# Senior GRC Lead **Company**: Brex **Location**: Vancouver, British Columbia **Work arrangement**: hybrid **Experience**: senior **Job type**: full-time **Salary**: $153,600 - $192,000 CAD **Category**: IT **Industry**: Finance **Apply**: https://job-boards.greenhouse.io/brex/jobs/8541251002?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply **Canonical**: https://yubhub.co/jobs/job_33c1535e-111 ## Description Brex is seeking a Senior GRC Lead to drive critical GRC processes that mitigate risk, keep the company compliant, and build trust with customers and partners. The successful candidate will evolve the technical foundation of Brex's Trust program by automating security controls, building integrations between security tools and GRC platforms, and creating scalable processes that enable Brex to maintain compliance efficiently as it expands into new markets. Responsibilities: - Drive critical GRC processes that mitigate risk and keep Brex compliant - Evolve the technical foundation of Brex's Trust program - Automate security controls and build integrations between security tools and GRC platforms - Create scalable processes that enable Brex to maintain compliance efficiently - Support Trust Assurance, Third Party Risk Management, and other Security Risk Management initiatives - Translate regulatory requirements into technical solutions and build automation that eliminates manual toil Requirements: - 5+ years of experience in GRC, IT Governance, or Security Engineering - Deep experience with security frameworks such as SOC 2, PCI DSS, ISO 27001, and NIST CSF - Technical proficiency in Python and experience building integrations using APIs - Builder mindset with the ability to design and implement automated control testing and continuous monitoring - Exceptional cross-functional collaboration and communication skills The expected salary range for this role is $153,600 - $192,000 CAD. ## Skills ### Required - GRC - IT Governance - Security Engineering - Python - API integration - SOC 2 - PCI DSS - ISO 27001 - NIST CSF ### Nice to have - Tines - SOAR platforms - AI/ML governance frameworks - Cloud Security - AWS/GCP - infrastructure-as-code - Terraform - DevSecOps practices - CISSP - CISA - CCSP --- Source: [Apply at job-boards.greenhouse.io](https://job-boards.greenhouse.io/brex/jobs/8541251002?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply)