully contributing to the team and prioritizing group needs over individual needs
  • Accountability: holds self and others accountable to meet commitments
Job Responsibility
Job Responsibility
  • Communicate directly with internal stakeholders and external customers to understand and address their security, privacy, AI, and compliance concerns, acting as the primary point of contact on these matters for Hootsuite’s GNB and C&E Teams
  • Collaborate on the security, privacy and AI support process and build strong relationships with teams across the organization (e.g., Sales, Security, Privacy, Product and Technology, Legal), sharing best practices and learnings on what customers need to ensure they’re protected
  • Coordinate, qualify and prioritize a high volume queue of customer assurance review requests
  • Accountable for the accurate completion of customer assurance reviews (e.g., questionnaires) and similar customer requests (e.g., contracts) within tight deadlines
  • Provide expertise and support with RFPs (and similar documents) for Hootsuite’s GNB and C&E Teams
  • Maintain and further develop the capabilities of an AI-driven response automation tool and customer facing Trust Center to aid in driving process and response efficiency
  • Facilitate regular enablement sessions and knowledge sharing to update GNB and C&E teams on new security, privacy and AI support, processes and collateral
  • Manage Salesforce and other reports (e.g., Trust Center reports) that track Customer Assurance program metrics
  • share key data insights with stakeholders on successes, failure points and key learnings from customer review requests
  • Oversee the maintenance of security, privacy and AI collateral and certifications including Trust Center, CAIQ, SIG , etc
What we offer
What we offer
  • Canadian Benefits. Hootsuite offers comprehensive benefits to support the health and wellbeing of our owls and their families. The benefits cover health insurance including medical, dental, vision, life/disability insurances, an Employee and Family Assistance Program and more! Hootsuite provides a group RRSP plan with a company match of up to 4% of base salary. Benefits are available to permanent employees who meet minimum hours requirements without a waiting period
  • US Benefits. Hootsuite offers comprehensive benefits to support the health and wellbeing of our owls and their families. The benefits cover health insurance including medical, dental, vision, and life/disability insurances. Hootsuite also offers a 401k Plan with a company match (up to 4% of base salary), an Employee and Family Assistance Program and more! Benefits are available to employees who meet minimum hours requirements without a waiting period
  • Global Parental Leave. All permanent employees, including birthing, non-birthing and adoptive parents, who have been employed by Hootsuite for a minimum of 12 months are eligible for 26 weeks of full and partially paid leave in accordance with local government regulations
  • Fulltime
Read More
Arrow Right

Senior Specialist, Customer Assurance

We’re looking for a Senior Specialist, Customer Assurance to help us manage and ...
Location
Location
Canada , Vancouver
Salary
Salary:
78400.00 - 109800.00 CAD / Year
hootsuite.com Logo
Hootsuite
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated years of experience in a security, privacy, customer assurance, or compliance related role (e.g., Security Specialist, Security Support Specialist, Privacy Specialist, GRC Specialist, Information Security or Compliance Auditor) and/or relevant experience in SaaS or technology industry
  • Bachelor’s degree or equivalent industry experience
  • Previous experience leading a high volume support request queue
  • Working knowledge of content management or content automation systems
  • Solid understanding of information security, privacy, risk, and compliance
  • Ability to work within tight deadlines and under pressure
  • Commitment to Results: consistently achieves results, demonstrating high performance, and challenging self and others to deliver result
  • Priority Setting: focuses time/energy on the most important issues/opportunities. Clearly understand how to assess the importance of tasks and decisions
  • Collaboration and Teamwork: works with others to deliver results, meaningfully contributing to the team and prioritizing group needs over individual needs
  • Accountability: holds self and others accountable to meet commitments
Job Responsibility
Job Responsibility
  • Communicate directly with internal stakeholders and external customers to understand and address their security, privacy, AI, and compliance concerns, acting as the primary point of contact on these matters for Hootsuite’s GNB and C&E Teams
  • Collaborate on the security, privacy and AI support process and build strong relationships with teams across the organization (e.g., Sales, Security, Privacy, Product and Technology, Legal), sharing best practices and learnings on what customers need to ensure they’re protected
  • Coordinate, qualify and prioritize a high volume queue of customer assurance review requests
  • Accountable for the accurate completion of customer assurance reviews (e.g., questionnaires) and similar customer requests (e.g., contracts) within tight deadlines
  • Provide expertise and support with RFPs (and similar documents) for Hootsuite’s GNB and C&E Teams
  • Maintain and further develop the capabilities of an AI-driven response automation tool and customer facing Trust Center to aid in driving process and response efficiency
  • Facilitate regular enablement sessions and knowledge sharing to update GNB and C&E teams on new security, privacy and AI support, processes and collateral
  • Manage Salesforce and other reports (e.g., Trust Center reports) that track Customer Assurance program metrics
  • share key data insights with stakeholders on successes, failure points and key learnings from customer review requests
  • Oversee the maintenance of security, privacy and AI collateral and certifications including Trust Center, CAIQ, SIG , etc
What we offer
What we offer
  • Canadian Benefits: health insurance including medical, dental, vision, life/disability insurances
  • Employee and Family Assistance Program
  • group RRSP plan with a company match of up to 4% of base salary
  • US Benefits: health insurance including medical, dental, vision, and life/disability insurances
  • 401k Plan with a company match (up to 4% of base salary)
  • Employee and Family Assistance Program
  • Global Parental Leave: 26 weeks of full and partially paid leave for eligible employees
  • Fulltime
Read More
Arrow Right

