About Workstreet

At Workstreet, we’re on an exciting journey to help businesses scale securely by building and implementing cutting-edge security and compliance programs. As a fast-growing startup, we specialize in compliance frameworks like SOC 2, ISO 27001, and GDPR, empowering companies to meet regulatory standards and strengthen their cybersecurity posture from day one. We’ve partnered with Vanta, which has significantly driven our business and contributed to our growth!

We are seeking a highly motivated and detail-oriented Manager, GRC Engineering to join our fast-growing team. The ideal candidate will have a solid background in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. They should possess excellent communication skills and the ability to manage multiple cybersecurity compliance projects simultaneously. The ideal candidate will also have experience overseeing or managing a small team.

Workstreet is seeking an experienced GRC extraordinaire who will be responsible for managing compliance programs and ensuring adherence to frameworks like SOC 2, ISO 27001, HIPAA, and others for our clients. The ideal candidate will have a proven track record in policy writing, implementing SOC 2 Type 1 and Type 2, and hands-on experience with technical controls in various cloud platforms such as AWS, GCP, and Azure.

Key Responsibilities:

• Develop, write, and maintain policies and procedures to ensure compliance with SOC 2, ISO 27001, and other relevant standards.
• Manage and execute SOC 2 Type 1 and Type 2 implementation projects. Implement and oversee technical controls in cloud environments, including AWS, GCP, and Azure.
• Direct daily operations of a small team, driving success through effective leadership.
• Conduct regular security audits and risk assessments to identify vulnerabilities and ensure continuous improvement of security posture.
• Coordinate with different teams to ensure compliance and security best practices are integrated into their workflows.
• Stay updated on new regulatory requirements and industry best practices.
• Work within and feel comfortable operating compliance platforms like Drata, Vanta, and SecureFrame.

Must-Have Qualifications:

• Bachelor’s degree in Information Technology, Cybersecurity, or a related field.
• 3+ years managing a small team.
• Proven experience in managing compliance programs and familiarity with SOC 2 and ISO 27001 frameworks.
• Strong knowledge and experience in implementing technical controls in cloud platforms like AWS, GCP, and Azure.
• Excellent communication and writing skills in English.
• Ability to work independently with a strong sense of initiative.
• Must be amenable to work US Eastern Time zone hours.

Preferred Skills:

• Relevant certifications (e.g., CISA, CISSP, CISM).
• Experience in conducting security training and awareness programs.
• Familiarity with other compliance frameworks and regulations (e.g., GDPR, HIPAA).

What We Offer:

• Competitive pay.
• Potential to grow from this role into a vCISO role.
• Ability to work with amazing companies and clients.

Workstreet Is An Equal Opportunity Employer

As an equal opportunity employer, Workstreet is committed to providing employment opportunities to all individuals. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.