Manager, GRC Engineering

Workstreet

full-time

Posted on: 9/10/2025

Origin: • 🇺🇸 United States

✨ AI Apply

Mid-LevelSenior

AWSAzureCloudCyber SecurityGoogle Cloud Platform

About the role

Develop, write, and maintain policies and procedures to ensure compliance with SOC 2, ISO 27001, and other relevant standards
Manage and execute SOC 2 Type 1 and Type 2 implementation projects
Implement and oversee technical controls in cloud environments, including AWS, GCP, and Azure
Direct daily operations of a small team, driving success through effective leadership
Conduct regular security audits and risk assessments to identify vulnerabilities and ensure continuous improvement of security posture
Coordinate with different teams to ensure compliance and security best practices are integrated into their workflows
Stay updated on new regulatory requirements and industry best practices
Work within and feel comfortable operating compliance platforms like Drata, Vanta, and SecureFrame

Bachelor’s degree in Information Technology, Cybersecurity, or a related field
5+ years managing a small team
Proven experience in managing compliance programs and familiarity with SOC 2 and ISO 27001 frameworks
Strong knowledge and experience in implementing technical controls in cloud platforms like AWS, GCP, and Azure
Excellent communication and writing skills in English
Ability to work independently with a strong sense of initiative
Must be amenable to work US Eastern Time zone hours
Preferred: Relevant certifications (e.g., CISA, CISSP, CISM)
Preferred: Experience in conducting security training and awareness programs
Preferred: Familiarity with other compliance frameworks and regulations (e.g., GDPR, HIPAA)