Principal GRC Engineer

Outseer

Principal GRC Engineer leading compliance and risk management initiatives at Outseer. Collaborating with teams to implement strategy and ensure adherence to regulations and standards.

Posted 5/2/2026full-timeRemote • 🇬🇧 United KingdomLeadWebsite

Tech Stack

Tools & technologies

Cyber Security

About the role

Key responsibilities & impact

Support and lead Outseer governance, risk management, and compliance program globally, aligning with relevant regulations, industry standards, and best practices.
Conduct regular risk assessments, identify potential vulnerabilities, and implement strategies to mitigate risks across the organization.
Lead and coordinate third-party security audits, and act as the primary point of contact for customer security reviews.
Recommend and maintain policies, procedures, and controls to ensure compliance with applicable regulations, standards, and internal requirements.
Monitor and assess changes in regulatory requirements and industry standards and ensure timely updates to the compliance program.
Collaborate with cross-functional teams to integrate risk management and compliance controls into business processes, applications, and systems.
Conduct compliance audits, assessments, and gap analyses to identify areas for improvement and implement remediation plans.
Coordinate and manage third-party assessments, audits, and certifications, ensuring compliance with contractual obligations.
Provide guidance and support to stakeholders regarding risk management, compliance requirements, and governance practices.
Demonstrates an automation-first mindset, leveraging modern AI technologies to enhance GRC processes.
Deliver training programs to educate employees on risk awareness, compliance obligations, and best practices.
Stay updated with emerging trends and changes in the governance, risk, and compliance landscape, and proactively recommend improvements to enhance the effectiveness of the program.

Requirements

What you’ll need

Bachelor’s degree in computer science, Information Security, Risk Management, or a related field - or equivalent work experience.
8+ years of experience in governance, risk management, and compliance roles, with a focus on information security and technology.
Knowledge of regulatory frameworks and standards such as ISO 27001, NIST Cybersecurity Framework, GDPR, HIPAA, or PCI DSS.
Experience implementing governance frameworks, risk assessment methodologies, and compliance programs.
Familiarity with risk assessment techniques, including the identification, analysis, and treatment of risks.
Demonstrated experience conducting compliance audits, assessments, and managing remediation efforts.
Knowledge of security controls, industry best practices, and risk management frameworks.
Strong understanding of business processes, systems, and technologies, and their associated risks.
Excellent communication and interpersonal skills, with the ability to effectively collaborate with stakeholders at all levels of the organization.
Professional certifications such as CISA, CRISC, CISSP, or CISM are highly desirable.

Benefits

Comp & perks

Health insurance
Professional development opportunities

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

governancerisk managementcompliancerisk assessmentssecurity auditscompliance auditsremediation plansrisk assessment methodologiessecurity controlsregulatory frameworks

Soft Skills

communicationinterpersonal skillscollaborationleadershiptrainingguidanceorganizational skillsproblem-solvingstakeholder managementadaptability

Certifications

CISACRISCCISSPCISM