Lead GRC Automation Engineer - remote in Romania

Bukarest, Romania

Job Openings Lead GRC Automation Engineer - remote in Romania

About the job Lead GRC Automation Engineer - remote in Romania

Lead GRC Automation Engineer - remote in Romania

The Lead GRC Automation Engineer is responsible for leading a team of GRC Engineers to design, develop, and integrate automated assurance tooling across security and technology environments. This role ensures that security controls are effectively automated, continuously monitored, and aligned with industry standards. The position requires a hands-on leader with strong technical expertise, a passion for automation, and the ability to collaborate across security, risk, compliance, and technology teams.

Key Responsibilities

- Lead a team of GRC Engineers to design, develop, and integrate advanced tooling and technologies for automated security control assurance.
- Ensure seamless implementation and configuration of toolsets with internal systems and applications.
- Act as the source of automation and engineering-led thinking for control assessment, evidence collection, and reporting.
- Integrate automated assurance platforms with workflow tools such as Jira and Slack.
- Maintain, optimize, and enhance automated assurance toolsets to ensure efficiency and effectiveness.
- Manage regular updates, feature integrations, and continuous improvements.
- Implement automated solutions to mitigate potential threats and vulnerabilities.
- Identify opportunities for control uplift and automation across Cybersecurity and wider Technology infrastructure.
- Ensure compliance with relevant standards (e.g., NIST CSF, ISO 27001) through automation.
- Collaborate with IT, Security, Risk & Compliance, Internal Controls, and Audit teams to ensure tooling meets organizational needs.
- Train staff on the use and benefits of automated assurance tools.
- Monitor the effectiveness of automated controls and drive continuous improvements.
- Create and maintain comprehensive documentation for configuration, usage, and maintenance.
- Generate regular reports and dashboards on tool effectiveness, compliance status, and risk posture.
- Utilize automation to identify, assess, and mitigate cybersecurity risks.

Must-Have Qualifications

- Proven experience leading teams of GRC engineers, developers, or security engineers.
- Strong problem-solving and analytical skills for complex challenges.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation.
- Experience integrating and managing security tooling.
- Knowledge of industry standards such as NIST CSF, ISO 27001, PCI-DSS.
- Strong project management skills (planning, execution, monitoring).
- Excellent interpersonal, communication, and leadership skills.
- Ability to thrive in fast-paced, dynamic environments.

Nice-to-Have

- Expertise in automated assurance tools.
- Experience in Cyber controls assurance (advisory, audit, or compliance roles).
- Familiarity with GRC tools.
- Experience with technologies such as AWS, ServiceNow, Jira, Okta, CrowdStrike.
- Additional AWS expertise (Lambda functions, SCPs, CloudFormation, Config, SecurityHub).
- Experience in proof-of-value (POV) exercises for cybersecurity tooling.