Senior GRC Engineer

October 16

Apply Now

Receive Emails with Similar Jobs

Workstreet

WebsiteLinkedInAll Job Openings

Cybersecurity • Compliance • B2B

Workstreet is a managed security and compliance services provider that helps businesses automate and modernize their security programs. With expertise in compliance frameworks including SOC 2, ISO 27001, HIPAA, and GDPR, Workstreet supports companies in achieving their security and compliance outcomes efficiently. Their services include acting as a virtual Chief Information Security Officer (vCISO), full-scale penetration testing, and vendor risk management, aiming to streamline security processes while allowing businesses to focus on growth.

11 - 50 employees

Founded 2023

🔒 Cybersecurity

📋 Compliance

🤝 B2B

📋 Description

• Interpret Regulatory Frameworks : Analyze and apply cybersecurity compliance requirements under SOC 2, ISO 27001, HIPAA, and related standards. • Develop Compliance Programs : Create, implement, and maintain cybersecurity policies, procedures, and supporting documentation to meet audit and certification objectives. • Lead Compliance Projects : Oversee multiple client engagements, including audits, evidence collection, control mapping, and due diligence or incident response activities. • Serve as Primary Client Contact : Manage high-complexity or long-term accounts, ensuring consistent delivery and strong client relationships. • Communicate with Clients : Engage directly with U.S.-based clients via phone, email, and text to address compliance concerns and deliver expert guidance. • Collaborate on Risk Management : Work with internal and external teams to identify, assess, and mitigate cybersecurity and compliance risks. • Lead Client Engagements : Conduct client meetings, provide progress updates, and prepare clients for upcoming audits and assessments. • Manage and Mentor Team Members : Provide direction, feedback, and professional development support to junior analysts. • Handle Escalations : Resolve complex client issues and requests with professionalism and solution-oriented communication. • Drive Process Improvement : Enhance standard operating procedures, playbooks, and compliance frameworks to strengthen operational effectiveness.

🎯 Requirements

• 3+ years of leadership experience managing or guiding a small team • Exceptional written and verbal English communication skills • Proven ability to work directly with clients in the US • Experience working in cybersecurity compliance, including SOC 2, ISO 27001, or NIST CSF frameworks • Familiarity with creating and enforcing cybersecurity policies • Experience working in a tech company with a focus on cybersecurity • Nice to Have Experience with HIPAA, PCI DSS, or additional frameworks • Familiarity with Vanta or similar compliance automation platforms • Certifications such as CISA, CISSP, ISO 27001 Lead Implementer, or Security+ • Prior experience handling audit coordination or third-party assessments.

🏖️ Benefits

• Career Development : Clear path with mentorship and training opportunities • Technical Training : Comprehensive onboarding on security and compliance frameworks • Competitive Compensation: A competitive base salary with regular performance reviews linked to merit-based appraisals and bonus opportunities. • Growth Opportunity : Early-stage company with significant room for career advancement. • Remote-First Culture : Flexibility to work from anywhere while collaborating with a global team.