Cloud Compliance Analyst

locations

Budapest (Flexible)

Hungary

time type

Full time

posted on

Posted Today

job requisition id

JR109092

Genesys empowers organizations of all sizes to improve loyalty and business outcomes by creating the best experiences for their customers and employees. Through Genesys Cloud, the AI-powered Experience Orchestration platform, organizations can accelerate growth by delivering empathetic, personalized experiences at scale to drive customer loyalty, workforce engagement, efficiency and operational improvements.

We employ more than 6,000 people across the globe who embrace empathy and cultivate collaboration to succeed. And, while we offer great benefits and perks like larger tech companies, our employees have the independence to make a larger impact on the company and take ownership of their work. Join the team and create the future of customer experience together.

Job Title: Lead GRC Technologist (SaaS -Technical Compliance & Automation)

Location: Budapest / Remote Hungary

At

Genesys

, we allow our employees to make their mark by entrusting them to make decisions and do what they've been hired to do: their very best. Your potential is waiting; why are you?

About Genesys

Every year, Genesys orchestrates billions of remarkable customer experiences for organizations in more than 100 countries. Through the power of our cloud, digital and AI technologies, organizations can realize Experience as a Service our vision for empathetic customer experiences at scale. With Genesys, organizations have the power to deliver proactive, predictive, and hyper personalized experiences to deepen their customer connection across every marketing, sales, and service moment on any channel, while also improving employee productivity and engagement. By transforming back-office technology to a modern revenue velocity engine Genesys enables true intimacy at scale to foster customer trust and loyalty. With a strong track record of innovation and a never-ending desire to be first, Genesys is named as a leader in

The 2023 Gartner Magic Quadrant for CCaaS

.

About the Role

As the Lead GRC Technologist, you will be a key person responsible for integrating governance, risk, and compliance processes with cutting-edge technical automation in a SaaS environment.

You'll act as the bridge between security engineering, DevOps, and legal / privacy teams, ensuring that governance controls and risk management practices are seamlessly embedded into the company's cloud platforms, infrastructure, and CI/CD workflows.

This role suits a technically strong GRC professional who thrives in cloud-native ecosystems and can drive continuous compliance through automation.

Major Responsibilities/Activities

Key Responsibilities

Governance, Risk & Compliance

• Proactively evaluate and advise the business on new and evolving certification programs, regulatory requirements, and technologies.

• Own the GRC roadmap for SaaS operations, aligning with frameworks and standards and regulatory requirements like SOC 2, ISO 27001, ISO 42001, NIST CSF, HIPAA, HITRUST, ENS, HDS, GDPR etc.

• Design and implement scalable, automated compliance workflows that support cloud (AWS) operations.

• Collaborate with Legal, Privacy, and Security Engineering to ensure controls support regulatory, contractual, and data privacy requirements.

• Develop and maintain policies, standards, and risk frameworks that reflect both business needs and evolving threat landscapes.

Technical Compliance & Automation

• Lead the automation of evidence collection, control testing, and compliance monitoring using ITSM, JIRA and GRC tools.

• Work with engineering teams to integrate compliance checks into CI/CD pipelines using Infrastructure-as-Code (IaC) and policy-as-code (Terraform, AWS Config).

• Conduct compliance validation of cloud architectures, IAM, data protection, and logging controls.

• Build and maintain dashboards and KPIs for continuous visibility into compliance posture.

Risk Management

• Conduct and automate risk assessments, control effectiveness reviews, and technical remediation tracking.

• Implement and manage continuous control monitoring (CCM) for real-time risk identification.

• Collaborate with product and engineering teams to perform technical risk reviews during product design and deployment.

Audit & Assurance

• Serve as the technical SME for external audits and certification processes (SOC 2, ISO 27001, PCI-DSS, HIPAA, HDS, ENS, ISO 42001 etc.).

• Manage audit evidence preparation, ensuring traceability from policies to controls and technical implementation.

• Lead post-audit reviews and ensure timely closure of findings.

• Cross-Functional Enablement

• Mentor junior GRC and security analysts on automation tools and control implementation best practices.

• Partner with engineering and DevOps to drive compliance-as-code culture.

• Collaborate closely with privacy and data protection officers on compliance alignment

Qualifications

Education & Experience

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field.

• 8–12 years of experience in information security, GRC, or cloud compliance, with at least 4 years focused on SaaS environments.

• Proven experience designing or automating compliance programs for cloud-native or multi-tenant SaaS platforms.

Certifications (Preferred)

• CISSP, CISM, CRISC, or CISA

• ISO 27001 Lead Auditor/Implementer

• Cloud certifications such as AWS Certified Security – Specialty, Azure Security Engineer Associate, or CCSP are highly preferred.

Technical Expertise

• Deep understanding of cloud security controls, identity management, and encryption standards.

• Proficiency with automation and scripting (Python).

• Familiarity with IaC / DevSecOps tools (Terraform, GitHub, Jenkins).

• Experience with GRC and compliance automation platforms

Soft Skills

• Strong communication and stakeholder management skills.

• Analytical thinker with the ability to translate compliance requirements into technical reality.

• Influencer who can lead without direct authority in a cross-functional setting.

Why This Role Matters

In a fast-scaling SaaS environment, compliance is not just a checkbox—it's a differentiator.

The Lead GRC Technologist ensures our customers, auditors, and partners trust that compliance is embedded in our DNA—secure, compliant automated, and scalable.

If a Genesys employee referred you, please use the link they sent you to apply.

About Genesys:

Genesys empowers more than 8,000 organizations worldwide to create the best customer and employee experiences. With agentic AI at its core, Genesys Cloud is the AI-Powered Experience Orchestration platform that connects people, systems, data and AI across the enterprise. As a result, organizations can drive customer loyalty, growth and retention while increasing operational efficiency and teamwork across human and AI workforces. To learn more, visit

.

Reasonable Accommodations:

If you require a reasonable accommodation to complete any part of the application process, or are limited in your ability to access or use this online application and need an alternative method for applying, you or someone you know may contact us at

.

You can expect a response within 24–48 hours. To help us provide the best support, click the email link above to open a pre-filled message and complete the requested information before sending. If you have any questions, please include them in your email.

This email is intended to support job seekers requesting accommodations. Messages unrelated to accommodation—such as application follow-ups or resume submissions—may not receive a response.

Genesys is an equal opportunity employer committed to fairness in the workplace. We evaluate qualified applicants without regard to race, color, age, religion, sex, sexual orientation, gender identity or expression, marital status, domestic partner status, national origin, genetics, disability, military and veteran status, and other protected characteristics.

Please note that recruiters will never ask for sensitive personal or financial information during the application phase.