CrawlJobs Logo

Lead Cybersecurity GRC Engineer

realign-llc.com Logo

Realign

Location Icon

Location:
United States , New York

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

225000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Lead Cybersecurity GRC Engineer role focusing on risk remediation and governance aligned with enterprise requirements.

Job Responsibility:

  • Lead and oversee cybersecurity risk remediation and governance initiatives aligned with enterprise risk and compliance requirements
  • Interpret security policies, standards, and regulatory requirements, and apply them effectively to enterprise assets and environments
  • Identify control gaps, non-compliance issues, and deviations, and drive remediation efforts to closure
  • Perform and guide security control testing, including: Test of Design (ToD), Test of Effectiveness (ToE)
  • Provide remediation guidance across key cybersecurity domains, including but not limited to: Secure architecture and security design, Security testing and validation, Secure coding and code compliance, Business Continuity Planning (BCP) and Disaster Recovery (DR), Third-Party Risk Management (TPRM)
  • Partner with technical, risk, and business stakeholders to gather and validate evidence supporting remediation and compliance activities
  • Prepare and maintain high-quality documentation such as: Policies, procedures, and SOPs, Remediation plans and guidance documents, Risk and compliance reports
  • Present findings, recommendations, and remediation strategies to senior stakeholders and decision-makers
  • Influence outcomes through clear, tactful, and data-driven communication
  • Support compliance and audit activities
  • prior audit engagement experience is highly desirable

Requirements:

  • CISSP certification strongly preferred (or equivalent demonstrated experience)
  • Additional certifications such as CISA, CISM are a plus
  • Experience with GRC platforms such as: ServiceNow IRM / GRC, Archer, 6clicks, Other comparable GRC tools
  • Prior exposure to regulated financial services environments (Banking / Insurance)
  • Minimum 8 years of experience in Cybersecurity and GRC, spanning multiple security domains (CISSP domains may be used as a reference framework)
  • Strong hands-on experience in risk remediation, particularly across security design, testing, compliance, BCP/DR, and third-party risk
  • Proven ability to translate policy and regulatory requirements into actionable remediation steps
  • Demonstrated experience in control testing (ToD and ToE)
  • Excellent verbal and written communication skills, with experience engaging senior leaders within banking or insurance organizations
  • Strong analytical and documentation skills with a track record of producing professional, client-ready deliverables
  • Experience advising on remediation strategies and risk treatment options

Additional Information:

Job Posted:
March 21, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Realign - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Lead Cybersecurity GRC Engineer

Senior Security GRC Engineer

The Senior Security GRC Engineer at Atlassian will be instrumental in implementi...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-7+ years experience in a similar role, preferably in a large-scale SaaS/Product environment
  • Expertise and experience working in security-focused roles
  • Experience with application security, especially web applications
  • Experience in cloud security architecture and infrastructure
  • Experience providing SME knowledge and guidance to stakeholders and engineering functions
  • Experience working with internal/external audit and leadership teams
  • Solid knowledge of cybersecurity principles, risk management strategies, and IT governance frameworks
  • Strong communication and interpersonal skills, with the ability to interact with stakeholders at all levels and explain complex security concepts in an understandable way
  • Relevant certifications such as CISSP, CISM, or CRISC would be beneficial
  • Scripting experience to automate recurring tasks (JQL, SQL, Python, Go)
Job Responsibility
Job Responsibility
  • Deliver technical expertise and innovation, providing security guidance to teams and promoting the adoption of industry-leading methodologies to build secure products by default
  • Drive technical solutions in security and risk management
  • Leverage data analytics and visualization, deriving actionable insights from security governance, risk, and compliance data
  • Promote automation and tooling, encouraging the use of the latest security tools to enhance product security processes
  • Proactively identify and mitigate risks, recognizing potential security threats or compliance concerns specific to product security
  • Collaborate with product security teams, implementing security controls and best practices
  • Regularly evaluate and report, assessing the effectiveness of security controls
  • Influence and align stakeholders, working with security engineers and stakeholders to drive alignment on security initiatives
  • Stay informed on regulatory awareness and compliance, keeping up with the latest developments in legislative, regulatory, and industry security requirements
What we offer
What we offer
  • health coverage
  • paid volunteer days
  • wellness resources
  • Fulltime
Read More
Arrow Right

