We are looking for a passionate and experienced GRC specialist to ensure that our products meet all the requirements for secured software production.
The GRC specialist will play a critical role in establishing and maintaining the Cybersecurity Product lifecycle standards and collaborate across business units with stakeholders to improve products and processes continuously.
Responsibilities:
Work closely with our teams to implement security measures into the product lifecycle, conduct spot-checks, and align product security compliance and Automotive Cybersecurity, Safety, and Privacy requirements.
Implement and maintain practical policies, procedures, and frameworks that support risk management objectives in compliance with industry standards and regulations.
Assess and document product compliance gaps risk assessments and monitor remediation progress.
Be responsible for conducting external and internal audits and assessments and publishing the audits/ assessments reports.
Run GRC tasks cross-company.
The GRC specialist will play a critical role in establishing and maintaining the Cybersecurity Product lifecycle standards and collaborate across business units with stakeholders to improve products and processes continuously.
Responsibilities:
Work closely with our teams to implement security measures into the product lifecycle, conduct spot-checks, and align product security compliance and Automotive Cybersecurity, Safety, and Privacy requirements.
Implement and maintain practical policies, procedures, and frameworks that support risk management objectives in compliance with industry standards and regulations.
Assess and document product compliance gaps risk assessments and monitor remediation progress.
Be responsible for conducting external and internal audits and assessments and publishing the audits/ assessments reports.
Run GRC tasks cross-company.
Requirements:
2-5 years of Cybersecurity, Governance, Risk, and Compliance experience – A Must
Bachelor’s or Master’s degree in Information Technology, Computer Science, or other related field – A Must
Working experience with Atlassian tools: Jira, Confluence, Bitbucket – A Must
Excellent English written and verbal communication skills – A Must
Must be organized, goal-oriented, self-starter, and keen on documentation – A Must
Ability to establish excellent working relationships with other departments – A Must
Experience with implementing industry/cybersecurity standards and frameworks, such as information security standards ISO-27001, NIST and/or Privacy regulation GDPR and/or Automotive SPICE standard – An Advantage
Certifications such as CISSP, CISO, CISM, or equivalent – An advantage
Experience in developing and maintaining comprehensive incident response – An Advantage.
2-5 years of Cybersecurity, Governance, Risk, and Compliance experience – A Must
Bachelor’s or Master’s degree in Information Technology, Computer Science, or other related field – A Must
Working experience with Atlassian tools: Jira, Confluence, Bitbucket – A Must
Excellent English written and verbal communication skills – A Must
Must be organized, goal-oriented, self-starter, and keen on documentation – A Must
Ability to establish excellent working relationships with other departments – A Must
Experience with implementing industry/cybersecurity standards and frameworks, such as information security standards ISO-27001, NIST and/or Privacy regulation GDPR and/or Automotive SPICE standard – An Advantage
Certifications such as CISSP, CISO, CISM, or equivalent – An advantage
Experience in developing and maintaining comprehensive incident response – An Advantage.
This position is open to all candidates.
