As a Security, Risk, and Audit Advisor, you will contribute to the implementation and improvement of GIRO's security program and advise internal teams on information security best practices
Job Summary
As a Security, Risk, and Audit Advisor, you will contribute to the implementation and improvement of GIRO's security program and advise internal teams on information security best practices.
Your role involves applying and improving the Governance, Risk, and Compliance (GRC) program, including identifying and maintaining security controls, evolving security documentation, and planning/participating in security audits.
The company offers a flexible schedule with remote work options, team activities, transportation assistance, group insurance, a retirement plan, employee assistance programs, and professional development opportunities.
Matching Summary
As a Security, Risk, and Audit Advisor, you will contribute to the implementation and improvement of GIRO's security program and advise internal teams on information security best practices.
Skills & Requirements
Must-have
Information security program enhancement
Security best practices advisory
Risk and threat assessments
SDLC security controls implementation
Internal and external security audits
Nice-to-have
Collaborative work environment
International software solutions leader
Long-term client relationships
Positive and inclusive atmosphere
Key Requirements
10+ years of experience in GRC advisory roles
University degree in a relevant discipline
CISA, CISM, CRISC, or CISSP certification
Proficiency in ISO27001, ISO27701, and SOC2
Experience with NIST CSF, NIST SSDF, and OWASP DSOMM
Knowledge of SDLC, OWASP, and DevSecOps
Experience with GRC tools (e.g., AuditBoard, Bitsight)