Senior GRC Consultant – Standard Frameworks

🔥 0 minutes ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Sprinto

Sprinto

51 - 200 employees

Founded 2020

Automating Information Security Compliances & Privacy Laws for fast growing SaaS companies. Use Sprinto to obtain information security compliance, close enterprise deals faster, and pass vendor security assessments easily.

📋 Description

• Own delivery for standard-framework engagements: ISO 27001 (implementation & surveillance), SOC 2 Type I/II readiness, GDPR, PCI DSS compliance programs, gap assessments, control/check mapping, internal audits, policy reviews, audit readiness support. • Run multiple concurrent client engagements to a consistent quality bar without close supervision. • Maintain and evolve templates, control-mapping libraries, workshop agendas, and QA rubrics for standard frameworks; keep them current as frameworks revise (ISO 27001:2022 transition-type updates, SOC 2 trust criteria changes, GDPR enforcement guidance). • Extend the library opportunistically to adjacent frameworks (HIPAA, PCI DSS, ISO 42001) as demand grows. • Define pricing/packaging for standard-framework engagements (fixed-fee tiers, retainer options). • Own utilization, margin, and delivery forecasting for your own engagement book. • Partner with Sales/SE/CS to attach and renew standard-framework services; support deal conversion where technical validation is needed. • Build and maintain AI-assisted playbooks for standard frameworks (gap assessment, control mapping, internal audit checklists). • Define structured input forms/checklists so juniors or AI-assisted workflows produce consistent first-draft output. • Set QA guardrails: mandatory source inputs, validation steps, human approval gates. • Establish acceptance criteria and review checkpoints for deliverables. • Flag scope creep early; escalate ambiguous liability questions rather than absorbing them silently.

🎯 Requirements

• 5+ years in GRC/security consulting or in-house compliance program ownership. • Hands-on delivery track record across ISO 27001, SOC 2, and GDPR at minimum. • Comfortable running several concurrent client engagements. • Deep: ISO 27001, SOC 2 Type I/II, GDPR. • Working knowledge (nice to have): PCI DSS, HIPAA, ISO 42001 etc. • Demonstrated use of AI tools to reduce manual effort and standardize deliverables. • Able to translate domain expertise into reusable templates and guided systems. • Can own pricing/packaging, margin, and utilization for their own book without a manager doing it for them. • Strong written communication; confident running client workshops solo. • Good judgment in ambiguity, without scope creep. • Preferred: ISO 27001 LA/LI, CISA, or CISM.

🏖️ Benefits

• Work wherever you are: We are 100% remote, so you get to choose if you want to work from home, a cafe, the hills, or the beach. • Co-working, on the house: If co-working is your jam, we offer a generous annual allowance. • We care about your learning: We are invested in seeing you grow and commit USD 1,000 annually to help you level up your skills. • We count your spark, not your leaves: Unlimited leave so you can reset when you need to. • Your Safety Net, Woven In: Health insurance with coverage up to INR 10 lakh for you and your family, accident protection of an additional INR 10 lakh, and life insurance worth 3x your annual salary. • Workspace setup of your dreams: We chip in INR 35,000 to help you build a setup that works for you

Apply Now

Similar Jobs

🔥 3 hours ago

Mashreq

1001 - 5000

🏦 Banking

💸 Finance

💳 Fintech

Lead regulatory reporting for Mashreq UAE, ensuring compliance with CBUAE. Manage submissions of reports and prudential metrics in a dynamic regulatory environment.

🕒 5 days ago

Parexel

10,000+ employees

⚕️ Healthcare Insurance

🧬 Biotechnology

💊 Pharmaceuticals

Clinical Trial Submission Lead managing the end-to-end process of Clinical Trial Applications across EU and ROW. Ensuring quality submissions through effective risk management and collaboration with global teams.

🕒 July 1

E.L.F. BEAUTY

201 - 500

💄 Beauty

🛒 Retail

🛍️ eCommerce

IT Compliance Analyst supporting e.l.f. Beauty's IT compliance framework. Conducting IT controls testing and risk assessments in a dynamic, fast-paced environment.

🇮🇳 India – Remote

💰 $225.2M Post-IPO Secondary on 2017-03

⏰ Full Time

🟡 Mid-level

🟠 Senior

🚔 Compliance

🕒 June 30

Parexel

10,000+ employees

⚕️ Healthcare Insurance

🧬 Biotechnology

💊 Pharmaceuticals

Regulatory Affairs Consultant supporting global regulatory lifecycle management and submissions. Improving healthcare through effective regulation across international markets and health authorities.

🕒 June 30

Parexel

10,000+ employees

⚕️ Healthcare Insurance

🧬 Biotechnology

💊 Pharmaceuticals

Senior Associate supporting global regulatory lifecycle management activities across EU, US, and international markets. Preparing and delivering regulatory submission packages while managing post-approval changes.