Sr. GRC Specialist

About Miovision: At Miovision, we’re unlocking transportation networks that move you. Our vision and mission is to enable smart, fast, safe communities that simply flow, as we drive the Intelligent Mobility Revolution. Backed by the world’s most advanced traffic AI, Miovision’s innovations in traffic signal planning and operations are making it possible for cities to improve the transportation experience for drivers, cyclists and pedestrians. Our values drive us. They’re at the core of everything we do. If they align with yours, proceed through the GREEN light! All in to win: We're driven by a winning mindset, approaching every challenge with intensity, clarity, and speed. One Miovision: We succeed as one team, uniting diverse talents, building on trust, and putting our shared mission before ego. Be better every day: We're committed to continuous growth, staying curious, building mastery, and embracing challenges as learning opportunities. Make it happen: We are proactive and results-driven, taking ownership, acting with urgency, and focusing on solutions that deliver real impact. Earn the customer: We are deeply customer-centric, focused on earning our customers' partnership every day by delivering exceptional experiences that drive their success. Position Summary: At Miovision, we are building the future of smart transportation to keep the world moving smoothly, but to do that, we need to ensure our internal risk and compliance systems are completely free of gridlock! We are looking for a highly capable Senior GRC Specialist to act as the ultimate traffic controller for our Enterprise Risk Management (ERM) and Governance, Risk, and Compliance (GRC) programs. Reporting directly to our GRC Manager, you will keep us in the fast lane by operationalizing our Unified Risk Management Framework across products, cloud platforms, and enterprise systems. We need a hands-on, execution-focused professional who can expertly navigate the busy intersections of ISO 27001, SOC 2, NIST, and FAIR, translating complex regulatory road signs into practical, actionable controls. If you are ready to steer risk assessments, prevent compliance traffic jams, and partner with teams across the organization to ensure a safe and secure ride for our mission-critical platforms, it is time to hit the gas. Objectives and Responsibilities: Risk & Control Mastery: Identify, assess, document, and track enterprise, cybersecurity, product, and third-party risks within Miovision’s risk register. Framework Champion: Execute daily GRC activities and maintain risk scoring, treatment plans, and evidence aligned with our Unified Risk Management Framework (ISO 27001, SOC 2, NIST, FAIR). Workflow Navigation: Track risk remediation and champion exception, deviation, and risk acceptance workflows, ensuring everything aligns with our defined risk appetite and business justifications. Audit Ace: Act as a central pillar during internal assessments and external audits, coordinating with internal control owners to collect, validate, and maintain rock-solid audit evidence. Customer Assurance: Expertly field and prepare accurate, consistent responses for customer security questionnaires, RFPs, and due-diligence requests. Policy & Playbook Architect: Support policy lifecycle activities, map controls across multiple frameworks to reduce duplication, and assist in building repeatable audit playbooks. Cross-Functional Catalyst: Partner closely with Engineering, Cloud Ops, IT, and Product to seamlessly embed risk controls into product development, cloud operations, and vendor onboarding. Culture Builder: Drive risk awareness, deliver security training, participate in cross-functional risk forums, and act as the vital bridge translating cybersecurity requirements to the broader business. Emerging Leader: Take the reins on key GRC program components (like third-party risk or control testing), mentor junior analysts, drive process automation, and shadow the GRC Manager on executive reporting and strategic initiatives. The Ideal Profile: The Experience: You bring extensive, hands-on experience in GRC, cyber risk, compliance, audit, or information security roles. The Toolbelt: You are highly proficient with modern GRC platforms and compliance management tools. The Frameworks: You possess a strong working knowledge of at least three (3) of the heavy hitters: ISO 27001, SOC 2, NIST (CSF / RMF / 800-53), FedRAMP, FAIR, or COSO enterprise risk concepts. The Builder: You have a proven track record of building and operating robust risk registers, control frameworks, and reporting mechanisms. The Translator: You have the highly sought-after ability to translate dense, technical risks into clear, actionable business impacts. The Environment: You thrive in SaaS, cloud, or critical-infrastructure-adjacent environments (this is strongly preferred!). The Communicator: You communicate effortlessly with everyone from strict external auditors to deep-in-the-weeds engineers and non-technical stakeholders. The Analytical Mind: You boast an incredibly analytical mindset with razor-sharp attention to detail, accuracy, and critical problem-solving skills. The Public Sector Bonus: You have valuable exposure to public-sector or highly regulated customer requirements (such as federal, state, municipal, or transportation agencies). Your Rewards & Well-being: We invest in our team with benefits designed for modern life and true work-life balance. Comprehensive Coverage: Your well-being is covered from day one with comprehensive health benefits, 24/7 virtual healthcare access, and dedicated wellness programs. Financial Future: Build for tomorrow with our RRSP/401K Matching Plan and share in the company's success through our Variable Incentive Plan. Time to Recharge: Truly unplug with our unique Mio-Days and flexible vacation policy. Work & Life Support: We support you with flexible work options, an internet subsidy, a remote work allowance, and enhanced leave for new parents. Sound like your next adventure? Apply now and let's start building together! We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Please indicate if you require accommodation on your application, and our team will work with you to meet your accessibility needs. Miovision may use artificial intelligence (AI) to assist in the hiring process for tasks such as helping to identify qualified candidates, taking meeting notes, creating summaries, and streamlining administrative work. These tools are one of several factors considered in the hiring process and do not replace human judgement. We do not use AI to make any final hiring or interview decisions. PLEASE BE AWARE OF FRAUD: Applicants interested in applying for roles at Miovision should apply directly via the details provided on our careers page. We communicate directly with applicants and will not request banking information, payment, or fees during any point of the recruitment process. We do not conduct interviews via text message. If you suspect that a third party is impersonating Miovision or requesting payment for recruitment on behalf of Miovision, please alert us via [email protected]. To all recruitment agencies: Miovision does not accept agency solicitation or resumes. Please do not forward resumes to our HR alias e-mail address, to any Miovision employee, or to other Miovision e-mail addresses. Miovision will not pay any fees related to unsolicited resumes.