Senior GRC specialist

At JFrog, we’re reinventing DevOps to help the world’s greatest companies innova...
Location
Location
Israel , Netanya/Tel Aviv
Salary
Salary:
Not provided
jfrog.com Logo
JFrog
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of direct experience in Information Security GRC, Risk Management, or Audit, preferably acquired within a high-growth SaaS or cloud-native environment
  • A proactive, self-starting mentality with strong analytical, project management, and problem-solving skills, with proven ability to validate your own work and drive tasks to completion independently
  • Demonstrable expertise in managing core compliance programs (SOC 2, ISO 27001)
  • Experience pursuing net-new compliance certifications and initiatives (e.g., R, C5, TISAX, IRAP)
  • Experience developing, drafting, and implementing security policies and standards from the ground up in a tech-focused environment, harmonizing controls across frameworks to create agile standards
  • Experience leading complex security audits, serving as a primary liaison and "in-the-room" lead during internal and external audits
  • Strong understanding of information security principles, risk management, and control frameworks in a cloud-first environment (AWS, GCP, Azure)
  • Exceptional communication and interpersonal skills, with a proven ability to build relationships and influence change across engineering, product, and business teams, and the ability to write concise, "Executive Ready" policies and risk reports
  • Hands-on experience with GRC platforms and a drive to automate manual GRC workflows
  • Bachelor’s degree in Cybersecurity, Information Technology, Law, or a related field, or equivalent practical experience
Job Responsibility
Job Responsibility
  • Drive Security Framework Adoption (New Markets): Lead the strategic adoption of net-new security frameworks to unlock business markets
  • Oversee the Security Certification Program: Oversee the end-to-end execution of our security assurance portfolio (ISO 27001, SOC 2)
  • Lead Security Audits: Serve as a primary GRC contact for internal and external audits. You'll coordinate evidence gathering, craft management responses, and drive the remediation of findings
  • Lead Governance Initiatives: Develop, maintain, and enhance the enterprise-wide security GRC framework, policies, standards, and procedures, ensuring they align with our cloud-native and SaaS environment
  • Risk Management & TPRM: Evolve our Third-Party (TPRM) and Internal Security Risk programs, including executing and documenting comprehensive risk assessments, ensuring that findings are remediated and clearly aligned with JFrog’s risk appetite
  • Collaborate Cross-Functionally: Partner with engineering, product, IT, and legal teams to embed security controls into daily business operations, ideally automated
  • Mentor & Advise: Act as a subject matter expert on governance and risk for the wider organization and provide mentorship to junior GRC team members
Read More
Arrow Right

Senior Cyber GRC Specialist

As a Senior Cyber Security Specialist, you will be responsible for driving Gover...
Location
Location
Greece , Athens
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's and/ or Master's degree in Computer Science, Information Security, or a related field
  • Proven experience (typically 5+ years) in cyber security
  • Strong aptitude for staying updated with the latest cybersecurity trends and best practices
  • Effective communication skills to articulate complex technical concepts to both technical and non-technical stakeholders
  • Familiarity with relevant regulations and industry standards (i.e. ISO27001, NIST SP 800-53)
  • Capable of working collaboratively with cross-functional teams to implement and maintain robust cybersecurity measures
  • In-depth knowledge of cyber security principles, standards, and frameworks
Job Responsibility
Job Responsibility
  • Ensure Vodafone Greece complies with Group’s cyber security control framework
  • Support proper execution of the local cyber security processes
  • Support ISO 27001 certification compliance activities
  • Ensure cyber security control KPIs and relevant risk remediation actions are met
  • Support Group and Local Cyber Security Regulatory compliance activities
What we offer
What we offer
  • Award-winning work environment -certified #1 Top Employer in Greece
  • Competitive pay, bonus & remuneration package
  • Private Health & Medical Insurance
  • Hybrid way of working: a blend of remote and office-based working, including the option to work from abroad
  • Unlimited access to learning resources and trainings
  • Vodafone Parental Leave: 16 weeks of fully paid parental leave to all employees regardless of gender, sexual orientation or length of service
  • Spirit of Vodafone Day: one day each quarter dedicated to your personal development
  • Extra days off: Vodafone Day, Family Day, Volunteering Day
  • Office amenities (subject to the office location): such as restaurant, beauty corner, gym and parking
  • Special employee offers and discounts
  • Fulltime
Read More
Arrow Right