Solutions Consultant

We are looking for a dynamic, customer-facing Solutions consultant to be the pri...
Location
Location
United States , Los Angeles; Seattle; Portland; Denver; Chicago; Austin; Dallas; New Orleans; St. Louis; Baltimore; Boston; Miami; Philadelphia; Pittsburgh; Washington D.C.
Salary
Salary:
100000.00 - 130000.00 USD / Year
https://www.upguard.com Logo
UpGuard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years in a customer-facing technical role such as a Solutions Consultant, Sales Consultant, Technical Account Manager, or Professional Services Consultant
  • Experience in a post-sales or expansion focused role is highly preferred
  • Deep understanding of the cybersecurity and GRC landscape (e.g., GRC platforms like ServiceNow
  • SIEMs like Splunk
  • or other security stack tools)
  • A passion for becoming a deep subject matter expert on a complex software platform
  • Hands-on experience with REST APIs is essential
  • You must be comfortable guiding customers on implementation, reading documentation, and using tools like Postman to troubleshoot
Job Responsibility
Job Responsibility
  • Drive Technical Expansion: Act as the key technical partner for Account Managers and CSMs during renewal and upsell motions. You will lead technical deep-dives, run customized product demonstrations, and build "proof-of-value" solution architectures for our new multi-product offerings
  • Serve as the Go-To Product Expert: Maintain an expert-level understanding of the UpGuard platform, its architecture, API capabilities, and competitive differentiators. You will be the technical authority the CS team relies on to answer complex customer questions
  • Architect Complex Solutions: Design, scope, and validate deep technical solutions for our customers. This includes architecting robust API integrations to connect UpGuard with our customers' key systems (like GRC platforms, SIEMs, and other security tools)
  • Manage Critical Technical Escalations: Act as an escalation point to "bridge the gap" between standard technical support and our CSMs. You will take ownership of high-priority technical issues that require deep, hands-on solutioning within a customer's environment
  • Enable the Team: Create and maintain a library of technical documentation, best-practice guides, integration playbooks, and demonstration scripts to empower the entire Customer Success team
What we offer
What we offer
  • Monthly Lifestyle subsidy: Use this for financial, physical, and mental well-being
  • WFH set-up allowance: To ensure you have the right environment to work in, we will help you get set up within your first 3 months at UpGuard
  • $1500 USD annual Learning & Development allowance: To support your career development, all team members will be able to expense development opportunities against this allowance
  • Annual leave: 6 weeks PTO plus two additional UpGuardian leave days to give you time to recharge your batteries
  • 18 weeks paid Parental Leave: Irrespective of parenting role
  • Personal Leave Allowance: This includes sick & carer’s leave
  • Fully remote working environment: While we have physical offices in Sydney & Hobart, we do not mandate compulsory attendance
  • Top-spec hardware: All team members will be provided with top-spec laptops for their role
  • Generative AI subsidy: UpGuard provides paid subscriptions for all team members to access generative AI tools to support their work
  • Health Insurance: Health, dental, and vision insurance
  • Fulltime
Read More
Arrow Right

