Broadsign

1 Job

329 Employees

About the Company

We believe in a world where bold creativity inspires bright ideas. Where screens drive growth, build excitement and prompt innovation. Where digital interactions inspire conversations and connect communities. Where digital and real-life experiences collide. We're making it easier than ever for publishers, agencies and brands to harness the power of digital out-of-home and connect with audiences across the globe. Lighting up airports, shopping malls, health clinics, street corners and more, our platform powers screens at the heart of people's lives.

Listed Jobs

Company Name: Broadsign
Job Title: Senior GRC & Security Specialist
Job Description: **Job Title:** Senior GRC & Security Specialist **Role Summary** Lead security governance, risk, and compliance initiatives with a focus on audit management, third-party security, and automation. Shape and execute security assurance programs to ensure regulatory compliance and operational resilience. **Expectations** - Minimum 5 years in GRC, Information Security, or IT Audit roles with security compliance expertise. - Proven leadership in SOC 1/2 audit execution, audit remediation, and third-party security assessments. - Demonstrated proficiency in automating GRC/S processes and optimizing workflow efficiency. - Expert knowledge of security frameworks (e.g., NIST, ISO 27001) and regulatory standards. - Strong communication skills to articulate compliance and security concepts to stakeholders. **Key Responsibilities** - Chair SOC 1/2 audits, coordinate evidence collection, and oversee remediation of findings. - Manage third-party security program responses, vendor assessments, and centralized repository maintenance. - Automate GRC tasks (evidence gathering, reporting) and enhance tools (e.g., Vanta, Drata, Archer). - Contribute to GRC/S strategy development and provide mentorship to cross-functional teams. **Required Skills** - SOC audit expertise (planning, execution, remediation). - Third-party security questionnaire management and vendor risk assessment. - GRC/S automation tools implementation (e.g., cloud-based platforms). - Security frameworks and compliance standards (NIST, ISO 27001, SOC). - Analytical problem-solving with risk-mitigation focus in fast-paced environments. - Proficiency in cloud security principles (AWS, Azure, GCP). - ITIL-aligned process knowledge and change management practices. **Required Education & Certifications** - Bachelor’s degree in Information Security, Computer Science, or related field. - Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or equivalent (CRISC, CISSP).