Live startup jobs · refreshed every nightSee all
AspenView Technology Partners, Inc.

Senior GRC & Security Assurance Specialist

SerbiaRemotefull-time

<p style="font-family:"><b><strong style="color:rgb(0,0,0);font-size:12pt;white-space:pre-wrap;">Build the Future with AspenView Technology Partners</strong></b></p><p style="font-family:">At AspenView, we are passionate about transforming the way organizations approach technology. We specialize in creating high-performing, nearshore IT teams to help North American clients innovate faster and more efficiently. As we continue to grow, we're looking for exceptional people to join our team and help drive impactful change across industries.</p><p style="font-family:"><b><strong style="color:rgb(0,0,0);font-size:12pt;white-space:pre-wrap;">Why Join AspenView?</strong></b></p><p style="font-family:">At AspenView, we're more than a nearshore IT partner—we're a <b><strong style="color:rgb(0,0,0);font-size:12pt;white-space:pre-wrap;">people-first, purpose-driven</strong></b> company that believes great culture drives great outcomes. We're passionate about connecting talent and technology to deliver measurable value for clients—and meaningful career paths for our people.</p><h3>Here's what you can expect:</h3><ul data-pattern="discCircleSquare" data-depth="1" style="font-family:"><li style="color:rgb(0,0,0);font-size:12pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Competitive base </li><li style="color:rgb(0,0,0);font-size:12pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Comprehensive benefits and wellness support</li><li style="color:rgb(0,0,0);font-size:12pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Flexible work model: hybrid, remote, or in-office</li><li style="color:rgb(0,0,0);font-size:12pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Real growth opportunities and leadership visibility</li><li style="color:rgb(0,0,0);font-size:12pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Inclusive, respectful culture that blends U.S. innovation with Colombian heart</li><li style="color:rgb(0,0,0);font-size:12pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">A company that listens, invests in you, and celebrates wins together</li></ul><p style="font-family:">The <b><strong style="white-space:pre-wrap;">Senior GRC &amp; Security Assurance Specialist</strong></b> is responsible for designing, implementing, and overseeing the Client's cybersecurity governance framework. This role acts as the bridge between technical security operations and corporate risk management, ensuring that the organization meets the highest global standards of compliance and resilience.</p><p style="font-family:">You will lead the effort to maintain "audit-ready" status across multiple frameworks (ISO, NIST, PCI), while proactively managing third-party risks and ensuring that security policies are not just documents, but operational realities.</p><h3 style="font-family:">What you will do:</h3><p style="font-family:"><b><strong style="white-space:pre-wrap;">Framework Management &amp; Control Mapping</strong></b></p><ul data-pattern="discCircleSquare" data-depth="1" style="font-family:"><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Build, maintain, and optimize control frameworks aligned with <b><strong style="white-space:pre-wrap;">ISO 27001, NIST CSF, PCI DSS, SOC 2, and DORA</strong></b>.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Perform comprehensive <b><strong style="white-space:pre-wrap;">cyber risk assessments</strong></b> and map security controls across diverse business and technical domains.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Lead the creation, review, and enforcement of global security policies, standards, and procedures.</li></ul><p style="font-family:"><b><strong style="white-space:pre-wrap;">Audit Readiness &amp; Assurance Testing</strong></b></p><ul data-pattern="discCircleSquare" data-depth="1" style="font-family:"><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Drive <b><strong style="white-space:pre-wrap;">audit readiness</strong></b> programs, acting as the primary point of contact for internal and external auditors.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Design and execute <b><strong style="white-space:pre-wrap;">assurance testing</strong></b> to validate the effectiveness of technical and administrative security controls.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Identify control gaps and partner with technical teams to develop and track remediation plans.</li></ul><p style="font-family:"><b><strong style="white-space:pre-wrap;">Third-Party &amp; Supply Chain Risk</strong></b></p><ul data-pattern="discCircleSquare" data-depth="1" style="font-family:"><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Execute <b><strong style="white-space:pre-wrap;">Third-Party Risk Management (TPRM)</strong></b> assessments to ensure vendors and partners meet the Client's security requirements.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Develop supply-chain assurance models to mitigate risks associated with software and service providers.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;">Utilize <b><strong style="white-space:pre-wrap;">GRC tooling</strong></b> (e.g., ServiceNow, Archer, OneTrust) to automate risk tracking and compliance reporting.</li></ul><h3 style="font-family:">Tools &amp; Technologies:</h3><ul data-pattern="discCircleSquare" data-depth="1" style="font-family:"><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">GRC Platforms:</strong></b> Proficiency in <b><strong style="white-space:pre-wrap;">ServiceNow GRC, Archer, OneTrust,</strong></b> or LogicGate.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">Frameworks:</strong></b> Deep expertise in <b><strong style="white-space:pre-wrap;">ISO 27001, NIST 800-53/CSF, PCI DSS, and SOC 2</strong></b>.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">Regulations:</strong></b> Familiarity with <b><strong style="white-space:pre-wrap;">DORA, GDPR, and HIPAA</strong></b>.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">Audit Tools:</strong></b> Experience with automated compliance monitoring and evidence collection tools.</li></ul><h3 style="font-family:">What you bring:</h3><ul data-pattern="discCircleSquare" data-depth="1" style="font-family:"><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">6–8+ years</strong></b> of experience in GRC, Information Security Audit, or Cyber Risk Management.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">Certification:</strong></b> CISA, CRISC, CISM, or ISO 27001 Lead Auditor (highly preferred).</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">Strategic Accuracy:</strong></b> Ability to translate complex regulatory requirements into clear, actionable technical controls.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">Communication:</strong></b> Exceptional ability to communicate risk to both technical teams and executive leadership.</li><li style="font-size:11pt;margin:3px 0px;letter-spacing:0.25px;line-height:1.6;"><b><strong style="white-space:pre-wrap;">Analytical Mindset:</strong></b> Expert at identifying patterns of risk and proposing scalable mitigation strategies.</li></ul><p style="font-family:"><b><strong style="color:rgb(0,0,0);font-size:12pt;white-space:pre-wrap;">Equal Opportunity Employer:</strong></b></p><p style="font-family:">AspenView is proud to be an equal opportunity employer. We believe in creating an environment where all employees feel welcome, valued, and empowered to succeed. We celebrate diversity and strive to build a culture of inclusion where all individuals, regardless of their race, color, gender, gender identity or expression, sexual orientation, disability, age, or any other characteristic, can thrive. We encourage applicants from all walks of life to join our team and make a lasting impact.</p><p>Originally posted on <a href="https://himalayas.app">Himalayas</a></p>

Apply with uptayn.

Sign in free to open the apply link, get this role scored against your CV, and track your application.

Sign in to apply
uptayn
2026 · built quietly in Berlin.
uptayn = up + attain
Pages
Built for
  • Recent business grads
  • Engineers pivoting to ops
  • Consultants → startup
  • Second-job operators
Quiet by default
  • No tracking pixels
  • No LinkedIn login
  • No spam outreach
  • Just roles + your CV
© 2026 uptaynAboutPrivacyTermsImpressum