Senior Information Security GRC Specialist

The Senior Information Security GRC Specialist is responsible for enhancing the ...
Location
Location
Saudi Arabia
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology or Computer Science
  • Certifications like CISA and CRISC
  • At least 5 years of experience in information security
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Enhancing the organization's information security program through risk assessments, compliance management, and policy development
What we offer
What we offer
  • Access to various wellness initiatives and health benefits tailored to individual needs
  • Competitive leave policies for vacations, illness, recovery or significant life events
  • Competitive salary plus a bonus or commission plan
  • Access to unrestricted courses, learning programs and professional certifications
  • Active mentorship program
  • World-class career platform
  • Fulltime
Read More
Arrow Right

Senior Information Security GRC Specialist

Join a leading company as a Senior Information Security GRC Specialist, where yo...
Location
Location
Saudi Arabia
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge and experience with NCA regulations
  • Strong experience in Essential Cybersecurity Controls (ECC)
  • Advanced understanding of information security frameworks and standards
  • Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management
  • Excellent communication and interpersonal skills for collaborating with various stakeholders
  • Strong project management skills for handling security initiatives
  • Advanced familiarity with legal and compliance aspects related to information security
  • Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field
  • Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred
  • Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred
Job Responsibility
Job Responsibility
  • Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies
  • Develops and maintains security policies, standards, and procedures
  • Collaborates with legal and compliance teams to ensure adherence to regulatory requirements
  • Provides guidance and support to junior GRC team members
  • Assists in the creation and delivery of security awareness and training programs
  • Participates in security incident response activities as needed
  • Contributes to the continuous improvement of the information security program
  • Assists in policy management and refinement
  • Performs any other related task as required
  • Closing gabs on key findings during internal audits and evidence validation
What we offer
What we offer
  • Flexible, hybrid working model
  • Access to various wellness initiatives and health benefits tailored to individual needs
  • Competitive leave policies
  • Competitive salary plus a bonus or commission plan
  • Access to unrestricted courses, learning programs and professional certifications
  • Active mentorship program
  • World-class career platform
  • Fulltime
Read More
Arrow Right

Senior Compliance Specialist

Reporting to the Sr Manager, IT Compliance, the Senior Compliance Specialist wil...
Location
Location
Salary
Salary:
125000.00 - 138000.00 USD / Year
springhealth.com Logo
Spring Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree plus 5+ years of experience in a GRC, IT compliance, security, or risk-focused role
  • Hands-on experience supporting audits and assessments aligned to frameworks such as SOC 2, HITRUST, HIPAA, GDPR, ISO 27001, and SOX ITGCs
  • Foundational experience supporting Business Continuity and Disaster Recovery (BCDR) activities, including documentation maintenance, testing coordination, and alignment to frameworks such as SOC 2, ISO 27001, and HITRUST
  • Working knowledge of control execution, evidence requirements, and audit processes
  • Ability to operate independently within defined scope while seeking guidance on complex or novel issues
  • Strong organizational skills and attention to detail in managing documentation and deadlines
  • Clear written and verbal communication skills, with comfort collaborating across technical and non-technical teams
Job Responsibility
Job Responsibility
  • Support and contribute to established compliance programs including SOC 2 Type II, HITRUST, HIPAA, GDPR, and readiness efforts for ISO 27001, ISO 42001, and ITGC-SOX, under the guidance of senior compliance leadership
  • Execute day-to-day audit and assessment activities such as evidence collection, coordination of internal interviews, documentation review, and remediation tracking
  • Partner closely with engineering, IT, security, and business teams to validate that controls are implemented and operating as designed
  • Assist with third-party risk management and supply chain compliance activities, including vendor due diligence and ongoing monitoring
  • Contribute to customer assurance efforts, including drafting questionnaire responses and participating in customer calls alongside more senior compliance team members
  • Support the execution and maintenance of Business Continuity and Disaster Recovery plans, including documentation updates and testing coordination
  • Operate and maintain the GRC tooling, ensuring evidence is accurate, complete, and audit-ready
  • Perform internal control testing and risk assessments, document gaps, and support remediation tracking and follow-up
  • Draft and maintain policies, procedures, and SOPs in alignment with established standards and frameworks
  • Perform continuous monitoring activities such as access reviews, control testing, and artifact updates
What we offer
What we offer
  • Health, Dental, Vision benefits start on your first day
  • Access to HSA and FSA plans, with Spring contributing up to $1K for HSAs
  • Employer sponsored 401(k) match of up to 2%
  • A yearly allotment of no cost visits to the Spring Health network of therapists, coaches, and medication management providers for you and your dependents
  • Competitive paid time off policies including vacation, sick leave and company holidays
  • At 6 months tenure, parental leave of 18 weeks for birthing parents and 16 weeks for non-birthing parents
  • Access to Noom, a weight management program
  • Access to fertility care support through Carrot, in addition to $4,000 reimbursement for related fertility expenses
  • Access to Wellhub, which connects employees to the best options for fitness, mindfulness, nutrition, and sleep in one subscription
  • Access to BrightHorizons, which provides sponsored child care, back-up care, and elder care
  • Fulltime
Read More
Arrow Right