GRC Compliance Auditor


Dallas
Permanent
USD140000 - USD190000
Cybersecurity
PR/599575_1783019083
GRC Compliance Auditor

GRC Compliance Auditor

📍 Dallas, TX

A rapidly growing technology organization is seeking a GRC Compliance Auditor to join its Information Security team. This role is ideal for someone who enjoys owning compliance programs, managing audits, improving security controls, and partnering with stakeholders across the business.

What You'll Do

  • Lead SOC 2 Type II and ISO 27001 audit activities, including readiness assessments, control testing, and gap analyses.
  • Coordinate external audits, manage evidence collection, and track remediation efforts through completion.
  • Administer and optimize the organization's GRC/compliance platform.
  • Maintain and enhance control frameworks aligned to SOC 2, ISO 27001, NIST CSF, and other industry standards.
  • Partner with Engineering, IT, HR, Legal, and Operations teams to ensure continuous compliance and audit readiness.
  • Produce compliance dashboards, audit-readiness metrics, and executive-level reporting.
  • Conduct third-party risk assessments and support customer security due diligence requests.
  • Help embed a culture of compliance and security awareness across the organization.

What We're Looking For

  • 4-8 years of experience in GRC, IT audit, cybersecurity compliance, or information security.
  • Hands-on experience supporting or leading SOC 2 Type II audits.
  • Working knowledge of ISO 27001 controls and certification requirements.
  • Experience with GRC platforms such as Vanta, Drata, Hyperproof, AuditBoard, or similar solutions.
  • Strong ability to translate regulatory requirements into practical business controls.
  • Excellent communication skills and experience working with both technical and non-technical stakeholders.
  • Certifications such as CISA, CISM, CISSP, CRISC, or ISO 27001 Lead Auditor are a plus.

Why Join?

  • Own and influence key compliance initiatives.
  • Work closely with leadership and cross-functional teams.
  • Help strengthen security and governance programs in a growing technology environment.
  • Gain exposure to modern cloud, infrastructure, and cybersecurity operations.

Interested? Apply directly or reach out for more information.

FAQs

Congratulations, we understand that taking the time to apply is a big step. When you apply, your details go directly to the consultant who is sourcing talent. Due to demand, we may not get back to all applicants that have applied. However, we always keep your CV and details on file so when we see similar roles or see skillsets that drive growth in organisations, we will always reach out to discuss opportunities.

Yes. Even if this role isn’t a perfect match, applying allows us to understand your expertise and ambitions, ensuring you're on our radar for the right opportunity when it arises.

We also work in several ways, firstly we advertise our roles available on our site, however, often due to confidentiality we may not post all. We also work with clients who are more focused on skills and understanding what is required to future-proof their business. 

That's why we recommend registering your CV so you can be considered for roles that have yet to be created. 

Yes, we help with CV and interview preparation. From customised support on how to optimise your CV to interview preparation and compensation negotiations, we advocate for you throughout your next career move.

Handpicked roles for you