Cyber GRC Engineer

The Opportunity

"As the Lead for Cybersecurity - Compliance, you will act as a partner between FICO internal security standards and our expanding global supply chain. In this high-impact role, you will lead the charge in supporting multiple audits across both our internal IT landscape and third parties. You will act as a trusted advisor to FICO senior leadership, ensuring that our technical growth remains aligned with our risk appetite and strategy in a data-driven analytics environment".- Cyber Security, Director

What Youll Contribute

• Lead the day-to-day execution of GRC activities including audit coordination, control assessments, risk reviews, and compliance documentation, using AI-assisted tools to increase speed and accuracy.
• Support the implementation and optimization of AI-driven automation for GRC workflows such as evidence collection, questionnaire response management, policy review, and risk scoring.
• Coordinate audit-related tasks to ensure stakeholder readiness for audit testing, facilitate timely resolution of audit findings, and leverage AI tooling to track and report on findings remediation.
• Respond to governance, risk, and compliance inquiries from internal teams and external clients, ensuring professional and timely resolution in alignment with applicable local laws, regulations, and internal policies.
• Develop and maintain GRC reporting dashboards and metrics using data analytics and AI tools to provide leadership with clear, real-time visibility into the risk and compliance posture.
• Partner with regional and global teams to assess and document security risks, contributing to a consistent and transparent risk management process across FICOs operations.
• Monitor activities within assigned IT and business areas to ensure compliance with internal policies, standards, and industry frameworks.
• Assist with the evaluation and governance of AI/ML tools and applications used within FICO, ensuring alignment with security and compliance requirements.
• Contribute to the development of GRC process improvements, playbooks, and automation scripts that enhance team efficiency and reduce reliance on manual processes.
• Assist Corporate Compliance and business functions with compliance and security-related documentation, and provide guidance on GRC matters as a regional subject matter expert.
• Collaborate with global peers to share knowledge, align on standards, and contribute to a culture of continuous improvement within the GRC team.

What Were Seeking

• Bachelors degree in Cyber Security, Computer Science, Information Systems, or a related field.
• 6.5+ years of experience in Cyber Security, focused on GRC.
• Practical experience applying AI, automation, or data analytics tools to GRC, compliance, or security operations use cases.
• Strong understanding of and experience with industry frameworks and standards including PCI DSS, SOC 2, ISO 27001, CSA, and NIST CSF.
• Awareness of AI governance principles and emerging AI regulatory requirements, with a desire to deepen expertise in this area.
• Experience using GRC platforms (e.g., ServiceNow GRC, Archer, OneTrust) and ITSM ticketing systems.
• Familiarity with scripting or data tools (e.g., Python, Power BI, or similar) to support reporting, automation, and AI integration efforts.
• Ability to express technical concepts clearly in business terms and communicate effectively with both technical and non-technical audiences.
• Demonstrated ability to work well under deadlines in a changing environment and manage multiple projects concurrently.
• Desired certifications: CISSP, CISA, CISM, CRISC; AI-related certifications are a plus.
• Ability to build trust and establish strong working relationships with partners across global time zones.
• Excellent written and verbal communication skills in English.

Our Offer to You

• An inclusive culture strongly reflects our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.
• The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences.
• Highly competitive compensation, benefits, and rewards programs that encourage you to bring your best every day and be recognized for doing so.
• An engaging, people-first work environment offering work/life balance, employee with employee resource groups and social events to promote interaction and camaraderie.