GRC Engineer - Risk Management

A company is looking for a GRC Engineer - Risk and Assurance. Key Responsibilities Drive and support the third-party risk management (TPRM) process Collaborate on vendor assessments and contract reviews tied to business deals Assist with vulnerability and patch management operations and process implementation Required Qualifications 3-7 years of experience in security governance, cloud and application security assessments, risk management, and/or third-party risk Strong knowledge of industry standard frameworks such as NIST, FFIEC, SOC 2, PCI DSS, HiTrust, etc Thorough knowledge of enterprise-scale security architecture, cloud security, and application security best practices Domain knowledge of IT systems, networking, security, and compliance Familiarity with containerization technologies (e.g., Docker, Kubernetes) and CI/CD pipelines

Apr 9, 2025 - 23:37

A company is looking for a GRC Engineer - Risk and Assurance. Key Responsibilities Drive and support the third-party risk management (TPRM) process Collaborate on vendor assessments and contract reviews tied to business deals Assist with vulnerability and patch management operations and process implementation Required Qualifications 3-7 years of experience in security governance, cloud and application security assessments, risk management, and/or third-party risk Strong knowledge of industry standard frameworks such as NIST, FFIEC, SOC 2, PCI DSS, HiTrust, etc Thorough knowledge of enterprise-scale security architecture, cloud security, and application security best practices Domain knowledge of IT systems, networking, security, and compliance Familiarity with containerization technologies (e.g., Docker, Kubernetes) and CI/CD pipelines