Senior Security Engineer, GRC (Governance, Risk and Compliance)

Our Mission :

6sense is on a mission to revolutionize how B2B organizations create revenue by predicting customers most likely to buy and recommending the best course of action to engage anonymous buying teams. 6sense Revenue AI is the only sales and marketing platform to unlock the ability to create, manage and convert high-quality pipeline to revenue.

Our People :

People are the heart and soul of 6sense. We serve with passion and purpose. We live by our Being 6sense values of Accountability, Growth Mindset, Integrity, Fun and One Team. Every 6sensor plays a part in dening the future of our industry-leading technology. 6sense is a place where difference-makers roll up their sleeves, take risks, act with integrity, and measure success by the value we create for our customers.

We want 6sense to be the best chapter of your career.

As members of 6sense's Security department, the Governance, Risk and Compliance (GRC) team aligns Security with business objectives while managing risks and meeting industry standards, regulations, and contractual obligations. GRC enforces governance, implements risk management strategies, and ensures compliance through operating as the second line of defense.

Responsibilities & Accountabilities

Execute on milestones for end-to-end GRC initiatives in accordance with the Security roadmap

Lead internal and external audit engagements

Oversee and execute complex control tests, third-party and operational security risk assessments, and communicate results across multiple audiences with varying levels of sensitivity

Develop issue and risk treatment plans with owners and test remediation for closure

Design high-quality test plans and improve security control test activities through peer reviews that provide feedback and guidance to other GRC Engineers

Provide GRC technology administration to include user training

Mature security governance, training, and awareness programs

Improve GRC handbook pages, procedures, and playbooks and maintain security program controlled documents

Design GRC control automation and implement security GRC-related automation tasks

Execute on quarterly individual Key Results that support team Objectives (OKRs)

Performance Measurement

Maintains up-to-date knowledge of 6sense's product, environment, systems, and architecture

Actively prepares for weekly 1 : 1s with Manager and monthly skip levels

Drives remediation of security risks and threats

Adheres to strict deadlines and SLAs

Participates in creation of milestones associated with major security projects

Executes on milestones associated with major security projects

Develops and maintains up-to-date handbook pages, runbooks, workflows, and dashboards

Provides project status updates on a weekly basis

Administers GRC technology

Educational and Experience Requirements

5+ years of experience being part of a GRC or similar team

1+ years of experience developing automation

Experience with security tools and cloud environments (e.g., GRC, Vulnerability Scanners, SIEM, SOAR, AWS)

Experience with industry frameworks, regulations, and standards, such as : ISO 27001, SOC 2, GDPR, PCI, SOX, NIST, etc.

Preferred Qualifications

Big 4 (KPMG, Deloitte, PwC, EY) or similar experience

Bachelor's degree in a related field

Relevant industry certifications, such as CISSP, CISM, or GIAC, are highly desirable

Competencies and Behaviors

Evangelizes security best practices

Works independently to maintain and improve overall company security posture

Collaborates with cross-functional teams

Translates technical requirements into actionable and timebound requests

Drives projects and tasks to completion by following up on questions, deadlines, and requests for input

Maintains accuracy of information

Proactive prioritization and escalation to management

Strong communication skills, including verbal, written, and presentation skills

Our Benefits :

Full-time employees can take advantage of health coverage, paid parental leave, generous paid time-off and holidays, quarterly self-care days off, and stock options. We'll make sure you have the equipment and support you need to work and connect with your teams, at home or in one of our oces.

We have a growth mindset culture that is represented in all that we do, from onboarding through to numerous learning and development initiatives including access to our LinkedIn Learning platform. Employee well-being is also top of mind for us. We host quarterly wellness education sessions to encourage self care and personal growth. From wellness days to ERG-hosted events, we celebrate and energize all 6sense employees and their backgrounds.

Equal Opportunity Employer :

6sense is an Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to

We are aware of recruiting impersonation attempts that are not affiliated with 6sense in any way. A ll email communications from 6sense will originate from the @6sense.com domain . We will not initially contact you via text message and will never request payments . If you are uncertain whether you have been contacted by an official 6sense employee, reach out to

Skills Required

Siem, Aws, Sox, Gdpr, Grc, Iso 27001, SOAR, Pci, nist