CrawlJobs Logo

Information Security GRC Specialist

awin.com Logo

Awin Global

Location Icon

Location:
Germany; Spain; Poland; United Kingdom; Italy; Romania; Sweden; France , Berlin

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

As Information Security GRC Specialist (f/m/d) you will own and drive Awin's global Information Security Risk Management capability end-to-end, ensuring the business not only understands its risks but takes measurable action to reduce them. You will be accountable for embedding a strong culture of risk ownership across the organisation, proactively identifying gaps, and driving remediation through to completion. This role requires structured risk identification, assessment, and reporting whilst acting as a advisor to senior leadership and the board. It ensures that risk appetite is clearly defined, actively used in decision-making, and consistently monitored.

Job Responsibility:

  • Lead enterprise-wide risk identification and assessment across strategic initiatives, technology, and third parties
  • Drive risk remediation to closure, holding risk owners accountable for delivery
  • Own and maintain the Information Security Risk Register
  • Define, embed, and maintain the organisation's risk appetite
  • Provide clear, opinionated, and actionable risk insights to senior management and the board
  • Confidently challenge and influence stakeholders to ensure risks are neither understated nor inappropriately accepted
  • Own and continuously improve Awin's global information security risk management framework
  • Embed risk management into business processes
  • Mentor and develop GRC team members
  • Lead horizon scanning across emerging threats, regulatory changes, and industry developments

Requirements:

  • Proven track record of owning and delivering risk management initiatives end-to-end
  • Experience driving risk remediation across teams without direct authority
  • Strong experience presenting and defending risk positions to senior leadership and boards
  • Hands-on experience within an ISO 27001-certified ISMS environment
  • Strong knowledge of frameworks such as ISO 27001
  • Experience designing, implementing, or improving control frameworks
  • Experience with GRC platforms (e.g. Hyperproof)
  • Confident communicator (with very good English skills) - able to build relationships and challenge/influence senior stakeholders
What we offer:
  • Flexi-Week and Work-Life Balance: four-day Flexi-Week at full pay and with no reduction to annual holiday allowance
  • Remote Working Allowance
  • Flexi-Office and hybrid/remote work possibilities
  • Development: training suite Awin Academy
  • Appreciation: peer-to-peer voucher program

Additional Information:

Job Posted:
April 24, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Awin Global - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Security GRC Specialist

Senior Specialist, Customer Assurance

We’re looking for a Senior Specialist, Customer Assurance to help us manage and ...
Location
Location
Canada , Vancouver
Salary
Salary:
78400.00 - 109800.00 CAD / Year
hootsuite.com Logo
Hootsuite
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated years of experience in a security, privacy, customer assurance, or compliance related role (e.g., Security Specialist, Security Support Specialist, Privacy Specialist, GRC Specialist, Information Security or Compliance Auditor) and/or relevant experience in SaaS or technology industry
  • Bachelor’s degree or equivalent industry experience
  • Previous experience leading a high volume support request queue
  • Working knowledge of content management or content automation systems
  • Solid understanding of information security, privacy, risk, and compliance
  • Ability to work within tight deadlines and under pressure
  • Commitment to Results: consistently achieves results, demonstrating high performance, and challenging self and others to deliver result
  • Priority Setting: focuses time/energy on the most important issues/opportunities. Clearly understand how to assess the importance of tasks and decisions
  • Collaboration and Teamwork: works with others to deliver results, meaningfully contributing to the team and prioritizing group needs over individual needs
  • Accountability: holds self and others accountable to meet commitments
Job Responsibility
Job Responsibility
  • Communicate directly with internal stakeholders and external customers to understand and address their security, privacy, AI, and compliance concerns, acting as the primary point of contact on these matters for Hootsuite’s GNB and C&E Teams
  • Collaborate on the security, privacy and AI support process and build strong relationships with teams across the organization (e.g., Sales, Security, Privacy, Product and Technology, Legal), sharing best practices and learnings on what customers need to ensure they’re protected
  • Coordinate, qualify and prioritize a high volume queue of customer assurance review requests
  • Accountable for the accurate completion of customer assurance reviews (e.g., questionnaires) and similar customer requests (e.g., contracts) within tight deadlines
  • Provide expertise and support with RFPs (and similar documents) for Hootsuite’s GNB and C&E Teams
  • Maintain and further develop the capabilities of an AI-driven response automation tool and customer facing Trust Center to aid in driving process and response efficiency
  • Facilitate regular enablement sessions and knowledge sharing to update GNB and C&E teams on new security, privacy and AI support, processes and collateral
  • Manage Salesforce and other reports (e.g., Trust Center reports) that track Customer Assurance program metrics
  • share key data insights with stakeholders on successes, failure points and key learnings from customer review requests
  • Oversee the maintenance of security, privacy and AI collateral and certifications including Trust Center, CAIQ, SIG , etc
What we offer
What we offer
  • Canadian Benefits. Hootsuite offers comprehensive benefits to support the health and wellbeing of our owls and their families. The benefits cover health insurance including medical, dental, vision, life/disability insurances, an Employee and Family Assistance Program and more! Hootsuite provides a group RRSP plan with a company match of up to 4% of base salary. Benefits are available to permanent employees who meet minimum hours requirements without a waiting period
  • US Benefits. Hootsuite offers comprehensive benefits to support the health and wellbeing of our owls and their families. The benefits cover health insurance including medical, dental, vision, and life/disability insurances. Hootsuite also offers a 401k Plan with a company match (up to 4% of base salary), an Employee and Family Assistance Program and more! Benefits are available to employees who meet minimum hours requirements without a waiting period
  • Global Parental Leave. All permanent employees, including birthing, non-birthing and adoptive parents, who have been employed by Hootsuite for a minimum of 12 months are eligible for 26 weeks of full and partially paid leave in accordance with local government regulations
  • Fulltime
Read More
Arrow Right