{
  "content_hash": "f920d17bf124af8c06eca5c872bc2fe800478859e06476c7fa9c77cf09babe17",
  "source_hash": "cb0f027124682ecdee5a054d540d50bb50c5b4ac865c26299d8a8611c9ac516b",
  "last_changed_at": "2026-05-29T06:49:35.138Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "Canada Remote",
    "city": null,
    "region": null,
    "country": "Canada",
    "is_remote": true,
    "confidence": 0.95
  },
  "salary_max": null,
  "salary_min": null,
  "inferred_at": "2026-06-04T13:28:29.037Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "Canada Remote",
      "city": null,
      "region": null,
      "country": "Canada",
      "is_remote": true,
      "confidence": 0.95
    },
    "countries": [
      "Canada"
    ]
  },
  "remote_policy": "remote",
  "salary_period": null,
  "workplace_type": "remote",
  "salary_currency": null
}

{}

{
  "id": "4feda9c3-d34b-4c2c-9c3f-f63df1da5ee7",
  "team": "Security",
  "title": "Sr. GRC Specialist",
  "jobUrl": "https://jobs.ashbyhq.com/miovision/4feda9c3-d34b-4c2c-9c3f-f63df1da5ee7",
  "address": null,
  "applyUrl": "https://jobs.ashbyhq.com/miovision/4feda9c3-d34b-4c2c-9c3f-f63df1da5ee7/application",
  "isListed": true,
  "isRemote": true,
  "location": "Canada Remote",
  "updatedAt": null,
  "apiVersion": "ashby-non-user-graphql-v1",
  "department": "Security",
  "publishedAt": null,
  "workplaceType": "Remote",
  "employmentType": "FullTime",
  "secondaryLocations": []
}