GRC Specialist (SOC 2 / NIST / ISO 27001)

Role : Advisory(GRC)-L2 / L3

Location : Hyderabad-WFO

Number of roles : 3

Experience : 4–6 (L2) years or 5-8 years (L3)

Notice Period : Immediate preferred; 30 days.

Join NopalCyber’s advisory team to help shape resilient cybersecurity practices for global clients. We're looking for a GRC professional with hands-on experience in SOC 2 (Type 1 & 2), NIST CSF / SP 800-53, and ISO 27001. This role offers the opportunity to lead compliance efforts, conduct audits, and build policy frameworks in a fast-paced, client-focused environment.

What You’ll Do :

• Lead and support audits and gap assessments for SOC 2, ISO 27001, and NIST
• Draft and maintain security policies, procedures, and compliance documentation
• Conduct third-party risk assessments and prepare audit-ready evidence
• Report compliance metrics to internal and external stakeholders

What We’re Looking For :

Job Statement :

NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven intelligence in our Nopal360° platform, our NopalGo mobile app, and our proprietary Cyber Intelligence Quotient (CIQ) lets anyone quantify, track, and visualize their cybersecurity posture in real-time. Our service packages, which are each tailored to a client’s needs and budget, and external threat analysis, which provides critical intelligence at no-cost, help to democratize cybersecurity by making enterprise-grade defenses and security operations available to organizations of all sizes. NopalCyber lowers the barrier to entry while raising the bar for security and service.