Cyber GRC Engineer

The Opportunity
"As the Lead for Cybersecurity - Compliance, you will act as a partner between FICO internal security standards and our expanding global supply chain. In this high-impact role, you will lead the charge in supporting multiple audits across both our internal IT landscape and third parties. You will act as a trusted advisor to FICO senior leadership, ensuring that our technical growth remains aligned with our risk appetite and strategy in a data-driven analytics environment".- Cyber Security, Director

What You’ll Contribute
Lead the day-to-day execution of GRC activities including audit coordination, control assessments, risk reviews, and compliance documentation, using AI-assisted tools to increase speed and accuracy.
Support the implementation and optimization of AI-driven automation for GRC workflows such as evidence collection, questionnaire response management, policy review, and risk scoring.
Coordinate audit-related tasks to ensure stakeholder readiness for audit testing, facilitate timely resolution of audit findings, and leverage AI tooling to track and report on findings remediation.
Respond to governance, risk, and compliance inquiries from internal teams and external clients, ensuring professional and timely resolution in alignment with applicable local laws, regulations, and internal policies.
Develop and maintain GRC reporting dashboards and metrics using data analytics and AI tools to provide leadership with clear, real-time visibility into the risk and compliance posture.
Partner with regional and global teams to assess and document security risks, contributing to a consistent and transparent risk management process across FICO’s operations.
Monitor activities within assigned IT and business areas to ensure compliance with internal policies, standards, and industry frameworks.
Assist with the evaluation and governance of AI/ML tools and applications used within FICO, ensuring alignment with security and compliance requirements.
Contribute to the development of GRC process improvements, playbooks, and automation scripts that enhance team efficiency and reduce reliance on manual processes.
Assist Corporate Compliance and business functions with compliance and security-related documentation, and provide guidance on GRC matters as a regional subject matter expert.
Collaborate with global peers to share knowledge, align on standards, and contribute to a culture of continuous improvement within the GRC team.
What We’re Seeking
Bachelor’s degree in Cyber Security, Computer Science, Information Systems, or a related field.
6.5+ years of experience in Cyber Security, focused on GRC.
Practical experience applying AI, automation, or data analytics tools to GRC, compliance, or security operations use cases.
Strong understanding of and experience with industry frameworks and standards including PCI DSS, SOC 2, ISO 27001, CSA, and NIST CSF.
Awareness of AI governance principles and emerging AI regulatory requirements, with a desire to deepen expertise in this area.
Experience using GRC platforms (e.g., ServiceNow GRC, Archer, OneTrust) and ITSM ticketing systems.
Familiarity with scripting or data tools (e.g., Python, Power BI, or similar) to support reporting, automation, and AI integration efforts.
Ability to express technical concepts clearly in business terms and communicate effectively with both technical and non-technical audiences.
Demonstrated ability to work well under deadlines in a changing environment and manage multiple projects concurrently.
Desired certifications: CISSP, CISA, CISM, CRISC; AI-related certifications are a plus.
Ability to build trust and establish strong working relationships with partners across global time zones.
Excellent written and verbal communication skills in English.

Our Offer to You
An inclusive culture strongly reflects our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.
The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences.
Highly competitive compensation, benefits, and rewards programs that encourage you to bring your best every day and be recognized for doing so.
An engaging, people-first work environment offering work/life balance, employee with employee resource groups and social events to promote interaction and camaraderie.