GRC Consultant

Sopra Steria offers tailored, end-to-end corporate technology and software solut...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in the domain
  • extensive experience with information security management systems (ISMS), compliance audits and ensuring security-by-design
  • interest in AI security developments
  • familiarity with IT processes based on e.g. ITIL
  • knowledge of standards and legislations such as ISO2700x, NIS2, GDPR, AI and Cyber Fundamentals
  • experience working in the EU or public sector, navigating complex projects
  • fluency in English, French and/or Dutch
  • certifications such as CISSP, CISA, CISM, CRISC or ISO27001 - Lead Implementor or Lead Auditor, AI risk management (ISO42001) is desirable.
Job Responsibility
Job Responsibility
  • design and develop secure solutions to complex application problems - deliver clients projects end-to-end, interfacing across stakeholders
  • implement hardening controls using CIS benchmark across different system components and applications to reduce attack surface
  • lead risk assessments, identification, analysis, treatment, and monitoring across clients
  • perform BCPs, draft Security Plans and roadmaps, ensure third-party risk management
  • cooperate with key stakeholders such as CISO
  • implement/support DevSecOps processes and security engineering review of code and IT configuration
  • support internal and external audits including audit planning, evidence gathering, gap analysis, and remediation tracking
  • support business development and GRC team in driving NIS2 and AI security initiatives and projects
  • support presale process by drafting and leading relevant offers, RFPs, etc.
What we offer
What we offer
  • extensive career development opportunities, both local and international
  • participation in Sopra Steria Academy
  • dynamic network of 56,000 professionals
  • wide array of offices to explore to find ideal location
  • Fulltime
Read More
Arrow Right

Head of Information Security

The Head of Information Security is a senior technical leadership role. The role...
Location
Location
Poland , Kraków
Salary
Salary:
Not provided
content.perkinelmer.com Logo
PerkinElmer
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Engineering, or related field
  • 5+ years of experience in technical cybersecurity roles
  • Proven experience leading enterprise-scale security engineering and operations teams
Job Responsibility
Job Responsibility
  • Own the enterprise security architecture across network, endpoint, cloud, identity, and application domains
  • Define technical security standards, reference architectures, and engineering patterns
  • Lead the selection, deployment, and lifecycle management of security platforms and tooling
  • Embed security-by-design into infrastructure, cloud, and application initiatives
  • Lead Security Operations (SOC / SecOps), including detection, response, and operational resilience
  • Own vulnerability management, threat intelligence, and security telemetry
  • Drive continuous improvement in detection, automation, and response effectiveness
  • Lead the Cybersecurity Incident Response Team (CIRT)
  • Act as technical incident commander during major security incidents
  • Own investigation, containment, eradication, and recovery activities
What we offer
What we offer
  • Private healthcare including dental care
  • Life and long-term disability insurance
  • MyBenefit Cafeteria system
  • Multisport Card
  • Social Fund Subsidies
  • Home Office allowance
  • Tuition reimbursement
  • Referral awards
  • Internal career development opportunities in multiple business areas
  • Day off to celebrate your birthday
Read More
Arrow Right

Chief Information Security Officer

Location
Location
Egypt , New Cairo
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s/Master’s degree in Information Security, Computer Science, Engineering, or related field from a reputable university
  • 12-15+ years of progressive experience in information security, cybersecurity, or technology risk roles, preferably in banking or financial services
  • Strong knowledge of Central Bank of Egypt cybersecurity frameworks, digital banking guidelines, and financial-sector regulations
  • Deep understanding of security technology, network security, IAM, application security, and SOC operations
  • Experience overseeing incident response, security architecture, and enterprise-wide risk management
  • Professional certifications preferred (CISSP, CISM, CRISC, CCSP or equivalent)
  • Strong knowledge of international standards like ISO 27001/27002 and global best practices for financial data protection
  • Strong leadership, communication, and stakeholder management skills with the ability to influence senior executives and steer enterprise-level decisions
Job Responsibility
Job Responsibility
  • Define and execute the bank’s enterprise information security strategy in alignment with the business and regulatory requirements
  • Establish security governance frameworks, policies, and standards across all technology and business functions
  • Oversee cybersecurity programs including threat detection, incident response, vulnerability management, and security operations
  • Lead enterprise-wide technology risk management, ensuring effective identification, assessment, and mitigation of risks
  • Ensure full compliance with Central Bank of Egypt cybersecurity mandates, digital banking requirements, and data protection regulations
  • Develop and manage the Cloud Security Architecture (e.g., AWS, Azure) strategy, ensuring secure configuration and compliance for all digital infrastructure
  • Establish Security Metrics and Key Risk Indicators (KRIs) for regular reporting to the Board and Executive Committee, demonstrating the effectiveness of the security program
  • Implement and govern API Security standards and best practices to protect data exchange within the digital ecosystem and external partners
  • Formally manage and sign off on outsourcing security agreements (third-party risk) to meet specific CBE requirements for external service providers
  • Coordinate internal and external audits, penetration tests, and security assessments
Read More
Arrow Right

GRC Lead

We are looking for a GRC Lead to serve as the Technical Lead for our compliance ...
Location
Location
United States , Foster City
Salary
Salary:
208000.00 - 300000.00 USD / Year
replit.com Logo
Replit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in GRC or Information Security
  • Leadership Experience: Proven experience mentoring other GRC professionals or leading complex cross-functional projects
  • Technical Fluency: Ability to speak the language of engineering, cloud (GCP/AWS), and security architecture
  • Regulatory Breadth: Deep experience with SOC 2, ISO 27001, PCI, HIPPA, and Privacy laws
  • Collaborative Communication: Strong ability to explain risk and tradeoffs to technical (Engineers), legal, and commercial (Sales/Execs) stakeholders
  • Automation Mindset: Experience with GRC automation tools (e.g., Vanta, Drata) and a bias toward reducing manual toil
Job Responsibility
Job Responsibility
  • Team Leadership: Act as the technical anchor for the GRC team
  • Program Architecture: Own the technical vision for Replit’s GRC program
  • Thought Leadership: Champion a culture of security and privacy across the company
  • Engineering & Architecture: Partner with Architects and Engineering Leads to 'bake in' compliance requirements
  • Legal & Privacy: Work closely with Legal Counsel to interpret and implement requirements for Privacy and AI regulations
  • Sales & GTM: Enable the Sales team by managing the Customer Trust Center and handling complex security questionnaires
  • Auditor Relationships: Own and cultivate the primary relationship with external auditors
  • Risk Register Owner: Own the Cybersecurity Risk Register
  • Framework Evolution: Manage and evolve our compliance posture across SOC 2, ISO 27001, and prepare for future certifications
  • Pragmatic Governance: Apply judgment to operate in 'gray areas' when appropriate
What we offer
What we offer
  • Competitive Salary & Equity
  • 401(k) Program with a 4% match
  • Health, Dental, Vision and Life Insurance
  • Short Term and Long Term Disability
  • Paid Parental, Medical, Caregiver Leave
  • Commuter Benefits
  • Monthly Wellness Stipend
  • Autonomous Work Environment
  • In Office Set-Up Reimbursement
  • Flexible Time Off (FTO) + Holidays
  • Fulltime
Read More
Arrow Right

