Governance, Risk & Compliance (GRC) Manager

Job Description: Governance, Risk & Compliance (GRC) Manager

Zenwork stands at the forefront of cloud/API-based Tax Automation and Governance, Risk Compliance

(GRC) technology, pioneering the future of Tax Tech and GRC Automation. Our comprehensive suite of

top-tier AI-SaaS solutions serve a vast clientele of over 500,000, providing effortless tax automation

through our APIs for major enterprises. In terms of numbers, during the tax year 2022, we have reported

over $413 Billion to the Internal Revenue Service, spanning over 30 million transactions for some of the

globe's leading and most forward-thinking firms.

As a rapidly expanding digital compliance AI-SaaS Product company, Zenwork boasts a customer base

that spans all sizes, partnering with industry giants like Intuit, Bill.com, Xero, and Sage Intacct.

Recognized as one of the fastest-growing companies in the U.S. by Inc magazine and a consecutive

Accountex award recipient, Zenwork has garnered significant acclaim.

Backed by Spectrum Equity Partners, Zenwork has successfully raised over $163M in funding,

maintaining profitability as a late-stage entity with operations in both the U.S. and India.

Role Overview:

We are seeking a Governance, Risk & Compliance (GRC) Manager to drive Zenwork's compliance

programs, manage external certifications (SOC, ISO), support customer assurance processes, and ensure

organization-wide security governance. The ideal candidate will have a strong background in audits, policy

management, risk assessment, and fraud risk in payment products.

What You'll Do:

Audit & Certification Management

o Lead SOC 2, ISO 27001, and other relevant audits.

o Coordinate with external auditors, regulators, and certification bodies.

o Maintain compliance documentation and evidence.

Customer & Regulatory Compliance

o Respond to customer security questionnaires and due diligence requests.

o Review and support Data Protection Agreements (DPAs).

o Ensure ongoing compliance with data protection and privacy regulations.

Governance & Policy Management

o Develop, update, and enforce information security and compliance policies.

o Drive company-wide security awareness and compliance training programs.

o Monitor adherence to internal controls and compliance frameworks.

Risk & Fraud Management

o Conduct risk assessments across business units and products.

o Identify and mitigate fraud risks in Zenwork's Payments product.

o Apply AI/ML-driven techniques for fraud detection, anomaly identification, and

transaction monitoring.

o Align risk management practices with frameworks (ISO 27005, NIST, etc.).

AI & Automation in GRC

o Evaluate and implement AI-based tools for compliance monitoring, document reviews, and

reporting.

o Leverage AI to automate repetitive compliance tasks (e.g., customer questionnaires, policy

reviews).

o Drive innovation in security operations through intelligent automation.

Collaboration & Stakeholder Management

o Work closely with Product, Engineering, Legal, and Operations teams.

o Act as a bridge between internal stakeholders and external auditors/customers.

o Provide regular compliance and risk reporting to leadership.

Qualifications & Skills

Education:

o Bachelor's degree in commerce (B.Com), Information Security, or related field.

o Professional qualifications such as CPA, CISA, CISM, or CRISC are highly valued

o Master's degree in information security, Risk Management, or MBA (preferred).

Certifications (preferred):

o CISA (Certified Information Systems Auditor)

o CISM (Certified Information Security Manager) or CRISC (Certified in Risk and

Information Systems Control)

Experience:

o 5-7 years in information security, risk, compliance, or audit roles.

o Strong experience with SOC 2, ISO 27001, and regulatory compliance.

o Exposure to fraud risk management in payments/fintech (preferred).

o Proven track record of policy drafting, training, and compliance program management.

Skills:

o Strong knowledge of security and compliance frameworks (ISO, NIST, SOC).

o Excellent communication skills to handle customer and auditor interactions.

o Analytical mindset with the ability to identify and mitigate risks.

o Project management and cross-functional collaboration capabilities.

Why Join Zenwork

Opportunity to build and mature GRC practices in a fast-growing compliance tech company.

Work on impactful products that enable organizations to remain secure and compliant.

Collaborate with a passionate team that values innovation, integrity, and trust.

Competitive compensation, benefits, and professional development support.