Cybersecurity Governance / GRC
Job Description
At Rootstack, we are looking for a Cybersecurity Governance Officer with 3+ years of experience in IT, Information Security, or Cybersecurity, with a strong focus on Governance, Risk, and Compliance (GRC). The ideal candidate will have experience identifying cybersecurity risks, evaluating compliance against security standards, and managing security findings across internal teams and third parties. This person should be able to ensure alignment with security frameworks, regulatory requirements, and audit processes while supporting risk mitigation and governance initiatives.
Required Skills
- 3+ years of experience in IT, Information Security, or Cybersecurity
- Experience in Cybersecurity Governance, Risk Management, or Compliance (GRC)
- Strong knowledge of cybersecurity and governance frameworks such as ISO 27001, NIST Cybersecurity Framework, COBIT, and ITIL
- Experience identifying, analyzing, and documenting cybersecurity risks, gaps, and findings
- Experience participating in audits and regulatory compliance processes
- Ability to assess internal teams, vendors, and third parties against security standards and contractual requirements
- Strong analytical skills and risk management capabilities
- Experience designing and maintaining dashboards to track findings, risks, and remediation plans
- Ability to define and monitor indicators that measure the effectiveness of cybersecurity strategies
- Strong communication and coordination skills to work with internal stakeholders and respond to regulatory or audit requirements
Key Responsibilities
Start your professional career with us
At Rootstack, we are focused on creating the technologies of the present and the future that help our clients elevate their digital presence. With a work culture focused on success, we put our employees first and we will focus on your growth within the company, always motivating you to achieve greatness.