Cybersecurity Jobs List logo
Cybersecurity Jobs List
  1. Home
  2. Jobs
  3. Israel
  4. Tel Aviv District
  5. Bnei Brak
  6. GRC
  7. GRC Specialist
Kaltura logoKA
Kalturakaltura.com

GRC Specialist

Bnei Brak, Tel Aviv District, Israel (Hybrid)Full-time6h ago

Description

This is us 

Kaltura’s (NYSE:KLTR) mission is to power any video experience for any organization – live, on-demand, or real-time. We not only want to make using video simpler, but we also want to better people’s lives through video. Founded in 2006, Kaltura is now a global leader in the video market with millions of people using our products daily to teach, learn, watch, connect, and collaborate. Among our customers, you’ll find more than 1000 global, well-known organizations.    

15+ years since starting the company, we continue to foster a diverse and collaborative work environment where everyone gets a say. Our team is currently 700+ people, and we’re still growing. We have offices in New York, London, Singapore, and Tel Aviv, but our technology is all in the cloud. 

Kaltura has a fast-paced environment where initiative is always encouraged. Together with our hybrid work model and flexible state of mind, you get the right conditions for creative juices to flow freely. Thanks to our long line of products, cultivation of rich collaborative culture and care for each Kalturian, you’ll never run out of room to grow and evolve.   

If you don't meet 100% of the requirements below - that's okay, nobody's perfect! We believe in hiring people, not just a list of skills. We encourage you to apply if you think this is a role that would make you excited about coming to work every day. 

Requirements

The role

We are looking for a GRC Specialist to support Kaltura’s Governance, Risk, and Compliance (GRC) program, reporting directly to the CISO.

This is a hands‑on, execution‑focused role responsible for maintaining and scaling our compliance posture, reducing audit friction, addressing vendor risk, and supporting the integration of newly acquired companies into Kaltura’s security and compliance frameworks.

You will work closely with Security Engineering, IT, Legal, Privacy, Sales/Revenue, Procurement, Product, HR, and other business stakeholders to ensure security controls, compliance activities, and risk management processes are practical, effective, and aligned with business needs.

The daytoday

  • Lead audit preparation and ongoing compliance maintenance for frameworks such as SOC 2 / SOC 3, ISO 27001, ISO 27701, ISO 22301, NIST, and GDPR, including evidence collection, gap tracking, and remediation coordination
  • Own and execute vendor and thirdparty security assessments, helping reduce backlog and improve risk visibility across suppliers and partners
  • Respond to customer security questionnaires and audits, partnering with Sales and Security teams to support deal velocity and customer trust
  • Support the integration of newly acquired companies into Kaltura’s security, risk, and compliance programs, including gap assessments and remediation planning
  • Maintain and improve the ISMS, governance processes, policies, standards, and procedures
  • Act as a central point of contact for internal security and compliance inquiries from business and technical teams
  • Support the administration and continuous improvement of GRC and compliance tooling, including workflows, evidence management, and reporting
  • Contribute to the Security Awareness Program and cross‑organizational education efforts

Ideally, we’re looking for

  • 1-2 years hands‑on experience in GRC, information security, audit, or compliance, with a strong focus on execution and coordination
  • Practical experience working with ISO 27001, SOC 2, GDPR, and/or NIST CSF, including audits and ongoing compliance activities
  • Solid understanding of risk management, control design, and governance processes in a SaaS or cloud environment
  • Experience performing vendor / thirdparty risk assessments and driving remediation
  • Strong ability to work cross‑functionally with technical and nontechnical stakeholders
  • Clear, concise written and verbal communication skills in English, including customer‑facing documentation
  • Strong organizational skills and attention to detail, with the ability to manage multiple parallel workstreams

These would also be nice

  • Relevant certifications such as CISA, CISM, CRISC, or ISO 27001 Lead Auditor / Implementer
  • Experience with privacy governance, DPIAs/PIAs, and collaboration with legal and privacy teams
  • Familiarity with cloud and SaaS environments, particularly AWS
  • Experience with GRC platforms or compliance automation tools

The perks:

  1. Hybrid, flexible work environment  
  2. Extended private health (including mental) insurance  
  3. Personal and professional development programs 
  4. Occasional Cross company long weekends  

Categories

GRC
Governance, Risk, and Compliance
Information Security
Security Compliance
Security

Skills

GRC
SOC 2
SOC 3
ISO 27001
ISO 27701
ISO 22301
NIST CSF
GDPR
Vendor Risk Assessment
Information Security
Risk Management
AWS
Compliance Automation
ISMS
English