• Permanent
  • remote
  • Anywhere

Governance, Risk, & Compliance Specialist

General Level of Responsibility: This role holds a mid to senior-level responsibility within the organization. The incumbent will be expected to independently manage and lead GRC initiatives, collaborate with business and technical teams, mentor junior members of the GRC team, and interact with stakeholders across various business units. The position requires a proactive approach to identifying and mitigating security risks and driving compliance efforts.

Principal Responsibilities:

  • Develop and support information security governance policies, standards, and processes in collaboration with business and technical teams.
  • Fine-tune and drive adoption of an information security risk assessment framework, maintain risk registers, and perform annual risk assessments.
  • Ensure organizational compliance with relevant regulatory standards such as FTC Safeguards, PCI DSS, ISO 27001, and NIST CSF.


  • Education: Bachelor’s degree in any field.
  • Experience: 4+ years of experience in Information Security.
  • Certification(s): CRISC, CISSP, CISM, Security+.
  • Knowledge, Skills, Abilities, and Other Attributes: Experience in technical Information Security roles, fluency in Spanish or French, strong understanding of cybersecurity principles, governance, risk management, and compliance practices.



  • Accepted file types: doc, docx, pdf, rtf, ppt, odt, Max. file size: 100 MB.
  • Max. file size: 100 MB.
  • Privacy Policy