Senior Specialist, Customer Assurance

We’re looking for a Senior Specialist, Customer Assurance to help us manage and ...
Location
Location
Canada , Vancouver
Salary
Salary:
78400.00 - 109800.00 CAD / Year
hootsuite.com Logo
Hootsuite
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated years of experience in a security, privacy, customer assurance, or compliance related role (e.g., Security Specialist, Security Support Specialist, Privacy Specialist, GRC Specialist, Information Security or Compliance Auditor) and/or relevant experience in SaaS or technology industry
  • Bachelor’s degree or equivalent industry experience
  • Previous experience leading a high volume support request queue
  • Working knowledge of content management or content automation systems
  • Solid understanding of information security, privacy, risk, and compliance
  • Ability to work within tight deadlines and under pressure
  • Commitment to Results: consistently achieves results, demonstrating high performance, and challenging self and others to deliver result
  • Priority Setting: focuses time/energy on the most important issues/opportunities. Clearly understand how to assess the importance of tasks and decisions
  • Collaboration and Teamwork: works with others to deliver results, meaningfully contributing to the team and prioritizing group needs over individual needs
  • Accountability: holds self and others accountable to meet commitments
Job Responsibility
Job Responsibility
  • Communicate directly with internal stakeholders and external customers to understand and address their security, privacy, AI, and compliance concerns, acting as the primary point of contact on these matters for Hootsuite’s GNB and C&E Teams
  • Collaborate on the security, privacy and AI support process and build strong relationships with teams across the organization (e.g., Sales, Security, Privacy, Product and Technology, Legal), sharing best practices and learnings on what customers need to ensure they’re protected
  • Coordinate, qualify and prioritize a high volume queue of customer assurance review requests
  • Accountable for the accurate completion of customer assurance reviews (e.g., questionnaires) and similar customer requests (e.g., contracts) within tight deadlines
  • Provide expertise and support with RFPs (and similar documents) for Hootsuite’s GNB and C&E Teams
  • Maintain and further develop the capabilities of an AI-driven response automation tool and customer facing Trust Center to aid in driving process and response efficiency
  • Facilitate regular enablement sessions and knowledge sharing to update GNB and C&E teams on new security, privacy and AI support, processes and collateral
  • Manage Salesforce and other reports (e.g., Trust Center reports) that track Customer Assurance program metrics
  • share key data insights with stakeholders on successes, failure points and key learnings from customer review requests
  • Oversee the maintenance of security, privacy and AI collateral and certifications including Trust Center, CAIQ, SIG , etc
What we offer
What we offer
  • Canadian Benefits: health insurance including medical, dental, vision, life/disability insurances
  • Employee and Family Assistance Program
  • group RRSP plan with a company match of up to 4% of base salary
  • US Benefits: health insurance including medical, dental, vision, and life/disability insurances
  • 401k Plan with a company match (up to 4% of base salary)
  • Employee and Family Assistance Program
  • Global Parental Leave: 26 weeks of full and partially paid leave for eligible employees
  • Fulltime
Read More
Arrow Right

