Governance, Risk & Compliance (GRC) Manager

Zenwork stands at the forefront of cloud / API-based Tax Automation and Governance, Risk Compliance (GRC) technology, pioneering the future of Tax Tech and GRC Automation. Our comprehensive suite of top-tier AI-SaaS solutions serve a vast clientele of over 500,000, providing effortless tax automation through our APIs for major enterprises. In terms of numbers, during the tax year 2022, we have reported over $413 Billion to the Internal Revenue Service, spanning over 30 million transactions for some of the globe's leading and most forward-thinking firms. As a rapidly expanding digital compliance AI-SaaS Product company, Zenwork boasts a customer base that spans all sizes, partnering with industry giants like Intuit, Bill.com, Xero, and Sage Intacct. Recognized as one of the fastest-growing companies in the U.S. by Inc magazine and a consecutive Accountex award recipient, Zenwork has garnered significant acclaim.

Backed by Spectrum Equity Partners, Zenwork has successfully raised over $163M in funding, maintaining profitability as a late-stage entity with operations in both the U.S. and India.

Role Overview :

We are seeking a Governance, Risk & Compliance (GRC) Manager to drive Zenwork’s compliance programs, manage external certifications (SOC, ISO), support customer assurance processes, and ensure organization-wide security governance. The ideal candidate will have a strong background in audits, policy management, risk assessment, and fraud risk in payment products.

What You’ll Do :

Audit & Certification Management

Lead SOC 2, ISO 27001, and other relevant audits.

Coordinate with external auditors, regulators, and certification bodies.

Maintain compliance documentation and evidence.

Customer & Regulatory Compliance

Respond to customer security questionnaires and due diligence requests.

Review and support Data Protection Agreements (DPAs).

Ensure ongoing compliance with data protection and privacy regulations.

Governance & Policy Management

Develop, update, and enforce information security and compliance policies.

Drive company-wide security awareness and compliance training programs.

Monitor adherence to internal controls and compliance frameworks.

Risk & Fraud Management

Conduct risk assessments across business units and products.

Identify and mitigate fraud risks in Zenwork’s Payments product.

Apply AI / ML-driven techniques for fraud detection, anomaly identification, and transaction monitoring.

Align risk management practices with frameworks (ISO 27005, NIST, etc.).

AI & Automation in GRC

Evaluate and implement AI-based tools for compliance monitoring, document reviews, and reporting.

Leverage AI to automate repetitive compliance tasks (e.g., customer questionnaires, policy reviews).

Drive innovation in security operations through intelligent automation.

Collaboration & Stakeholder Management

Work closely with Product, Engineering, Legal, and Operations teams.

Act as a bridge between internal stakeholders and external auditors / customers.

Provide regular compliance and risk reporting to leadership.

Qualifications & Skills

Education :

Bachelor’s degree in commerce (B.Com), Information Security, or related field.

Professional qualifications such as CPA, CISA, CISM, or CRISC are highly valued

Master’s degree in information security, Risk Management, or MBA (preferred).

Certifications (preferred) :

CISA (Certified Information Systems Auditor)

CISM (Certified Information Security Manager) or CRISC (Certified in Risk and Information Systems Control)

Experience :

5-7 years in information security, risk, compliance, or audit roles.

Strong experience with SOC 2, ISO 27001, and regulatory compliance.

Exposure to fraud risk management in payments / fintech (preferred).

Proven track record of policy drafting, training, and compliance program management.

Skills :

Strong knowledge of security and compliance frameworks (ISO, NIST, SOC).

Excellent communication skills to handle customer and auditor interactions.

Analytical mindset with the ability to identify and mitigate risks.

Project management and cross-functional collaboration capabilities.

Why Join Zenwork?

Opportunity to build and mature GRC practices in a fast-growing compliance tech company.

Work on impactful products that enable organizations to remain secure and compliant.

Collaborate with a passionate team that values innovation, integrity, and trust.

Competitive compensation, benefits, and professional development support.