We are seeking an Information Security GRC Engineer to manage our governance, risk, and compliance programs. The ideal candidate will have a strong understanding of information security principles, regulatory requirements, and risk management frameworks.

Key Responsibilities:
* Develop and maintain information security policies and procedures.
* Conduct risk assessments and vulnerability analyses.
* Ensure compliance with relevant regulations and standards (e.g., ISO 27001, GDPR).
* Manage security audits and penetration testing activities.
* Provide security awareness training to employees.

Required Skills:
* Experience with information security frameworks (e.g., NIST, ISO 27001).
* Strong understanding of risk management principles.
* Familiarity with regulatory requirements (e.g., GDPR, PCI DSS).
* Excellent communication and interpersonal skills.