GRC Engineer / Governance, Risk & Compliance Engineer (Remote) - Contract to Hire

Job Title: GRC Engineer / Governance, Risk & Compliance Engineer (Remote) Location: Fully Remote Job Summary: We are looking for a GRC Engineer to support governance, risk, and compliance activities across the organization. This role is ideal for professionals with 5 - 12 years of experience who understand security policies, risk management, and regulatory compliance, and can work closely with technical and business teams. Key Responsibilities: - Support governance, risk, and compliance (GRC) programs and activities - Develop, review, and maintain security policies, standards, and procedures - Perform risk assessments and support risk treatment plans - Support compliance efforts for frameworks and regulations (ISO 27001, NIST, SOC 2, PCI DSS, HIPAA, etc.) - Work with internal teams to collect evidence for audits and assessments - Track compliance gaps and support remediation activities - Support third-party risk management and vendor assessments - Maintain risk registers and compliance documentation - Assist with internal and external audits Skills & Knowledge: - Strong understanding of GRC concepts and security governance - Experience with risk assessments and control mapping - Knowledge of security frameworks and regulations (NIST, ISO, SOC 2, PCI, HIPAA) - Experience with audit preparation and evidence management - Familiarity with GRC tools (ServiceNow GRC, Archer, OneTrust, or similar) - Ability to work with technical and non-technical teams - Strong documentation and communication skills Experience: - 5 - 12 years of experience in GRC, risk, compliance, or information security roles - Experience supporting audits and compliance programs Apply tot his job Apply To this Job