GRC Automation Engineer

Salary- $105.8K/yr - $174.8K/yr
Remote
Posted 1 month ago

Job Summary

We are seeking a highly skilled GRC (Governance, Risk, and Compliance) Automation Engineer to join our cybersecurity team. The ideal candidate will be responsible for designing, implementing, and optimizing automated solutions that streamline governance, risk management, compliance monitoring, and security control assessments across the organization. This role bridges cybersecurity, compliance, risk management, and automation technologies to improve operational efficiency and regulatory compliance.

Key Responsibilities

Governance & Compliance Automation

  • Develop and maintain automated GRC workflows and compliance processes.
  • Automate evidence collection for regulatory and audit requirements.
  • Support compliance frameworks including SOC 2, ISO 27001, NIST CSF, PCI DSS, HIPAA, and GDPR.
  • Monitor compliance controls and generate automated compliance reports.

Risk Management

  • Design automated risk assessment and risk monitoring solutions.
  • Identify security risks and implement automated risk tracking mechanisms.
  • Develop dashboards for enterprise risk visibility and reporting.
  • Assist with third-party risk management and vendor assessments.

Security Control Monitoring

  • Automate security control testing and validation activities.
  • Integrate security tools with GRC platforms to collect control evidence.
  • Monitor control effectiveness and compliance status continuously.
  • Support remediation tracking and risk mitigation efforts.

Automation & Engineering

  • Build automation scripts using Python, PowerShell, JavaScript, or similar languages.
  • Integrate GRC platforms with cloud environments and security tools.
  • Develop APIs and automation workflows to reduce manual compliance tasks.
  • Improve operational efficiency through process automation and orchestration.

Collaboration & Reporting

  • Work closely with Security, IT, Risk, Audit, and Compliance teams.
  • Support internal and external audits.
  • Prepare executive-level reports and compliance dashboards.
  • Provide recommendations for process improvements and automation opportunities.

Required Qualifications

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
  • 3+ years of experience in GRC, Cybersecurity, Compliance, Risk Management, or Security Engineering.
  • Experience with GRC platforms such as ServiceNow GRC, Archer, OneTrust, AuditBoard, or MetricStream.
  • Strong understanding of cybersecurity frameworks and regulatory standards.
  • Experience with scripting and automation tools (Python, PowerShell, Bash).
  • Knowledge of cloud platforms including AWS, Azure, or Google Cloud.
  • Strong analytical and problem-solving skills.

Preferred Qualifications

  • Professional certifications such as:
    • Certified Information Systems Security Professional (CISSP)
    • Certified Information Security Manager (CISM)
    • Certified in Risk and Information Systems Control (CRISC)
    • Certified Information Systems Auditor (CISA)
    • Security+
  • Experience with Security Information and Event Management (SIEM) tools.
  • Knowledge of DevSecOps and Infrastructure as Code (IaC).

Technical Skills

  • GRC Platforms (ServiceNow GRC, Archer, OneTrust, AuditBoard)
  • Python, PowerShell, JavaScript
  • SQL and Database Management
  • API Integration
  • AWS, Azure, Google Cloud
  • SIEM Tools (Splunk, Microsoft Sentinel, QRadar)
  • Risk Management Frameworks
  • Compliance Standards (SOC 2, ISO 27001, NIST, PCI DSS, HIPAA)

Benefits

  • Competitive Salary
  • Health, Dental, and Vision Insurance
  • Paid Time Off (PTO)
  • Flexible Work Arrangements
  • Professional Development Programs
  • Certification Reimbursement
  • Employee Wellness Programs

Equal Opportunity Employer

We are committed to fostering an inclusive workplace and welcome applicants from diverse backgrounds. All qualified candidates will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status, or any other protected characteristic.

Job Features

Job CategoryGRC

Apply For This Job

A valid phone number is required.