GRC Specialist

At Atomicwork, we are redefining IT transformation through AI-driven solutions for ITSM and Employee Service Management in the B2B SaaS space. We are passionate about empowering businesses with tools that deliver operational excellence and customer satisfaction. As a fast-growing startup, we’re looking for a GRC Specialist to ensure robust governance, risk management, and compliance in our journey toward scaling globally

As the GRC Specialist, you will be pivotal in designing, implementing, and managing the governance, risk, and compliance frameworks across Atomicwork. You’ll work closely with product, engineering, and leadership teams to ensure compliance with regulatory standards, manage enterprise risks, and foster a culture of proactive risk management and operational excellence.

Key Responsibilities
*  Governance & Policy Management
    =>  Develop, implement, and maintain GRC policies, procedures, and standards in alignment with global regulatory frameworks (e.g., ISO 27001, SOC 2, GDPR,HIPPA).
    =>  Ensure effective governance practices are embedded in organizational processes.
*  Risk Management
    =>  Conduct risk assessments across business units, including IT, product, and operations.
    =>  Identify, evaluate, and mitigate risks in line with company goals and risk appetite.
    =>  Maintain and enhance the organization’s risk register.
*  Compliance
    =>  Lead compliance efforts for certifications such as SOC 2, ISO 27001, and other applicable frameworks.
    =>  Monitor and ensure compliance with applicable privacy regulations like GDPR, CCPA, and others.
    =>  Manage internal and external audits, including coordination with third-party auditors.
*  Incident & Vendor Management
    =>  Collaborate with engineering and security teams to manage security incidents and remediation efforts.
    =>  Assess third-party vendors for risk and compliance alignment during onboarding and periodically.
*  Training & Awareness
    =>  Develop and conduct GRC training programs for employees to promote awareness and accountability.
    =>  Drive a culture of compliance and proactive risk management throughout the organization.
*  Reporting
    =>  Generate regular risk and compliance reports for leadership and stakeholders.
    =>  Provide recommendations to improve overall governance and mitigate risks.Qualifications
*  3-5 years of experience in GRC, compliance, or a related role, preferably in a B2B SaaS environment.
*  Experience with frameworks such as SOC 2, ISO 27001, GDPR, and NIST.
*  Certifications (preferred): CISA, CRISC, CISSP, or ISO 27001 Lead Implementer.Skills:
*  Strong understanding of SaaS business models and associated risks.
*  Hands-on experience with GRC tools and risk management software.
*  Excellent communication and stakeholder management skills.
*  Analytical mindset with a focus on problem-solving and continuous improvement.

Why we are different (culture)

As a part of Atomicwork, you can shape our company and business from idea to production. Our cultural values also set the bar high, helping us create a better workplace for everyone.

• Autonomy: We champion self-direction to deliver customer success, empowering teams and individuals to deliver peak performance.

• Trust: We unwaveringly believe in our colleagues' positive intentions, approaching every interaction with trust to accelerate execution.

• Ownership: We demonstrate unwavering commitment to our mission and goals, taking full responsibility for triumphs and setbacks.

• Mastery: We relentlessly pursue continuous self-improvement as individuals and teams, dedicating ourselves to constant learning and growth.

• Impatience: We recognize that our world moves swiftly and is driven by an unyielding desire to progress with every endeavor.

• Customer Obsession: We place our customers at the heart of everything we do, relentlessly seeking to understand their needs and exceed their expectations.

What we offer (compensation and benefits)

We are big on benefits that make sense to you and your family.

1. Fantastic team —the #1 reason why everybody joins us. ‍

2. Hybrid work — balance between working from the office and home.

3. Convenient offices — well-located offices spread over five different cities.‍

4. Flexible work timings — you get to decide how you want to work.

5. Paid time off — Unlimited sick leaves and 24 days off every year.

6. Health insurance — comprehensive health coverage for your entire family.‍

7. Great hardware — premium Apple hardware to help you do your best work. ‍

8. Flexible allowances — with hassle-free reimbursements across spends.‍

9. Team events — we cover team meet-ups and celebrations for milestones.‍

10. Annual outings — for everyone to have fun together.

What next (applying for this role)

1. Click on the apply button to get started with your application.

2. Answer a few questions about yourself and your work.

3. Wait to hear from us about the next steps.

Do you have anything else to tell us? Email careers@atomicwork.com and let us have a chat.