Compliance Lead (GRC)

Company DescriptionBETSOL is a cloud-first digital transformation and data management company offering products and IT services to enterprises in over 40 countries. BETSOL team holds several engineering patents, is recognized with industry awards, and BETSOL maintains a net promoter score that is 2x the industry average. BETSOL’s open source backup and recovery product line, Zmanda (Zmanda.com), delivers up to 50% savings in total cost of ownership (TCO) and best-in-class performance. BETSOL Global IT Services (BETSOL.com) builds and supports end-to-end enterprise solutions, reducing time-to-market for its customers.Learn more at betsol.comJob DescriptionBETSOL is looking for a Compliance Lead for our Governance, Risk, and Compliance (GRC) team. The Compliance Lead drives the design, implementation, and ongoing maturity of the organization’s compliance framework across IT and business functions. This role ensures adherence to regulatory, contractual, and industry-standard requirements, coordinates internal and external audits, and maintains a strong control environment that supports customer and regulatory expectations.Key ResponsibilitiesOwn the compliance program covering security, privacy, and IT controls aligned to frameworks such as ISO 27001, ISO 9001, PCI DSS, HIPAA, SOC 2 Type II, and GDPRMaintain compliance policies, standards, and procedures; oversee version control, approvals, and organization-wide adoption. Conduct periodic control testing and evidence collection, track remediation plans, and validate closure. Coordinate external audits and certification assessments, including readiness reviews, audit scheduling, and artifact preparation. Lead internal compliance assessments and governance reviews for high-risk functions and core platforms. Manage compliance exceptions, deviations, and risk acceptance processes with clear documentation and approvals. Support vendor and third-party risk assessments to ensure regulatory and contractual compliance. Partner with Security, IT, Engineering, HR, and Legal to implement controls, resolve gaps, and design long-term improvements. Deliver compliance training and awareness programs. Maintain dashboards, KPIs, and audit-ready documentation for leadership and auditors. QualificationsQualificationsBachelor’s degree in computer science or equivalent, Information Security, or related field (master’s preferred)5–8 years of experience in IT compliance, security governance, GRC, or audit. Hands-on exposure to ISO 27001, SOC 2, or similar assurance frameworks. Strong understanding of policies, access governance, incident management, vulnerability management, change control, and vendor security. Experience preparing audit evidence and working with external assessors. Excellent documentation, stakeholder management, and communication skills. Preferred Certifications: CISSP, CISA, or CRISC, ISO 27001 Lead Auditor/Implementer, CGRC, PCI QSA, SOC 2 Practitioner, CCSP