Sprinto Logo

Sprinto

Senior GRC Consultant - Standard Frameworks

Posted 3 Days Ago
Be an Early Applicant
Remote
Hiring Remotely in India
Senior level
Remote
Hiring Remotely in India
Senior level
Lead day-to-day GRC program delivery for standard-framework services (ISO 27001, SOC 2, GDPR, PCI DSS). Run multiple client engagements, maintain and evolve templates and control-mapping libraries, define pricing and commercial outcomes, build AI-assisted playbooks and QA guardrails, and ensure audit readiness and quality metrics.
The summary above was generated by AI

Sprinto is an Autonomous Trust Platform that centralizes trust requirements across security frameworks, vendors, and customers.

Sprinto autonomously executes tasks needed to maintain trust across compliance, audits, risk management, vendor risk, privacy, and AI governance, enabling organizations to maintain a strong, reliable trust posture without draining operational bandwidth and resources on repetitive tasks.

Backed by top-tier investors such as Accel, Elevation, and Blume Ventures, we’ve raised $31.8M in funding to fuel our mission. Trusted by over 3,000 organizations across 75 countries, Sprinto helps organizations stay audit-ready, manage real-time risks, and scale fearlessly. With 300+ native integrations and AI-driven automation, Sprinto supports 200+ global security standards natively, including SOC 2, ISO 27001, GDPR, HIPAA, PCI-DSS, and more. Sprinto's extensible architecture enables organizations to build and support an infinite number of custom integrations and frameworks.

Founded in 2020 by second-time founders Girish Redekar and Raghuveer Kancherla, Sprinto powers compliance for organizations like Whatfix, Encora, Anaconda, Whatnot, Ultrahuman, WeWork, Everstage, AI Foundation, HackerRank, and many more.

Life as a Sprinter : 

Nobody succeeds at Sprinto by staying in their lane.

We are organized around problems, not job titles. Sprinters take ownership beyond their role, solve hard problems, and care deeply about the impact they create. If something can be improved, fixed, or built, we don't wait for permission; we step in.

Being remote means we rely less on proximity and more on trust. We write things down, communicate openly, and move quickly because great teams aren't built by sitting together, they're built by pulling in the same direction.

We believe progress beats perfection, feedback is a gift, and doing the right thing matters, even when nobody is watching.

And while we move with urgency, we never move alone.

The mission of this role : 

Owns day-to-day GRC program maturity and delivery for Sprinto's standard-framework services — the highest-volume, highest-repeatability engine of Trust Assurance. Keeps the standard-framework playbook current, delivers consistently, and is the internal go-to for ISO 27001 / SOC 2 / GDPR / PCI DSS etc. maturity questions across Sales, SE, and CS

Where you'll Leave Your Mark / Things You'll Build

    Deliver

  • Own delivery for standard-framework engagements: ISO 27001 (implementation & surveillance), SOC 2 Type I/II readiness, GDPR, PCI DSS compliance programs, gap assessments, control/check mapping, internal audits, policy reviews, audit readiness support.

  • Run multiple concurrent client engagements to a consistent quality bar without close supervision.

  • Build reusable IP

  • Maintain and evolve templates, control-mapping libraries, workshop agendas, and QA rubrics for standard frameworks; keep them current as frameworks revise (ISO 27001:2022 transition-type updates, SOC 2 trust criteria changes, GDPR enforcement guidance).

  • Extend the library opportunistically to adjacent frameworks (HIPAA, PCI DSS, ISO 42001) as demand grows.

  • Own commercial outcomes

  • Define pricing/packaging for standard-framework engagements (fixed-fee tiers, retainer options).

  • Own utilization, margin, and delivery forecasting for your own engagement book.

  • Partner with Sales/SE/CS to attach and renew standard-framework services; support deal conversion where technical validation is needed.

  • AI-enabled productization

  • Build and maintain AI-assisted playbooks for standard frameworks (gap assessment, control mapping, internal audit checklists).

  • Define structured input forms/checklists so juniors or AI-assisted workflows produce consistent first-draft output.

  • Set QA guardrails: mandatory source inputs, validation steps, human approval gates.

  • Quality & risk

  • Establish acceptance criteria and review checkpoints for deliverables.

  • Flag scope creep early; escalate ambiguous liability questions rather than absorbing them silently.

The kind of builder we're looking For

    Experience

  • 5+ years in GRC/security consulting or in-house compliance program ownership.

  • Hands-on delivery track record across ISO 27001, SOC 2, and GDPR at minimum.

