This website uses cookies to ensure you get the best experience.

SOFTSWISS and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.
SOFTSWISS
Security · Warszawa, Poland · Fully Remote

Security GRC Team Lead

Experienced Security GRC Team Lead, we have an opportunity for you! Join SOFTSWISS and become a vital part of our team. We are searching for someone who mirrors our dedication and professionalism.

Overview:

SOFTSWISS is hiring a Security GRC Team Lead to join our Security team. We are seeking an experienced professional to own governance, risk, and compliance processes across a multi-product tech environment. In this role, you will turn policy into practice, drive audit readiness, and embed measurable security awareness across the company.

Purpose of the role:

You will be responsible for building and leading the governance, risk, and compliance framework across the company, ensuring measurable security practices, continuous audit readiness, and reduced exposure in cloud, SaaS, and data environments.

Key responsibilities:

  • Define and evolve the control framework; run a repeatable assurance cycle with clear owners and evidence.
  • Keep the risk register sharp: clear risks, treatment plans, and milestones.
  • Manage policy lifecycle (draft → review → approval → rollout) with actionable guidance for engineers.
  • Review security tooling and integrations end-to-end to improve coverage and time-to-evidence.
  • Drive periodic access reviews and data protection controls across core systems.
  • Orchestrate audit readiness and targeted internal audits; track remediation to closure.
  • Improve intake and triage for GRC-related security requests, with clear SLAs and DoD.


Required Experience:

  • 5–7+ years in GRC/Security Governance/Assurance with rollout of ISO 27001/NIST-aligned controls.
  • Track record delivering security KPIs and closing audit findings in cloud/SaaS environments.
  • Experience operationalizing controls in engineering toolchains.
  • Strong stakeholder management with Product, Devs, Data, Business; crisp written communication.
  • Data-driven approach to evidence and reporting.
  • ISO 27001 implementer/auditor experience.
  • Knowledge of the Russian language at a level of C1 or higher.

Nice to have:

  • Automation of control testing and evidence collection.
  • Background in product-led tech companies.

Our Benefits:

    • Full-time work opportunities
    • Private insurance
    • An additional Day Off (1) per calendar year
    • Sports program compensation
    • Comprehensive Mental Health Programme
    • Free online English lessons with native speakers
    • Generous referral program
    • Training, internal workshops, and participation in international professional conferences and corporate events

    Learn more about our hiring process here (link) – what to expect, how to prepare, and what makes SOFTSWISS different.

Department
Security
Locations
Warszawa, Poland
Remote status
Fully Remote
Employment type
Full-time
Security · Warszawa, Poland · Fully Remote

Security GRC Team Lead

Experienced Security GRC Team Lead, we have an opportunity for you! Join SOFTSWISS and become a vital part of our team. We are searching for someone who mirrors our dedication and professionalism.

Loading application form

Already working at SOFTSWISS?

Let’s recruit together and find your next colleague.