Information Security Engineer

An Eastern Kentucky University Information Security Engineer is responsible for ...
Location
Location
United States , Richmond
Salary
Salary:
Not provided
eku.edu Logo
Eastern Kentucky University
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree is required
  • One year of work experience
  • Preferred certifications such as Security+, Certified Information System Security Specialist (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or Certified in Governance, Risk and Compliance (CGRC)
Job Responsibility
Job Responsibility
  • Security Engineering and Operations
  • Governance, Risk, and Compliance
  • Security Strategy, Policy, and Collaboration
  • Contributes to the effective operations of the department and the University by completing all other duties and special projects as assigned
  • Fulltime
Read More
Arrow Right

Senior Information Security GRC Specialist

Join a leading company as a Senior Information Security GRC Specialist, where yo...
Location
Location
Saudi Arabia
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge and experience with NCA regulations
  • Strong experience in Essential Cybersecurity Controls (ECC)
  • Advanced understanding of information security frameworks and standards
  • Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management
  • Excellent communication and interpersonal skills for collaborating with various stakeholders
  • Strong project management skills for handling security initiatives
  • Advanced familiarity with legal and compliance aspects related to information security
  • Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field
  • Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred
  • Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred
Job Responsibility
Job Responsibility
  • Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies
  • Develops and maintains security policies, standards, and procedures
  • Collaborates with legal and compliance teams to ensure adherence to regulatory requirements
  • Provides guidance and support to junior GRC team members
  • Assists in the creation and delivery of security awareness and training programs
  • Participates in security incident response activities as needed
  • Contributes to the continuous improvement of the information security program
  • Assists in policy management and refinement
  • Performs any other related task as required
  • Closing gabs on key findings during internal audits and evidence validation
What we offer
What we offer
  • Flexible, hybrid working model
  • Access to various wellness initiatives and health benefits tailored to individual needs
  • Competitive leave policies
  • Competitive salary plus a bonus or commission plan
  • Access to unrestricted courses, learning programs and professional certifications
  • Active mentorship program
  • World-class career platform
  • Fulltime
Read More
Arrow Right

Senior GRC specialist

At JFrog, we’re reinventing DevOps to help the world’s greatest companies innova...
Location
Location
Israel , Netanya/Tel Aviv
Salary
Salary:
Not provided
jfrog.com Logo
JFrog
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of direct experience in Information Security GRC, Risk Management, or Audit, preferably acquired within a high-growth SaaS or cloud-native environment
  • A proactive, self-starting mentality with strong analytical, project management, and problem-solving skills, with proven ability to validate your own work and drive tasks to completion independently
  • Demonstrable expertise in managing core compliance programs (SOC 2, ISO 27001)
  • Experience pursuing net-new compliance certifications and initiatives (e.g., R, C5, TISAX, IRAP)
  • Experience developing, drafting, and implementing security policies and standards from the ground up in a tech-focused environment, harmonizing controls across frameworks to create agile standards
  • Experience leading complex security audits, serving as a primary liaison and "in-the-room" lead during internal and external audits
  • Strong understanding of information security principles, risk management, and control frameworks in a cloud-first environment (AWS, GCP, Azure)
  • Exceptional communication and interpersonal skills, with a proven ability to build relationships and influence change across engineering, product, and business teams, and the ability to write concise, "Executive Ready" policies and risk reports
  • Hands-on experience with GRC platforms and a drive to automate manual GRC workflows
  • Bachelor’s degree in Cybersecurity, Information Technology, Law, or a related field, or equivalent practical experience
Job Responsibility
Job Responsibility
  • Drive Security Framework Adoption (New Markets): Lead the strategic adoption of net-new security frameworks to unlock business markets
  • Oversee the Security Certification Program: Oversee the end-to-end execution of our security assurance portfolio (ISO 27001, SOC 2)
  • Lead Security Audits: Serve as a primary GRC contact for internal and external audits. You'll coordinate evidence gathering, craft management responses, and drive the remediation of findings
  • Lead Governance Initiatives: Develop, maintain, and enhance the enterprise-wide security GRC framework, policies, standards, and procedures, ensuring they align with our cloud-native and SaaS environment
  • Risk Management & TPRM: Evolve our Third-Party (TPRM) and Internal Security Risk programs, including executing and documenting comprehensive risk assessments, ensuring that findings are remediated and clearly aligned with JFrog’s risk appetite
  • Collaborate Cross-Functionally: Partner with engineering, product, IT, and legal teams to embed security controls into daily business operations, ideally automated
  • Mentor & Advise: Act as a subject matter expert on governance and risk for the wider organization and provide mentorship to junior GRC team members
Read More
Arrow Right