  • Comfortable running several concurrent client engagements.

  • Domain mastery

  • Deep: ISO 27001, SOC 2 Type I/II, GDPR.

  • Working knowledge (nice to have): PCI DSS, HIPAA, ISO 42001 etc

  • AI-enabled workflow proficiency

  • Demonstrated use of AI tools to reduce manual effort and standardize deliverables.

  • Able to translate domain expertise into reusable templates and guided systems.

  • Operator strengths

  • Can own pricing/packaging, margin, and utilization for their own book without a manager doing it for them.

  • Strong written communication; confident running client workshops solo.

  • Good judgment in ambiguity, without scope creep.

  • Preferred

  • ISO 27001 LA/LI, CISA, or CISM.

  • Success metrics
  • Utilization % and gross margin on standard-framework engagements.

  • QA pass rate, rework rate, deliverable cycle time (benchmarked against standard-framework norms — weeks, not months).

  • Customer satisfaction (CSAT) on delivered engagements.

  • Attach rate for standard-framework services; playbook reuse rate.

You will enjoy Sprinto if

  • Stepping in before someone has to step up.

  • Wearing multiple hats without counting them.

  • Leaving egos at the door and winning as one team.

  • Taking the harder right over the easier wrong.

  • Shipping, learning, repeating.

  • Staying curious and never staying in your lane.

How we care for our Sprinters

  • Work wherever you are: We are 100% remote, so you get to choose if you want to work from home, a cafe, the hills, or the beach.

  • Co-working, on the house: If co-working is your jam, we offer a generous annual allowance.

  • We care about your learning: We are invested in seeing you grow and commit USD 1,000 annually to help you level up your skills.

  • We count your spark, not your leaves: Unlimited leave so you can reset when you need to.

  • Your Safety Net, Woven In: Health insurance with coverage up to INR 10 lakh for you and your family, accident protection of an additional INR 10 lakh, and life insurance worth 3x your annual salary.

  • Workspace setup of your dreams: We chip in INR 35,000 to help you build a setup that works for you

Inclusion & Diversity -
Sprinto is an equal opportunity employer and does not discriminate on the basis of race, colour, religion, gender, sexual orientation, age, disability, or any other protected status. You are welcome at Sprinto for who you are, and we encourage you to bring your complete selves to work. Our culture is built on the strength of diverse thinking — when people with different perspectives, ideas, and ways of solving problems come together, it fuels collaboration and accelerates our mission.
 
At Sprinto, we are passionate about inclusivity and making sure our entire recruitment process is accessible to everyone. Please share your request for reasonable accommodations at any stage of the application or interview process; we want to ensure everyone feels heard and seen.

Similar Jobs

9 Hours Ago
Remote
India
Expert/Leader
Expert/Leader
Cloud • Information Technology • Productivity • Software • Automation
As a Technical Architect, lead the development of enterprise solution architectures, design integration solutions, and ensure best practices for Boomi products.
Top Skills: Ai AutomationArchimateAWSAzureBoomi AtomsphereCobitDockerGCPGroovyJavaJavaScriptJSONKubernetesLlmsNoSQLRagRestSafeSoapSQLTogafXMLZachman
9 Hours Ago
Remote
India
Expert/Leader
Expert/Leader
Cloud • Information Technology • Productivity • Software • Automation
The Technical Architect leads the development of enterprise solution architecture, evaluating integration requirements, providing infrastructure recommendations, and promoting best practices for Boomi products.
Top Skills: ArchimateAtomsphere Integration PlatformAWSAzureCobitDockerGCPGroovyJavaJavaScriptJmsKubernetesMdh Master Data ManagementNoSQLSafeSQLTogafZachman
9 Hours Ago
Remote
India
Mid level
Mid level
Cloud • Information Technology • Productivity • Software • Automation
The Reporting and Analytics Advisor is responsible for managing reporting, dashboards, and data visualization for internal clients, utilizing Power BI and SQL to create impactful analytics and streamline data processes.
Top Skills: DaxPower BISnowflake Data CloudSQL

What you need to know about the Chennai Tech Scene

To locals, it's no secret that South India is leading the charge in big data infrastructure. While the environmental impact of data centers has long been a concern, emerging hubs like Chennai are favored by companies seeking ready access to renewable energy resources, which provide more sustainable and cost-effective solutions. As a result, Chennai, along with neighboring Bengaluru and Hyderabad, is poised for significant growth, with a projected 65 percent increase in data center capacity over the next decade.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account