GRC Associate

About the Role:

Our Governance, Risk, and Compliance (GRC) Associate will support security risk and control assessment processes to align with SOC2 and ISO 27001, industry standards, and regulatory requirements. This role provides an opportunity to gain hands-on experience across risk management, compliance audits, information governance, and records management. The analyst will assist in data analysis, compliance reporting, and act as a liaison between IT/IS GRC services and internal business units. Additionally, they will contribute to the implementation and enhancement of GRC frameworks to strengthen organizational security posture.

What will be your responsibilities?

• Assist in the documentation and implementation of internal controls to mitigate risks and ensure compliance with SOC2, ISO 27001 and other regulatory frameworks.
• Support the risk management process, including risk identification, assessment, and mitigation.
• Assist in the preparation of compliance audit data by collecting, compiling, and analyzing information.
• Support internal audits by coordinating compliance data with auditors and various departments.
• Help maintain and enforce information security policies, procedures, and standards.
• Work on compliance and security projects as directed by GRC Management and report on project status.
• Assist in third-party risk management by evaluating vendor security compliance.
• Participate in security awareness training programs to enhance risk culture within the organization.
• Collaborate with IT, Compliance, and Legal teams to address client or regulatory requirements.
• Support compliance reporting discussions with management and auditors.
• Ensure timely completion of security assessments and risk reviews to meet business and regulatory deadlines.
• Contribute to continuous improvement initiatives within the GRC function by researching and recommending best practices.

What are we looking for and what does it require to be the right fit for this role?

• Bachelor's degree in, IT, Computer Science, Cybersecurity, or a related field.
• 1-2 years of experience in Risk Management, Compliance Analysis, Information Security, or IT Audit.
• Basic understanding of SOC 2, PCI DSS, GDPR, ISO 27001, or other compliance frameworks.
• Strong interest in information security, risk management, and compliance.
• Ability to conduct data analysis, research, and documentation.
• Proficiency in Microsoft Office Suite (Excel, Word, PowerPoint) and familiarity with GRC tools.
• Strong analytical, problem-solving, and organizational skills.
• Excellent written and verbal communication skills.
• Ability to work collaboratively in a fast-paced environment and manage multiple tasks effectively.

Why Join AIO?

Our mission is to revolutionize the US restaurant industry by providing a comprehensive and fully integrated solution that empowers restaurant owners to efficiently manage all aspects of their businesses. Our platform, designed to meet the unique challenges (post COVID-19) faced by restaurants, combines our patented AI technology with unparalleled customer support to help owners increase revenue, reduce costs, and improve their overall profit margins.

We believe that restaurants should be able to focus on delivering exceptional dining experiences to their customers, without the added stress of managing complex and disparate systems. That's why we offer an All-In-One super app platform for all of their needs, from front-of-the-house operations like ordering, payment, marketing and rewards, to back-of-the-house management like inventory, staff, and financials.

We are laser focused to become a significant player in the $55 billion restaurant tech SaaS market. You will be a part of a world class Silicon Valley funded stealth mode startup.