SeniorCybersecurityGRC

Believe is a global artist development company. We empower local artists, labels and publishers to grow their audiences at each stage of their careers with expertise, respect, fairness and transparency. Operating in 50+ countries, with more than 2,000 employees, Believe offers a full range of services including audience development, publishing, marketing and distribution, with a tailor-made approach to fit any artist, label or publisher. Believe champions independence and innovation through a unique model that combines local expertise with a global tech platform, delivering exclusive solutions for artists to promote and monetize their music thanks to strategic partnerships with leading global digital service providers.With a leading portfolio of brands that includes Nuclear Blast, naïve, TuneCore, Groove Attack, Sentric, AllPoints and Byond, Believe artists generated more than 800 billion streams worldwide in 2024 across all genres, and were recognized with more than 70 leading industry awards. Believe is a simplified joint-stock company under French law. Ready to set the tone with Believe ? We’re hiring a Security GRC Engineer to help us build governance, risk, and compliance in a way that actually works in a modern tech organization: pragmatic, automation-friendly, and aligned with agile delivery. This is not a “paperwork” job. You’ll partner closely with engineering, product, workplace, auditors and security to turn risk management and compliance into clear, usable guardrails and you’ll challenge processes that create friction without improving security. What you’ll do • Risk management that drives decisions Run lightweight, continuous risk assessment and threat modelings with teams (not once-a-year rituals). Translate risk into clear options: impact, likelihood, tradeoffs, and recommended actions. Track remediation plans and provide visibility through simple reporting. • Build practical governance Maintain and improve security policies/standards so they’re short