GRC Security Expert

namename·Remote(Ukraine)
Cybersecurity
Excel

WFA Digital Insight

As the demand for cybersecurity experts grows, with a 25% increase in job postings in 2025, companies are looking for skilled professionals to lead their security governance, risk, and compliance efforts. Playtech, a leading technology company in the gaming industry, is no exception. With the rise of remote work, the need for robust security measures has never been more pressing. In this role, you'll have the opportunity to work with a global team and develop your skills in security audits, compliance, and risk management. Before applying, consider your experience in security governance, risk, and compliance, as well as your ability to work independently in a fast-paced environment.

Job Description

About the Role

The GRC Security Expert will play a crucial role in defining, establishing, and implementing organizational information security processes to ensure business, regulatory, legislative, and contractual requirements are met. This is a key position that requires strong management skills, leading people, delegating tasks, and setting goals. The ideal candidate will have experience in leading PCI DSS, ISO 27001, and SOC/ISAE402 certification and surveillance audits, as well as leading and supporting information security risk assessments and management processes.

The role will involve working closely with stakeholders across the organization to monitor the effectiveness of controls and corrective actions. The successful candidate will also be responsible for developing content, coordinating, and facilitating a comprehensive organizational information security awareness training program. This is an excellent opportunity to join a global security team and work with a company that values initiative-taking, confident approach, and constant learning and development.

The GRC Security Expert will be part of the Governance Risk & Compliance Unit, which views every challenge as a stepping stone towards innovation and growth. The company is looking for individuals who are not just curious but also thrive in team environments. If you have a passion for exploring new cybersecurity frameworks and solutions, then this is the role for you.

What You Will Do

  • Define, establish, and implement organizational information security processes
  • Manage internal and external ISMS audit processes
  • Monitor the effectiveness of controls and corrective actions
  • Develop content, coordinate, and facilitate a comprehensive organizational information security awareness training program
  • Manage security requirements with third parties, including due diligence of products and services providers
  • Develop, coordinate, and maintain information security policies, procedures, and other security-related documents
  • Analyze, map, and communicate information security requirements that derive from legislative and regulatory obligations
  • Serve as project manager/lead within security projects
  • Continually improve and update knowledge to accommodate changes to the company’s regulatory environment and needs
  • Coordinate external security audits, assessments, and testing, as well as remediation plans development and implementation
  • Identify, assess, and monitor information security risks and recommend mitigation measures

What We Are Looking For

  • Proven experience (3+ years) across security governance, risk, and compliance domain
  • Strong communication skills and ability to interact professionally with a diverse group, including executive management, managers, and subject matter experts
  • Strong management skills, leading people, delegating tasks, setting goals, and ensuring objectives are met in continuous and deadline-oriented activities
  • Experience in leading PCI DSS, ISO 27001, and SOC/ISAE402 certification and surveillance audits
  • Bachelor’s Degree in Information Security, Information Assurance, Computer Science, Cybersecurity, Risk Management, or equivalent work experience
  • Professional certification (CISSP/CISM and ISO 27001 Lead Implementer/Auditor or similar)
  • A pro-active, self-motivated approach and ability to work independently within a global security team
  • Very good written and spoken English

Nice to Have

  • Prior experience working within a SaaS/Online Gambling organization
  • Technical experience in IT infrastructure, networks, databases, or software development
  • Experience with security awareness training programs
  • Knowledge of regulatory requirements and compliance frameworks

Benefits and Perks

  • Competitive salary and benefits package
  • Opportunity to work with a global security team
  • Constant learning and development opportunities
  • Active lifestyle and mental well-being support
  • Fun and engaging company events
  • Remote work options and flexible working hours
  • Access to cutting-edge technology and tools
  • Collaborative and inclusive work environment

How to Stand Out

  • Make sure you have a strong understanding of security governance, risk, and compliance frameworks, including PCI DSS and ISO 27001.
  • Highlight your experience in leading security audits and risk assessments in your application.
  • Be prepared to provide examples of how you have managed security requirements with third parties.
  • Show your ability to work independently and pro-actively in a fast-paced environment.
  • Consider obtaining professional certifications, such as CISSP or CISM, to increase your chances of getting hired.
  • Research the company's regulatory environment and be prepared to discuss how you would accommodate changes to the company’s regulatory needs.
  • Be ready to provide examples of your experience with security awareness training programs and your ability to develop content and facilitate training sessions.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.