Senior GRC Consultant

Location: Bengaluru

Sprinto is an AI-native GRC platform that helps organisations manage risks, audits, vendor oversight, and continuous monitoring from a single connected platform. With a team of 350+ employees serving 3,000+ customers across 75+ countries, Sprinto combines scale with expertise to deliver trust and compliance. Backed by top-tier investors such as Accel, Elevation, and Blume Ventures, we've raised $31.8M in funding to fuel our mission.

Trusted by leading organisations including Whatfix, Anaconda, Ultrahuman, WeWork, AI Foundation, and Hacker Rank, Sprinto supports 300+ integrations and 200+ global security standards, including SOC 2, ISO 27001, GDPR, HIPAA, and PCI-DSS.

Founded in 2020 by second-time entrepreneurs Girish Redekar and Raghuveer Kancherla, Sprinto is recognised as a Leader on G2 in Compliance Automation and has been named a Linked In Top Startup multiple years in a row.

Sprint With Sprinters

At Sprinto, your work has purpose — and your life has space. We are a workplace where you're empowered to execute on your most ambitious ideas and deliver your best output in a fast-paced, innovative, and supportive environment.

Joining Sprinto means you will never run alone; you will always have the freedom to take your shot and the support to go farther than you imagined.

The Role

The Senior Infosec Consultant is a product and technology aficionado, with expertise in the areas of GRC, Information Security, Risk Assessments and Audits. This role is within a cross-functional, subject-matter-expertise team role which relies on superior execution and communication skills in a fully-remote setup.

Some

Key Responsibilities Of

The Role

End-to-End Frameworks Expansion:
Manage the onboarding of frameworks to the product, enabling customers to implement frameworks out of the box. This includes researching, mapping controls, updating policies, creating templates, making risk updates, and answering any customer questions during sales conversations or addressing auditor queries during audits
Expanding Sprinto's Controls:
Develop a robust Sprinto Common Control Framework to support the extension of compliance frameworks across industries
Stakeholder Management:
Collaborate closely across teams to integrate the framework into our product offering, enabling businesses across various industries and verticals to implement any framework supported by Sprinto with minimal human intervention
Teams Enablement:
Establish a continuous learning engine to upgrade the compliance expertise of the entire team — including Sales, Customer teams, Product, and Marketing — to help them sell more effectively and support customers during implementations

Some Key Requirements Of

The Role

7+ years of experience in Information Security and Compliance, covering various frameworks, Risk Assessment frameworks, and audits with top audit firms
Strong preference for prior experience in a software/SaaS company
The US market is Sprinto's fastest-growing segment. We need individuals who are comfortable working late hours and interacting with prospects and customers based in the US
Exceptional written communication, organizational, and presentation skills are crucial for this fully remote, cross-functional role
Eagerness to continuously learn and gain expertise in the domain of information security compliance
Experience in regulatory frameworks from India / US is preferred

Certifications:

Security certifications such as CISSP, CISA, CCSP, Lead Implementer, etc., are preferred

Benefits

Remote First Policy
5 Days Working With FLEXI Hours
Group Medical Insurance (Parents, Spouse, Children)
Group Accident Cover
Company Sponsored Device

Education Reimbursement Policy

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.