Maisa AI
Join Maisa AI, a pioneering Agentic Process Automation (APA) Platform focused on automating complex business processes with our advanced AI Agents. We are on the lookout for a dedicated
GRC / Security Manager
to spearhead our efforts in establishing secure, compliant systems that stakeholders can trust. In this vital role, you will build our security framework from the ground up, create scalable compliance strategies, and serve as the primary representative of our security initiatives to customers and partners. Reporting directly to the COO, you'll collaborate closely with our leadership team across various functions. Key Responsibilities:
Governance (G): Policy, Structure & Ownership
Craft comprehensive security policies covering data classification, access management, vendor management, and incident response. Establish a governance framework to align the organization with security best practices. Define roles and responsibilities for information security across all teams. Ensure organizational compliance through employee onboarding, security awareness training, and thorough documentation.
Risk Management (R): Identification, Tracking & Mitigation
Conduct extensive risk assessments covering infrastructure, vendor relationships, and internal processes. Own and maintain the enterprise risk register with detailed mitigation strategies. Perform regular assessments of third-party vendors to evaluate their data security posture. Implement risk monitoring processes with periodic reports to the executive team.
Compliance (C): Controls, Audits & Evidence
Lead initiatives for compliance certifications such as SOC 2, ISO 27001, and GDPR. Maintain required auditable evidence through logging, access reviews, and vulnerability assessments. Collaborate with external auditors and manage relationships with compliance automation tools. Continuously update data privacy and security controls across the organization.
Client-Facing Security Support
Manage and respond to security questionnaires efficiently. Act as the primary security liaison for RFPs and vendor security evaluations. Host security review discussions with clients’ legal, IT, and procurement teams. Update and maintain Trust Center content and security documentation. Support sales teams by providing security-related resources and competitive insights.
What You Bring:
Required Experience:
3-5 years in security operations, technical program management, or DevOps/Infrastructure. Strong knowledge of compliance frameworks such as SOC 2, ISO 27001, and GDPR. Experience with cloud security architectures and modern technology stacks. Proven success managing multiple concurrent security projects. Core Skills:
Ability to interpret legal and regulatory requirements into technical controls. Outstanding documentation and project management skills. Excellent communication abilities for diverse audiences. Analytical aptitude for assessing risks and evaluating controls. Fluency in English is mandatory. Preferred Qualifications:
Industry certifications (CISSP, CISA, CISM, or similar). Experience in startups or high-growth environments. Knowledge of AI/ML security considerations and data protection. Background in customer-facing security roles or professional services. Success Metrics:
First 90 Days: Evaluate current security posture and identify immediate priorities. Establish foundational security policies and procedures. Implement compliance automation tools and start process development. Year 1: Achieve SOC 2 Type II certification. Develop a streamlined process for security questionnaire responses. Create a mature risk management program with executive reporting. Facilitate efficient customer security review processes. Year 2: Obtain ISO 27001 and additional compliance certifications. Enhance security processes to accommodate significant business expansion. Build advanced capabilities for customer security enablement. Integrate security as a competitive advantage. Why You’ll Love This Role:
Direct Impact:
Shape our security landscape and see immediate results. Customer Interaction:
Act as the trusted security representative for clients and partners. Strategic Role:
Influence company-wide security strategies while reporting to the COO. Growth Potential:
Advance alongside the company and have the opportunity to lead a security team. Innovative Environment:
Engage with cutting-edge compliance tools and emerging security technologies. What We Offer:
Competitive salary and equity participation. Professional development budget for certifications and training. Clear career advancement opportunities as you grow with the company. A collaborative environment where your skills will directly contribute to our success. At Maisa AI, we are committed to building a future of enterprise automation where transparency and reliability are paramount.
GRC / Security Manager
to spearhead our efforts in establishing secure, compliant systems that stakeholders can trust. In this vital role, you will build our security framework from the ground up, create scalable compliance strategies, and serve as the primary representative of our security initiatives to customers and partners. Reporting directly to the COO, you'll collaborate closely with our leadership team across various functions. Key Responsibilities:
Governance (G): Policy, Structure & Ownership
Craft comprehensive security policies covering data classification, access management, vendor management, and incident response. Establish a governance framework to align the organization with security best practices. Define roles and responsibilities for information security across all teams. Ensure organizational compliance through employee onboarding, security awareness training, and thorough documentation.
Risk Management (R): Identification, Tracking & Mitigation
Conduct extensive risk assessments covering infrastructure, vendor relationships, and internal processes. Own and maintain the enterprise risk register with detailed mitigation strategies. Perform regular assessments of third-party vendors to evaluate their data security posture. Implement risk monitoring processes with periodic reports to the executive team.
Compliance (C): Controls, Audits & Evidence
Lead initiatives for compliance certifications such as SOC 2, ISO 27001, and GDPR. Maintain required auditable evidence through logging, access reviews, and vulnerability assessments. Collaborate with external auditors and manage relationships with compliance automation tools. Continuously update data privacy and security controls across the organization.
Client-Facing Security Support
Manage and respond to security questionnaires efficiently. Act as the primary security liaison for RFPs and vendor security evaluations. Host security review discussions with clients’ legal, IT, and procurement teams. Update and maintain Trust Center content and security documentation. Support sales teams by providing security-related resources and competitive insights.
What You Bring:
Required Experience:
3-5 years in security operations, technical program management, or DevOps/Infrastructure. Strong knowledge of compliance frameworks such as SOC 2, ISO 27001, and GDPR. Experience with cloud security architectures and modern technology stacks. Proven success managing multiple concurrent security projects. Core Skills:
Ability to interpret legal and regulatory requirements into technical controls. Outstanding documentation and project management skills. Excellent communication abilities for diverse audiences. Analytical aptitude for assessing risks and evaluating controls. Fluency in English is mandatory. Preferred Qualifications:
Industry certifications (CISSP, CISA, CISM, or similar). Experience in startups or high-growth environments. Knowledge of AI/ML security considerations and data protection. Background in customer-facing security roles or professional services. Success Metrics:
First 90 Days: Evaluate current security posture and identify immediate priorities. Establish foundational security policies and procedures. Implement compliance automation tools and start process development. Year 1: Achieve SOC 2 Type II certification. Develop a streamlined process for security questionnaire responses. Create a mature risk management program with executive reporting. Facilitate efficient customer security review processes. Year 2: Obtain ISO 27001 and additional compliance certifications. Enhance security processes to accommodate significant business expansion. Build advanced capabilities for customer security enablement. Integrate security as a competitive advantage. Why You’ll Love This Role:
Direct Impact:
Shape our security landscape and see immediate results. Customer Interaction:
Act as the trusted security representative for clients and partners. Strategic Role:
Influence company-wide security strategies while reporting to the COO. Growth Potential:
Advance alongside the company and have the opportunity to lead a security team. Innovative Environment:
Engage with cutting-edge compliance tools and emerging security technologies. What We Offer:
Competitive salary and equity participation. Professional development budget for certifications and training. Clear career advancement opportunities as you grow with the company. A collaborative environment where your skills will directly contribute to our success. At Maisa AI, we are committed to building a future of enterprise automation where transparency and reliability are paramount.