Specialist- GRC

Specialist- GRC

About Sirion

AI–native Contract Lifecyle Management (CLM) platform

www.sirion.ai

Power the Future of AI & Why This Role Matters

Information Security & Data Privacy GRC Professional

How You’ll Make an Impact

• Develop & Implement GRC Frameworks

  —

  Design, maintain, and enhance

  governance, risk, and compliance strategies, policies, and procedures to align with enterprise standards and global regulations.

• Lead Risk Assessments

  —

  Conduct

  vendor, third-party, and internal security assessments to

  identify and mitigate

  privacy and security risks.

• Drive Compliance Excellence

  —

  Ensure

  adherence to standards like GDPR, HIPAA, ISO 27001, SOC 2, and PCI DSS through continuous monitoring and process improvement.

• Oversee Data Privacy Programs

  —

  Manage

  initiatives for data classification, governance, and Privacy Impact Assessments (PIAs) to

  protect

  sensitive information.

• Act as Privacy SME

  —

  Serve

  as the go-to expert for data privacy matters,

  collaborating

  with legal teams to address regulatory inquiries.

• Mitigate Security Risks

  —

  Identify, prioritize, and address

  threats by developing and

  implementing

  effective risk controls.

• Promote Security Awareness

  —

  Design and deliver

  engaging training programs to

  foster

  a culture of compliance and data protection.

• Collaborate Across Functions

  —

  Work closely

  with IT, Legal, Engineering, and Product teams to

  embed

  security and privacy into enterprise operations.

• Mentor & Guide Teams

  —

  Provide

  leadership to junior team members and

  align

  stakeholders toward achieving organizational security objectives.

Skills & Experience You Bring to the Table

Experience:

Core Expertise:

• Strong knowledge of GDPR, CCPA, HIPAA, ISO 27001, SOC 2, PCI DSS.
• Risk assessment methodologies and vendor/third-party security reviews.
• Data privacy governance, classification, and PIA execution.
• Familiarity with security protocols (OAuth2, TLS, JWT) and auditing processes.

Preferred Certifications:

• CISSP | CISM | CISA | CDPSE | ISO 27001 Lead Implementer/Auditor | GDPR Certification

Soft Skills:

• Strong leadership and decision-making abilities.
• Excellent communication and stakeholder management skills.
• Ability to

  thrive

  in fast-paced, high-growth environments.

Commitment to Diversity and Inclusion

We are an equal opportunity employer committed to diversity and inclusion. We do not discriminate based on race, color, gender, religion, national origin, ancestry, age, disability, medical condition, genetic information, military or veteran status, marital status, pregnancy, gender identity, sexual orientation, or any other protected characteristic. We provide reasonable accommodations for disabled employees and applicants as required by law. These principles apply to all aspects of employment, including recruitment, training, promotions, compensation, benefits, transfers, and social programs.

Excited about this opportunity?

Career at Sirion