GRC Security Architect

Title: GRC Security Architect

Location: Remote-US

Salary: Up to $150K

About PSI 

Join Us at PSI - Where You Belong, Grow, and Thrive! 

At PSI, we believe that people achieve their best when they feel they truly belong. That’s why fairness and opportunity are at the heart of everything we do - not just words, but values deeply embedded in our culture and the full employee experience. 

We’re proud to foster an environment where everyone is supported to reach their full potential. From your first day through every step of your journey with us, you’ll feel the difference in how we work, grow, and succeed together. 

What You Can Expect From Us - We know that great work starts with feeling valued. That’s why we’ve benchmarked all our roles against local market rates and why you’ll always see salary details in our job postings. We believe in transparency, and we want you to feel confident that your next move aligns with your expectations. 

About the Role 

The GRC Security Architect plays a key role in supporting PSI’s commitment to data security, privacy, and compliance. This role is responsible for driving core activities across quality, risk management, Information Security, data protection, and audit readiness to ensure the organization meets ISO, PCI, SOC 2, and other relevant standards. The position helps deliver assurance to stakeholders that PSI prioritizes the security and privacy of its data and systems.

This is a full-time, permanent role, Monday to Friday, with flexible working hours around a standard 09:00 – 17:30 schedule. The role reports to the Snr Director of Information Security, Governance, Risk and Compliance and may be performed remotely, with occasional travel to offices and test centres as required for audits and assessments.

This role requires that the successful applicant have experience working on Federal projects, be a United States resident and be able to obtain Federal clearance.

 Role Responsibilities 

• Collaborating with Internal teams to ensure that secure systems and networks are designed and implemented.
• Identify potential security vulnerabilities within existing and prospective systems and devise strategies to address them.
• Working with internal teams ensure that our infrastructure and applications adhere to established security measures.
• Identify security risks in our organization and come up with possible preventative measures.
• Assess the organization’s security status in order to identify areas that need improvement.
• Stay up-to-date with the emergence of new security threats while continuously adopting the industry’s best practices.
• Collaborate with internal teams to embed Security by Design principles in Infrastructure, Development and DevOps practices, implementing a framework to ensure that security controls are documented for all systems as part of standard operating procedures.
• Collaborate with internal teams to support an integrated end-to-end GRC approach across the organization.
• Maintain and update security policies, standards, procedures, and guidelines, ensuring they align with current business and IT practices.
• Monitor and assess the effectiveness of security controls across business systems and processes.
• Ensure alignment with client, regulatory, and internal compliance requirements.
• Support the automation and continual improvement of GRC processes and tools.
• Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership.
• Support internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses.
• Build and maintain cross-functional relationships with teams such as Legal, IT, Audit, Finance, and Business Operations to ensure GRC practices support overall business objectives.
• Support ongoing compliance initiatives, including security incident reviews, risk memos, and policy exceptions.
• Participate in the development of operational reports, metrics dashboards, and trend analysis related to security and compliance activities.
• Support audit plans and compliance documentation for internal or external stakeholders.

 Knowledge, Skills and Experience Requirements 

• Experience working within, achieving and/or maintaining third-party attestations such as FedRAMP, SOC2, ISO27001
• Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS/IPS, AV software) strongly recommended
• Experience working on a Federal Program is essential and contributing to core document set eg SSP, ConMon reporting, POAMs, System Narrative, SCP, SIA
• Experience implementing or maintaining FedRAMP Moderate Authorization is desirable.
• Experience documenting security controls in Architecture diagrams is essential
• Extensive training and experience in IT disciplines such as application and data security, systems programming, systems design, computer technology or software disciplines
• Familiarity with OneTrust or ServiceNow GRC and Privacy tools desired
• Certified training in security management, risk and compliance solutions and practices. CISSP, ISSAP, CISA, CISM, GSEC, or related certification(s) desirable.
• Experience in a fast-paced GRC function (desirable).

 Benefits & Culture 

Alongside a competitive salary, we offer a comprehensive benefits package designed to support your well-being, your future, and your sense of purpose:   

• Retirement Benefits: 401(k), pension, or country-specific retirement plans with employer contributions 
• Generous Time Off: Enhanced paid time off/annual leave policies 
• Health & Wellbeing Coverage: Medical insurance tailored to your region, plus: 
• US: Dental, vision, life, and short-term disability insurance 
• UK: Medical cashback plan including dental, vision, and income protection 
• Flexible Spending Accounts (US) 
• Employee Assistance Program (EAP): Confidential support whenever you need it 
• Work-Life Balance: We understand life happens outside of work, and we fully support flexibility 
• Wellness Culture: Regular global wellness initiatives to help you stay healthy and inspired 
• Future Planning: Tools and support to help you grow personally and professionally 
• Giving Back: Enjoy a Volunteer Day each year and opportunities to support our communities and industry 

At PSI, we’re more than just a workplace - we’re a global team driven by shared values and real impact. If you're ready to be part of a company that’s committed to your growth and well-being, we’d love to hear from you.