Cyber Security Lead Engineer GRC & AI

The Opportunity
 

What You’ll Contribute 

• Lead the day-to-day execution of GRC activities including audit coordination, control assessments, risk reviews, and compliance documentation, using AI-assisted tools to increase speed and accuracy. 

• Support the implementation and optimization of AI-driven automation for GRC workflows such as evidence collection, questionnaire response management, policy review, and risk scoring. 

• Coordinate audit-related tasks to ensure stakeholder readiness for audit testing, facilitate timely resolution of audit findings, and leverage AI tooling to track and report on findings remediation. 

• Respond to governance, risk, and compliance inquiries from internal teams and external clients, ensuring professional and timely resolution in alignment with applicable local laws, regulations, and internal policies. 

• Develop and maintain GRC reporting dashboards and metrics using data analytics and AI tools to provide leadership with clear, real-time visibility into the risk and compliance posture. 

• Partner with regional and global teams to assess and document security risks, contributing to a consistent and transparent risk management process across FICO’s operations. 

• Monitor activities within assigned IT and business areas to ensure compliance with internal policies, standards, and industry frameworks. 

• Assist with the evaluation and governance of AI/ML tools and applications used within FICO, ensuring alignment with security and compliance requirements. 

• Contribute to the development of GRC process improvements, playbooks, and automation scripts that enhance team efficiency and reduce reliance on manual processes. 

• Assist Corporate Compliance and business functions with compliance and security-related documentation, and provide guidance on GRC matters as a regional subject matter expert. 

• Collaborate with global peers to share knowledge, align on standards, and contribute to a culture of continuous improvement within the GRC team. 
   

What We’re Seeking 

• Bachelor’s degree in Cyber Security, Computer Science, Information Systems, or a related field. 

• 6.5+ years of experience in Cyber Security, focused on GRC.

• Practical experience applying AI, automation, or data analytics tools to GRC, compliance, or security operations use cases. 

• Strong understanding of and experience with industry frameworks and standards including PCI DSS, SOC 2, ISO 27001, CSA, and NIST CSF. 

• Awareness of AI governance principles and emerging AI regulatory requirements, with a desire to deepen expertise in this area. 

• Experience using GRC platforms (e.g., ServiceNow GRC, Archer, OneTrust) and ITSM ticketing systems. 

• Familiarity with scripting or data tools (e.g., Python, Power BI, or similar) to support reporting, automation, and AI integration efforts. 

• Ability to express technical concepts clearly in business terms and communicate effectively with both technical and non-technical audiences. 

• Demonstrated ability to work well under deadlines in a changing environment and manage multiple projects concurrently. 

• Desired certifications: CISSP, CISA, CISM, CRISC; AI-related certifications are a plus. 

• Ability to build trust and establish strong working relationships with partners across global time zones. 

• Excellent written and verbal communication skills in English. 

Our Offer to You

• An inclusive culture strongly reflects our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.

• The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences.

• Highly competitive compensation, benefits, and rewards programs that encourage you to bring your best every day and be recognized for doing so.

• An engaging, people-first work environment offering work/life balance, employee with employee resource groups and social events to promote interaction and camaraderie.