Senior Information Security GRC Specialist

The Senior Information Security GRC Specialist is responsible for enhancing the ...
Location
Location
Saudi Arabia
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology or Computer Science
  • Certifications like CISA and CRISC
  • At least 5 years of experience in information security
  • Strong communication skills
Job Responsibility
Job Responsibility
  • Enhancing the organization's information security program through risk assessments, compliance management, and policy development
What we offer
What we offer
  • Access to various wellness initiatives and health benefits tailored to individual needs
  • Competitive leave policies for vacations, illness, recovery or significant life events
  • Competitive salary plus a bonus or commission plan
  • Access to unrestricted courses, learning programs and professional certifications
  • Active mentorship program
  • World-class career platform
  • Fulltime
Read More
Arrow Right

Senior Information Security Governance, Risk and Compliance Specialist

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist...
Location
Location
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field
  • Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred
  • Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred
  • Advanced experience in information security, including GRC-related roles
  • Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management
  • Advanced understanding of information security frameworks and standards
  • Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management
  • Excellent communication and interpersonal skills for collaborating with various stakeholders
  • Strong project management skills for handling security initiatives
  • Advanced familiarity with legal and compliance aspects related to information security
Job Responsibility
Job Responsibility
  • Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies
  • Develops and maintains security policies, standards, and procedures
  • Collaborates with legal and compliance teams to ensure adherence to regulatory requirements
  • Provides guidance and support to junior GRC team members
  • Assists in the creation and delivery of security awareness and training programs
  • Participates in security incident response activities as needed
  • Contributes to the continuous improvement of the information security program
  • Assists in policy management and refinement
  • Performs any other related task as required
  • Fulltime
Read More
Arrow Right

Specialist – Governance, Risk & Control

To manage and lead the Technology Security Governance, Risk, Compliance and Assu...
Location
Location
Lesotho
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree or equivalent in IT/Engineering or relevant tertiary qualification
  • Knowledge of legal, regulatory and privacy requirements, such as Personally Identifiable Information (PII), GDPR, etc.
  • Proven experience managing and operating multiple security programs, projects, and initiatives
  • Ability to write reports for different security stakeholders
  • Proficient in preparation of reports, dashboards and documentation
  • Knowledge of and experience with GDPR
  • Web Application security and best practises
  • Business Analysis skills
  • High competence in Programming skills
  • Risk assessment skills
Job Responsibility
Job Responsibility
  • Direct, develop, implement and maintain a comprehensive Vodacom-wide information security governance, risk and compliance strategy
  • Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom
  • Ensure timely delivery of technology security assurance and support for projects
  • Provide accurate and timely reporting of technology security risks identified during project engagement and propose remediation and mitigation options
  • Monitor information security governance, risk, and compliance by Vodacom BIT, Mobile and Enterprise Business domains
  • Ensure alignment of information security governance with the Vodacom’s business objectives, the information security strategy, plans and controls
  • Ensure compliance with the applicable legislative and regulatory interpretation and corporate risk appetite
  • With the assistance of Head: Technology Governance, Lead, develop, manage and maintain the Vodacom-wide information security governance deliverables lifecycle including compliance measurement, deviations and exemptions
  • Engage with the stakeholders on compliance to control effectiveness and deficiencies in the design and operating effectiveness of information security controls, design and recommend opportunities for continuous improvement
  • Develop, manage and implement the Vodacom information security audit and assurance plans and schedules, including any specific business needs and requirements (including PCI, ISO27001, GDPR, Data Protection Act of Lesotho, Cyber Crime Bill)
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries Tools About Us FAQ Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy