Back to jobs

Senior GRC Specialist

Velsera
Remote Remote - Unknown
Hidden pay
Posted Mar 24, 2026
Apply on himalayas

Leaving for himalayas in 10s

About This Role

Velsera is hiring a Senior GRC Specialist to develop, implement, and maintain comprehensive information security policies, standards, and procedures aligned with the ISO 27001 framework. The ideal candidate will have at least 8+ years of progressive experience in Information Security GRC, with a focus on risk management, compliance, and governance.

Requirements

  • Develop, implement, and maintain comprehensive information security policies, standards, and procedures aligned with the ISO 27001 framework
  • Lead, manage, and mature the organization's Information Security Management System including risk treatment, internal audits, and readiness for external certification audits
  • Serve as the subject matter expert (SME) for Security and Privacy Rules, ensuring compliance for all systems, processes, and applications handling PII and Protected Health Information (PHI)
  • Conduct continuous monitoring and evidence collection to demonstrate compliance with relevant frameworks
  • Plan, conduct and manage internal and supplier audits
  • Plan GRC activities, prioritise and implement them in timebound manner
  • Perform detailed security risk assessments and gap analyses on new and existing systems, with a focus on cloud infrastructure
  • Collaborate with Product, Technology, IT and Security teams to implement security controls into cloud / infra / environments, ensuring compliance
  • Review risk mitigations periodically and track remediation efforts to closure
  • Conduct third-party vendor risk assessments, focusing on their adherence to required compliance standards
  • Develop and deliver targeted security awareness and training programs focused on HIPAA and ISO 27001 requirements for all staff, including technical teams
  • Evaluate and recommend new security technologies and processes to enhance the compliance and risk posture
  • Stay current on emerging cloud security threats, regulatory changes, and updates to the ISO 27001 family of standards and HIPAA

Benefits

  • Flexible Work & Time Off
  • Health & Well-being
  • Growth & Learning
  • Recognition & Rewards
  • Engaging & Fun Work Culture

Originally posted on Himalayas

Source: https://himalayas.app/companies/velsera/jobs/senior-grc-spec...