Senior Security GRC Specialist

Sapiens is on the lookout for a Senior Security GRC Specialist to become a key player in our Polish team. If you're a Senior Security GRC Specialist and ready to take your career to new heights with an established, globally successful company, this role could be the perfect fit.

Location: Poland, Hybrid (Szczecin. Katowice, Gdynia, Warszawa)

Working Model: Our flexible work arrangement combines both remote and in-office work, optimizing flexibility and productivity.

This position will be part of Sapiens’ CTIO division.

What you’ll do

• Develop, implement, and maintain GRC frameworks and policies. Conduct risk assessments, prioritize risks and lead reviews with stakeholders to ensure effective mitigation.
• Ensure compliance with SOC 2, ISO 27001, NIST and other relevant standards. Stay updated on regulatory changes and assess their impact on business operations. Maintain compliance documentation and controls.
• Lead and support internal and external audit efforts, coordinate with auditors, prepare materials, and track findings through resolution. Monitor remediation activities to close compliance gaps.
• Prepare risk and compliance reports, highlight key risks and trends, and maintain documentation such as risk registers and audit logs.
• Work closely with IT, Legal, HR, and Product teams to align on risk management initiatives. Provide GRC training and support security awareness programs. Assist in designing business continuity and incident response plans.
• Continuously enhance risk management processes, implement automation, and support the adoption of GRC tools to streamline compliance efforts.

• Stable employment – permanent job contract 
• Flexible working hours to help you keep the work-life balance and find time for your hobbies 
• Partnership approach & communication respecting individual needs and employee development plan ideas 
• Possibility to gain professional experience and learn from global industry experts 
• Stable project & diversified working environment 
• Periodical events and contests for employees (business runs, paintball, etc.) 
• Private medical healthcare & Multisport card 
• IT-specific, friendly dress code that you will become a fan of 
• Attractive employee referral program and bonuses 

• Bachelor’s degree in business, IT, Risk Management or equivalent experience.
• 4+ years in GRC, risk management and compliance (must), preferably in a technology-driven environment.
• Strong knowledge of SOC 2, ISO 27001 (must), NIST and risk management frameworks.
• Experience in conducting risk assessments, audits and control testing - must
• Familiarity with GRC tools; CISA/CISM or equivalent certifications - Advantage.
• Strong initiative, problem-solving skills and excellent communication in English.

About Sapiens

Sapiens International Corporation (NASDAQ and TASE: SPNS) is a global leader in intelligent insurance software solutions. With Sapiens’ robust platform, customer-driven partnerships, and rich ecosystem, insurers are empowered to future-proof their organizations with operational excellence in a rapidly changing marketplace. We help insurers harness the power of AI and advanced automation to support core solutions for property and casualty, workers’ compensation, and life insurance, including reinsurance, financial & compliance, data & analytics, digital, and decision management. Sapiens boasts a longtime global presence, serving over 600 customers in more than 30 countries with its innovative SaaS offerings. Recognized by industry experts and selected for the Microsoft Top 100 Partner program, Sapiens is committed to partnering with our customers for their entire transformation journey and is continuously innovating to ensure their success. For more information visit us at www.sapiens.com.

Sapiens is an equal-opportunity employer. We value diversity and strive to create an inclusive work environment that embraces individuals from diverse backgrounds. Please send your resume in English.