Job Openings GRC Specialist

About the job GRC Specialist

Hey there, think you stumbled upon this job posting by chance?

We don't believe in chance at Nimber.

Caught your eye? Great. Keep going...
We are Nimber, and we're not just filling positions we're building a team that's ready to shake things up. If you're ready to rewrite the rules and make a real impact, this is your moment.

Join us and let's put the future where it belongs: in the hands of passionate people.


But what does Nimber mean?

In mathematics and game theory, Nimbers are numbers with special properties of addition and multiplication. And what we really want is to add value to customers' projects with the right people, energy, and mindset.


Company Overview:

Nimber is a fast-growing IT solutions company that helps businesses of all sizes achieve their digital goals. We specialize in customized software development, cloud solutions, and IT consulting. Our team is made up of highly skilled professionals who are passionate about delivering innovative solutions and exceptional customer service.


Position: Governance, Risk & Compliance Specialist (Hybrid in Bucharest, Romania)


Who We Are:

Were a team of passionate, quirky, and (sometimes) overly caffeinated people who believe in matching awesome humans with awesome opportunities. If you're passionate about governance, risk, and compliance and thrive on structure, strategy, and security this could be your next challenge.


What Youll Be Doing (in the most epic way possible):
    • Design, document, and maintain IT governance processes, ensuring alignment with organizational goals and industry best practices.
    • Regularly review and update IT policies, procedures, and controls to reflect compliance with relevant regulatory standards and frameworks (e.g., PCI-DSS, ISO 27001, DORA, NIST2, SOC2).
    • Support the development and maintenance of the IT risk management framework, including risk identification, assessment, mitigation, and monitoring.
    • Conduct regular risk assessments to identify vulnerabilities and recommend mitigation strategies.
    • Maintain a risk register and provide regular reporting on IT risk posture to senior management.
    • Assist in providing answers and evidence to external auditors or clients regarding IT compliance queries.
    • Develop and maintain evidence repositories to streamline audit processes and demonstrate compliance readiness.
    • Conduct training sessions and workshops to educate staff on governance, risk, and compliance requirements.
    • Promote a culture of compliance and risk awareness across the IT organization.


What You Bring to the Table:
    • 3+ years of experience in IT governance, risk, and compliance roles.
    • Experience working with regulatory frameworks such as PCI-DSS, ISO 27001, DORA, NIST2 or SOC2.
    • Familiarity with IT risk management practices and methodologies.
    • Experience collaborating with auditors, legal teams, and external clients on compliance matters.
    • Strong understanding of IT processes, cybersecurity principles, and audit requirements.
    • Fluent in English is mandatory


Why work for Nimber:
  • Opportunity to work with a dynamic and growing company in the IT industry
  • Collaborative and supportive work environment with a focus on employee development
  • Competitive salary and benefits package
  • Access to cutting-edge technologies and projects
  • Opportunity for career growth and advancement

If you're an out-of-the-box GRC Specialist with a sharp eye for detail, a love for frameworks, and a drive to keep organizations secure and compliant, we want to hear from you!

Apply now to become our next Guardian of Governance.
Tired of feeling like just a number? Just send us your application and become a Nimber.


Or refer someone