Senior GRC Consultant - Standard Frameworks
SprintoYou'll be redirected to the original listing.
Description
Sprinto is an Autonomous Trust Platform that centralizes trust requirements across security frameworks, vendors, and customers.
Sprinto autonomously executes tasks needed to maintain trust across compliance, audits, risk management, vendor risk, privacy, and AI governance, enabling organizations to maintain a strong, reliable trust posture without draining operational bandwidth and resources on repetitive tasks.
Backed by top-tier investors such as Accel, Elevation, and Blume Ventures, we’ve raised $31.8M in funding to fuel our mission. Trusted by over 3,000 organizations across 75 countries, Sprinto helps organizations stay audit-ready, manage real-time risks, and scale fearlessly. With 300+ native integrations and AI-driven automation, Sprinto supports 200+ global security standards natively, including SOC 2, ISO 27001, GDPR, HIPAA, PCI-DSS, and more. Sprinto’s extensible architecture enables organizations to build and support an infinite number of custom integrations and frameworks.
Founded in 2020 by second-time founders Girish Redekar and Raghuveer Kancherla, Sprinto powers compliance for organizations like Whatfix, Encora, Anaconda, Whatnot, Ultrahuman, WeWork, Everstage, AI Foundation, HackerRank, and many more.
Life as a Sprinter :
Nobody succeeds at Sprinto by staying in their lane.
We are organized around problems, not job titles. Sprinters take ownership beyond their role, solve hard problems, and care deeply about the impact they create. If something can be improved, fixed, or built, we don’t wait for permission; we step in.
Being remote means we rely less on proximity and more on trust. We write things down, communicate openly, and move quickly because great teams aren’t built by sitting together, they’re built by pulling in the same direction.
We believe progress beats perfection, feedback is a gift, and doing the right thing matters, even when nobody is watching.
And while we move with urgency, we never move alone.
The mission of this role :
Owns day-to-day GRC program maturity and delivery for Sprinto’s standard-framework services — the highest-volume, highest-repeatability engine of Trust Assurance. Keeps the standard-framework playbook current, delivers consistently, and is the internal go-to for ISO 27001 / SOC 2 / GDPR / PCI DSS etc. maturity questions across Sales, SE, and CS
Where you’ll Leave Your Mark / Things You’ll Build
Deliver
Own delivery for standard-framework engagements: ISO 27001 (implementation & surveillance), SOC 2 Type I/II readiness, GDPR, PCI DSS compliance programs, gap assessments, control/check mapping, internal audits, policy reviews, audit readiness support.
Run multiple concurrent client engagements to a consistent quality bar without close supervision.
Build reusable IP
Maintain and evolve templates, control-mapping libraries, workshop agendas, and QA rubrics for standard frameworks; keep them current as frameworks revise (ISO 27001:2022 transition-type updates, SOC 2 trust criteria changes, GDPR enforcement guidance).
Extend the library opportunistically to adjacent frameworks (HIPAA, PCI DSS, ISO 42001) as demand grows.
Own commercial outcomes
Define pricing/packaging for standard-framework engagements (fixed-fee tiers, retainer options).
Own utilization, margin, and delivery forecasting for your own engagement book.
Partner with Sales/SE/CS to attach and renew standard-framework services; support deal conversion where technical validation is needed.
…