We’re hiring a Security GRC Engineer to help us build governance, risk, and compliance in a way that actually works in a modern tech organization: pragmatic, automation-friendly, and aligned with agile delivery.

This is not a “paperwork” job. You’ll partner closely with engineering, product, workplace, auditors and security to turn risk management and compliance into clear, usable guardrails and you’ll challenge processes that create friction without improving security.

What you’ll do

• Risk management that drives decisions

Run lightweight, continuous risk assessment and threat modelings with teams (not once-a-year rituals).

Translate risk into clear options: impact, likelihood, tradeoffs, and recommended actions.

Track remediation plans and provide visibility through simple reporting.

• Build practical governance

Maintain and improve security pol...