Find Jobs All Jobs Developer Jobs Designer Jobs Marketing Jobs Customer Service Jobs Sales Jobs Writing Jobs Human Resources Jobs DevOps & SysAdmin Jobs Project Manager Jobs Product Jobs Data & Analytics Jobs Finance & Accounting Jobs Legal Jobs Executive Jobs Other Jobs

Senior GRC Specialist

Velsera

Apply Now
India, United States
Salary not disclosed
full-time
senior
Posted March 24, 2026
via himalayas

About This Role

Velsera is hiring a Senior GRC Specialist to develop, implement, and maintain comprehensive information security policies, standards, and procedures aligned with the ISO 27001 framework. The ideal candidate will have at least 8+ years of progressive experience in Information Security GRC, with a focus on risk management, compliance, and governance. Requirements • Develop, implement, and maintain comprehensive information security policies, standards, and procedures aligned with the ISO 27001 framework • Lead, manage, and mature the organization's Information Security Management System including risk treatment, internal audits, and readiness for external certification audits • Serve as the subject matter expert (SME) for Security and Privacy Rules, ensuring compliance for all systems, processes, and applications handling PII and Protected Health Information (PHI) • Conduct continuous monitoring and evidence collection to demonstrate compliance with relevant frameworks • Plan, conduct and manage internal and supplier audits • Plan GRC activities, prioritise and implement them in timebound manner • Perform detailed security risk assessments and gap analyses on new and existing systems, with a focus on cloud infrastructure • Collaborate with Product, Technology, IT and Security teams to implement security controls into cloud / infra / environments, ensuring compliance • Review risk mitigations periodically and track remediation efforts to closure • Conduct third-party vendor risk assessments, focusing on their adherence to required compliance standards • Develop and deliver targeted security awareness and training programs focused on HIPAA and ISO 27001 requirements for all staff, including technical teams • Evaluate and recommend new security technologies and processes to enhance the compliance and risk posture • Stay current on emerging cloud security threats, regulatory changes, and updates to the ISO 27001 family of standards and HIPAA Benefits • Flexible Work & Time Off • Health & Well-being • Growth & Learning • Recognition & Rewards • Engaging & Fun Work Culture Originally posted on Himalayas

Ready to Apply?

Click the button below to visit the company's application page.

Apply for this Position

More Remote Jobs