SecOps / GRC Professional (Cloud Security)

NextLabs®, Inc. provides zero trust data-centric security software to protect business critical data and applications. Our patented dynamic authorization technology and industry leading attribute-based zero trust policy platform helps enterprises identify and protect sensitive data, monitor and control access to the data, and prevent regulatory violations - whether in the cloud or on premises. The software automates enforcement of security controls and compliance policies to prevent unauthorized access and data breach. NextLabs policy management platform and universal enforcement solutions enable centrally managed information control policy across all applications, data, and digital business processes. NextLabs has some of the largest global enterprises as customers and has strategic relationships with industry leaders such as SAP, Siemens, Microsoft, AWS, Accenture, Deloitte, Infosys, and IBM.

We are looking for a SecOps / GRC Professional with hands-on experience in AWS cloud security and exposure to Azure and GCP. The role involves managing cloud security controls, maintaining the Risk Registry, and taking ownership of the internal GRC portal to ensure continuous audit readiness (ISO 27001, SOC 2 or similar).

You will be part of our growing DevSecOps team, responsible for implementing, maintaining, and improving our security posture across environments.

Key Responsibilities include but are not limited to:

• Implement and monitor security controls across AWS (primary), Azure, and GCP.
• Manage IAM, logging, encryption, network security, and cloud security posture.
• Support vulnerability management and incident response documentation.
• Maintain and update the Risk Registry, including risk identification, tracking, and mitigation monitoring.
• Take ownership of the internal GRC portal, ensuring all controls, policies, and evidence are up-to-date.
• Maintain audit evidence for access reviews, backups, incidents, and change management.
• Support ISO 27001, SOC 2, and similar audits.
• Ensure continuous compliance and documentation governance.

Requirements:

• Minimum 2 years of experience in SecOps, Cloud Security, or GRC.
• Strong AWS security experience (mandatory).
• Working knowledge of Azure and/or GCP.
• Experience with security audits (ISO 27001, SOC 2 preferred).
• Strong documentation and risk management skills.
• AWS Security Specialty or similar certification preferred
• Cloud Focus: AWS (Primary), Azure & GCP (Good to have)

Interested candidates may send resume to [Confidential Information] or use our online form.