Security GRC Manager
Sapiens International Corporation
Location: Holon (Hybrid)
Security GRC Manager
About Sapiens:
Sapiens International Corporation (NASDAQ and TASE: SPNS) is a global leader in intelligent insurance software solutions. With Sapiens’ robust platform, customer-driven partnerships, and rich ecosystem, insurers are empowered to future-proof their organizations with operational excellence in a rapidly changing marketplace. We help insurers harness the power of AI and advanced automation to support core solutions for property and casualty, workers’ compensation, and life insurance, including reinsurance, financial & compliance, data & analytics, digital, and decision management. Sapiens boasts a longtime global presence, serving over 600 customers in more than 30 countries with its innovative SaaS offerings. Recognized by industry experts and selected for the Microsoft Top 100 Partner program, Sapiens is committed to partnering with our customers for their entire transformation journey and is continuously innovating to ensure their success. For more information visit us at www.sapiens.com.
Responsibilities:
· Develop and maintain cybersecurity governance, risk and compliance policies and processes (ISO 27001, SOC 2, GDPR, DORA, etc.).
· Lead risk assessments for systems, vendors, supply chain and business processes - maintain risk registers and mitigation plans.
· Manage compliance programs, internal and external audits and certification renewals.
· Design and run security awareness and training programs - measure and improve program effectiveness.
· Oversee penetration testing and security assessments, ensuring remediation and lessons learned are implemented.
· Manage supply chain security and vendor risk, ensuring contractual and regulatory compliance.
· Implement and operate GRC tools for risk, compliance and policy automation.
· Support sales teams by providing accurate and timely responses to security questionnaires, RFPs and customer requirements.
· Lead and mentor a small team of GRC professionals, fostering growth and performance.
Requirements:
· At least 5 years of experience in information security, risk management, privacy and compliance.
· Proven experience managing and developing people in a security or compliance function.
· Strong knowledge of risk assessment methodologies and supply chain security practices.
· Hands-on experience with audits, vendor risk management and security control assessments.
· Familiarity with regulatory and industry frameworks such as ISO 27001, SOC 2, GDPR and DORA.
· Technical background in IT, cloud providers, networking and security fundamentals.
· Experience implementing or operating GRC tools (e.g., Commugen, OneTrust, ServiceNow GRC) is an advantage.
· Excellent communication, presentation and stakeholder management skills in fluent English.
· Ability to take initiative, drive cross-functional collaboration and deliver results.
· Experience leading penetration testing engagements or security assessment programs is an advantage.
Sapiens is an equal-opportunity employer. We value diversity and strive to create an inclusive work environment that embraces individuals from diverse backgrounds.