Key skills
GRCAI AutomationPythonPCI DSSSOC2ISO27001HIPAAVendor Risk ManagementStart-up ExperienceAI Automation ToolsAIRisk Management
About this role
Iceberg is a rapidly growing AI technology startup that has secured significant VC funding and is emerging as a leader in its field. They are seeking a technical GRC Engineer to automate compliance processes and own the risk and compliance strategy, working closely with engineers and clients to ensure effective risk management practices.
Responsibilities:
- Automating compliance processes
- Own risk & compliance strategy (SOC2, ISO27001, HIPAA)
- Work hands-on with engineers
- Read and understand code (ideally Python and other Automation tools) to streamline workflows
- Engage with clients to ensure risk management best practices
Requirements:
- Deep experience Automating GRC processes
- Technical GRC professional with an engineering/technical background
- Ability to drive PCI DSS, SOC2 and ISO27001 compliance
- Willingness to work hands-on with engineers
- Ability to read and understand code (ideally Python and other Automation tools)
- Experience in automating compliance processes
- Ownership of risk & compliance strategy (SOC2, ISO27001, HIPAA)
- Engagement with clients to ensure risk management best practices
- Extensive AI Automation/ AI Automation tool experience
- Extensive GRC experience
- Experience going toe to toe with Engineers
- Ability to understand/Read code/use Python for Automations
- Vendor Risk Management experience
- Start-up/ Small team experience
- Extensive PCI DSS Experience
- ISO42001
- EU AI ACT
- NIST AI RMF
- FedRAMP