OverviewAt Workstreet, we’re on an exciting journey to help businesses scale securely by building and implementing cutting-edge security and compliance programs. We specialize in compliance frameworks like SOC 2, ISO 27001, and GDPR, empowering companies to meet regulatory standards and strengthen their cybersecurity posture from day one. We’ve partnered with Vanta, which has significantly driven our business and contributed to our growth. We are seeking a highly motivated and detail-oriented Manager, GRC Engineering to join our fast-growing team. The ideal candidate will have a solid background in cybersecurity compliance frameworks and experience managing multiple cybersecurity compliance projects and a small team.Workstreet is seeking an experienced GRC professional who will be responsible for managing compliance programs and ensuring adherence to frameworks such as SOC 2, ISO 27001, HIPAA, and others for our clients. The ideal candidate will have a proven track record in policy writing, implementing SOC 2 Type 1 and Type 2, and hands-on experience with technical controls in cloud platforms such as AWS, GCP, and Azure.Key ResponsibilitiesDevelop, write, and maintain policies and procedures to ensure compliance with SOC 2, ISO 27001, and other relevant standards.Manage and execute SOC 2 Type 1 and Type 2 implementation projects. Implement and oversee technical controls in cloud environments, including AWS, GCP, and Azure.Direct daily operations of a small team, driving success through effective leadership.Conduct regular security audits and risk assessments to identify vulnerabilities and ensure continuous improvement of security posture.Coordinate with different teams to ensure compliance and security best practices are integrated into their workflows.Stay updated on new regulatory requirements and industry best practices.Work within and feel comfortable operating compliance platforms like Drata, Vanta, and SecureFrame.Must-Have QualificationsBachelor’s degree in Information Technology, Cybersecurity, or a related field.5+ years managing a small team.Proven experience in managing compliance programs and familiarity with SOC 2 and ISO 27001 frameworks.Strong knowledge and experience in implementing technical controls in cloud platforms like AWS, GCP, and Azure.Excellent communication and writing skills in English.Ability to work independently with a strong sense of initiative.Amenable to work US Eastern Time zone hours.Preferred SkillsExperience in conducting security training and awareness programs.Familiarity with other compliance frameworks and regulations (e.g., GDPR, HIPAA).What We OfferCompetitive pay.Potential to grow from this role into a vCISO role.Ability to work with amazing companies and clients.Equal OpportunityWorkstreet is an equal opportunity employer. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.
#J-18808-Ljbffr