Governance, Risk

Zenwork stands at the forefront of cloud/API-based Tax Automation and Governance, Risk Compliance (GRC) technology, pioneering the future of Tax Tech and GRC Automation. Our comprehensive suite of top-tier AI-SaaS solutions serve a vast clientele of over 500,000, providing effortless tax automation through our APIs for major enterprises. In terms of numbers, during the tax year 2022, we have reported over $413 Billion to the Internal Revenue Service, spanning over 30 million transactions for some of the globe's leading and most forward-thinking firms.

As a rapidly expanding digital compliance AI-SaaS Product company, Zenwork boasts a customer base that spans all sizes, partnering with industry giants like Intuit, Bill.com, Xero, and Sage Intacct. Recognized as one of the fastest-growing companies in the U.S. by Inc magazine and a consecutive Accountex award recipient, Zenwork has garnered significant acclaim.

Backed by Spectrum Equity Partners, Zenwork has successfully raised over $163M in funding, maintaining profitability as a late-stage entity with operations in both the U.S. and India.

Role Overview:           

We are seeking a Governance, Risk & Compliance (GRC) Manager to drive Zenwork's compliance programs, manage external certifications (SOC, ISO), support customer assurance processes, and ensure organization-wide security governance. The ideal candidate will have a strong background in audits, policy management, risk assessment, and fraud risk in payment products.         

What You'll Do:

• Audit & Certification Management
• Lead SOC 2, ISO 27001, and other relevant audits.
• Coordinate with external auditors, regulators, and certification bodies.
• Maintain compliance documentation and evidence.
• Customer & Regulatory Compliance
• Respond to customer security questionnaires and due diligence requests.
• Review and support Data Protection Agreements (DPAs).
• Ensure ongoing compliance with data protection and privacy regulations.
• Governance & Policy Management
• Develop, update, and enforce information security and compliance policies.
• Drive company-wide security awareness and compliance training programs.
• Monitor adherence to internal controls and compliance frameworks.
• Risk & Fraud Management
• Conduct risk assessments across business units and products.
• Identify and mitigate fraud risks in Zenwork's Payments product.
• Apply AI/ML-driven techniques for fraud detection, anomaly identification, and transaction monitoring.
• Align risk management practices with frameworks (ISO 27005, NIST, etc.).
• AI & Automation in GRC
• Evaluate and implement AI-based tools for compliance monitoring, document reviews, and reporting.
• Leverage AI to automate repetitive compliance tasks (e.g., customer questionnaires, policy reviews).
• Drive innovation in security operations through intelligent automation.
• Collaboration & Stakeholder Management
• Work closely with Product, Engineering, Legal, and Operations teams.
• Act as a bridge between internal stakeholders and external auditors/customers.
• Provide regular compliance and risk reporting to leadership.

Qualifications & Skills

Education:

• Bachelor's degree in commerce (B.Com), Information Security, or related field.
• Professional qualifications such as CPA, CISA, CISM, or CRISC are highly valued
• Master's degree in information security, Risk Management, or MBA (preferred).

Certifications (preferred):

• CISA (Certified Information Systems Auditor)
• CISM (Certified Information Security Manager) or CRISC (Certified in Risk and Information Systems Control)

Experience:

• 5-7 years in information security, risk, compliance, or audit roles.
• Strong experience with SOC 2, ISO 27001, and regulatory compliance.
• Exposure to fraud risk management in payments/fintech (preferred).
• Proven track record of policy drafting, training, and compliance program management.

Skills:

• Strong knowledge of security and compliance frameworks (ISO, NIST, SOC).
• Excellent communication skills to handle customer and auditor interactions.
• Analytical mindset with the ability to identify and mitigate risks.
• Project management and cross-functional collaboration capabilities.

Why Join Zenwork?

• Opportunity to build and mature GRC practices in a fast-growing compliance tech company.
• Work on impactful products that enable organizations to remain secure and compliant.
• Collaborate with a passionate team that values innovation, integrity, and trust.
• Competitive compensation, benefits, and professional development support.