GRC Specialist

Net2Source Inc. is one of the fastest-growing diversity-certified global workforce solutions companies, experiencing an unprecedented YoY growth of over 100% for the last 6 years. We work with Fortune 1000 / Global 2000 companies across 34 countries and 5 continents, including North America, South America, Europe, Asia, Australia, and the Middle East.

Position: GRC Specialist

Location: Germany / Remote

Type: Permanent

Language Requirement: German Speaking Mandatory (B2 / C1)

• Customer delivery mindset and very strong project management skills. Ability to drive and meet project milestones and objectives. Expertise in GRC domains, best practices, and governance frameworks such as NIST, ISO 27001:2013, SOX, ITGC, Cloud Compliance, SIG, etc.
• Expertise in Security Risk, Compliance, Audit Management.
• Act as a trusted advisor to lead and drive the IT Risk Compliance Office, managing the entire Audit, Compliance, and Risk Management Program, including Cloud controls, GDPR, and CCM.
• Excellent communication and stakeholder management skills, capable of simplifying complex IT GRC issues into understandable business language.
• Key member of the GRC program at the client end, with expertise in building resilient GRC frameworks and managing GRC operations.
• Ensure compliance with SLAs, support audits, provide advisory services, and manage external audits.
• Responsible for IRM technology solutions strategy and implementation, with strong experience in GRC operations using leading GRC tools.
• Exposure to MS Compliance Manager, with strong skills in policy and compliance configurations within MS environments.
• Support and oversee high-level document design (HLD, LLD).
• Conduct solution workshops and develop functional design documents.
• Participate in GRC meetings and report on status updates.
• Mandatory functional knowledge and skills include Alyne GRC, GRC implementation, and operational experience in policy compliance management, audit management, and cloud controls matrix (CCM), ISO 27001 frameworks, and controls compliance.
• Experience with other GRC tools is a plus; Alyne GRC certification is mandatory.
• Excellent documentation, presentation, communication, and interpersonal skills, with stakeholder management and reporting capabilities.
• Educational qualification: Bachelor's degree or equivalent in computer science, information systems, mathematics, statistics, or related fields.
• Security certifications: Any two among ISO 27001, CISA, CISM, CEH, CISSP, CRISC, CGEIT, CCSK.
• GRC security product vendor certifications obtained in the last 3 years are desirable.
• Mandatory Alyne GRC certifications.
• Total IT GRC experience: Over 12 years.
• Relevant Alyne GRC experience: Over 5 years, including technology implementation, upgrades, migration, architecting, and process improvements.
• Desirable skills include scripting and coding languages, tool configurations, and integrations.