GRC Specialist

Printful

full-time

Posted on: 11/14/2025

Location Type: Hybrid

Location: Riga • 🇱🇻 Latvia

✨ AI Apply

💰 €2,500 - €4,000 per month

Mid-LevelSenior

About the role

Facilitate the onboarding and annual review process for third-party vendors, including security assessments
Take part in the development, maintenance, and update of the information security policies and procedures
Conduct risk assessments, track remediation plans, and ensure the timely closure of identified risks
Ensure compliance with relevant standards and regulations (e.g., ISO 27001, SOC 2, NIST, PCI-DSS)

3+ years of experience in vendor management, risk management, IT audit, and compliance
Practically participated in the implementation of ISO/IEC 27001, SOC2, PCI-DSS, etc.
Developed and implemented internal security policies and procedures
Excellent ability to tackle complex challenges, propose solutions, and drive initiatives to completion
Excellent communication skills, capable of conveying complex ideas clearly
Good command of English: we are a global company and have a multinational environment
Certifications like CISSP, CISM, CISA, PECB ISO27001 Lead implementer/Lead Auditor, and CompTIA Security+ would be a great addition to your qualifications.

Benefits

Private health insurance
2 extra paid days off to focus on your mental or physical well-being
1 extra paid day off to celebrate a Birthday or any other celebration of your choice
Access to mentorship, internal meetups, and hackathons, both on-site and online
Free and healthy lunch if you work from the Rīga office
Exciting team-building events and parties you’ll never forget!

Tip: use these terms in your resume and cover letter to boost ATS matches.

vendor managementrisk managementIT auditcompliancesecurity assessmentsinformation security policiesrisk assessmentsremediation plansISO 27001PCI-DSS

problem-solvingcommunicationinitiativecomplex challenge resolution

CISSPCISMCISAPECB ISO27001 Lead ImplementerPECB ISO27001 Lead AuditorCompTIA Security+