Solutions Consultant

We are looking for a dynamic, customer-facing Solutions consultant to be the pri...
Location
Location
Australia , Sydney; Melbourne; Hobart
Salary
Salary:
Not provided
https://www.upguard.com Logo
UpGuard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years in a customer-facing technical role such as a Solutions Consultant, Sales Consultant, Technical Account Manager, or Professional Services Consultant
  • Experience in a post-sales or expansion focused role is highly preferred
  • Deep understanding of the cybersecurity and GRC landscape (e.g., GRC platforms like ServiceNow
  • SIEMs like Splunk
  • or other security stack tools)
  • A passion for becoming a deep subject matter expert on a complex software platform
  • Hands-on experience with REST APIs is essential
  • You must be comfortable guiding customers on implementation, reading documentation, and using tools like Postman to troubleshoot
Job Responsibility
Job Responsibility
  • Drive Technical Expansion: Act as the key technical partner for Account Managers and CSMs during renewal and upsell motions. You will lead technical deep-dives, run customized product demonstrations, and build "proof-of-value" solution architectures for our new multi-product offerings
  • Serve as the Go-To Product Expert: Maintain an expert-level understanding of the UpGuard platform, its architecture, API capabilities, and competitive differentiators. You will be the technical authority the CS team relies on to answer complex customer questions
  • Architect Complex Solutions: Design, scope, and validate deep technical solutions for our customers. This includes architecting robust API integrations to connect UpGuard with our customers' key systems (like GRC platforms, SIEMs, and other security tools)
  • Manage Critical Technical Escalations: Act as an escalation point to "bridge the gap" between standard technical support and our CSMs. You will take ownership of high-priority technical issues that require deep, hands-on solutioning within a customer's environment
  • Enable the Team: Create and maintain a library of technical documentation, best-practice guides, integration playbooks, and demonstration scripts to empower the entire Customer Success team
What we offer
What we offer
  • Monthly Lifestyle subsidy: Use this for financial, physical, and mental well-being
  • WFH set-up allowance: To ensure you have the right environment to work in, we will help you get set up within your first 3 months at UpGuard
  • $1500 USD annual Learning & Development allowance: To support your career development, all team members will be able to expense development opportunities against this allowance
  • Annual leave: Generous leave days to give you time to recharge your batteries
  • 18 weeks paid Parental Leave: Irrespective of parenting role
  • Personal Leave Allowance: This includes sick & carer’s leave
  • Fully remote working environment: While we have physical offices in Sydney & Hobart, we do not mandate compulsory attendance
  • Top-spec hardware: All team members will be provided with top-spec laptops for their role
  • Generative AI subsidy: UpGuard provides paid subscriptions for all team members to access generative AI tools to support their work
  • Fulltime
Read More
Arrow Right
New

Lead Cyber Risk Consultant

Whitehall Resources are currently looking for a Cyber Risk Consultant based in C...
Location
Location
United Kingdom , Cheshire
Salary
Salary:
Not provided
whitehallresources.com Logo
Whitehall Resources Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Approximately 8-10+ years of experience in cybersecurity
  • Significant experience in cyber risk management or security consulting roles
  • Prior experience leading risk assessment projects or large-scale security consulting engagements
  • Deep knowledge of cyber risk management practices, including risk assessment methodologies and frameworks (e.g. NIST CSF, ISO 27005, FAIR)
  • Ability to identify, classify, and prioritize cybersecurity risks in a large enterprise environment
  • Strong understanding of IT infrastructure and applications, especially the challenges posed by End-of-Life technologies
  • Advanced analytical skills (“cyber analytics”), including proficiency with risk analysis tools or GRC platforms
  • Proven ability to lead a team or project in a cybersecurity context
  • Excellent organizational skills to manage multiple parallel workstreams
  • Exceptional communication skills, both written and verbal
Job Responsibility
Job Responsibility
  • Lead Risk Assessments: Plan and conduct a full stock assessment of EOL technologies within the bank
  • Risk Rating & Analysis: Oversee the analysis of identified vulnerabilities and weaknesses and produce risk ratings and reports
  • Residual Risk Reduction: Identify and recommend risk mitigation opportunities to reduce residual risk in legacy platforms and applications
  • Remediation Planning: Collaborate closely with technology owners and engineering teams to develop remediation plans and prioritize fixes or upgrades for EOL systems
  • Project Leadership & Coordination: Coordinate the efforts of the Cyber Risk Analysts, assigning tasks and monitoring progress
  • Stakeholder Engagement: Serve as the primary point of contact for stakeholders
  • Communicate risk findings and status updates
  • Transition to BAU: Ensure that remediation activities and improved risk practices are handed over smoothly to the permanent operational teams
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy