Senior Consultant: Trust Assurance

About Sprinto: Sprinto is a premier, globally recognized AI-native Governance, Risk, and Compliance (GRC) technology platform on an intensive mission to help modern technology companies automate risk management, vendor oversight, and continuous compliance monitoring from a single connected ecosystem. Founded in 2020 by second-time entrepreneurs Girish Redekar and Raghuveer Kancherla, Sprinto has raised over $31.8M in funding from elite venture institutions including Accel, Elevation Capital, and Blume Ventures. Trusted by more than 3,000 enterprise customers across 75+ countries—including Whatfix, Anaconda, HackerRank, and WeWork—Sprinto supports 300+ real-time API integrations and over 200 global security baselines, positioning itself as a prominent multi-year Leader on G2 in compliance automation platforms.

Position Overview

We are seeking a highly analytical, systems-minded Senior Consultant: Trust Assurance to join our expanding Customer Experience division in a full-time remote capacity within India. In this critical technical leadership seat, you will act as a primary operational architect, taking 0-to-1 responsibility to build and scale Sprinto’s new Managed Services wing from framework digitization into a repeatable, high-margin portfolio. Moving beyond simple checkpoint tracking, you will build delivery models, configure automated checking metrics, and structuralize AI-assisted playbooks for risk and privacy assessments. This role demands a seasoned security consultant who brings authoritative framework knowledge, thrives when translating domain expertise into guided software layouts, and possesses the commercial ownership to manage service utilization rates safely without scope creep.

Key Responsibilities

• Service Practice Architecture: Design, establish, and optimize the delivery operating models for the new Managed Services function, defining intake criteria, scoping processes, Statement of Work (SOW) controls, and Service Level Agreements (SLAs).
• AI-Enabled Workflow Productisation: Create and calibrate automated AI-assisted playbooks and internal prompt libraries for repeatable compliance services, including Data Protection Impact Assessments (DPIAs), corporate policy reviews, and audit readiness support.
• Framework Control Mapping: Manage and execute complex framework digitizations, mapping technical controls, security boundaries, and validation rules natively inside Sprinto’s core software infrastructure.
• Security Assurance Management: Build scalable security assurance strategies, orchestrating partner qualification guidelines, Vulnerability Assessment and Penetration Testing (VAPT) oversight, and multi-tenant vendor governance frameworks.
• Commercial Operations Ownership: Define service packaging structures, engineer multi-tiered fixed-fee or retainer pricing models, and optimize capacity planning, gross margins, and delivery throughput forecasting.
• Quality Assurance & Guardrails: Formulate rigid acceptance criteria, define mandatory verification source inputs, establish human-approval verification gates, and implement disclaimer profiles to eliminate uncontracted legal liabilities.
• Enterprise Cross-Functional Alignment: Partner tightly alongside Sales, Solutions Engineering, and Customer Success cells to attach compliance services to complex contracts, unblocking enterprise deal conversion.

Required Skills & Qualifications

• 3 to 6+ years of verified professional history running GRC consulting, technical IT auditing, security risk advisory, or managed compliance program engineering.
• Deep, authoritative functional mastery of core enterprise information security standards and data privacy rules, primarily ISO 27001, SOC 2, and GDPR.
• Hands-on operational history conducting Data Protection Impact Assessments (DPIAs) and mapping logical security controls into automated cloud dashboards.
• Demonstrated capacity to integrate large language models and generative AI utilities into corporate production workflows to reduce manual delivery times safely.
• Excellent workshop leadership mechanics, with outstanding written and verbal English communication skills to present risk architecture profiles smoothly to corporate stakeholders.
• Location Context: Full-time remote-first operational parameters open exclusively to qualified GRC engineering practitioners based permanently anywhere within India.

Preferred Strategic Indicators (Nice to Have)

• Prior leadership experience scaling a professional services branch or security practice from initialization up to stable, multi-stakeholder delivery models.
• Practical familiarity navigating highly complex public and enterprise sector compliance structures, such as FedRAMP, HITRUST, or the NIST family guidelines.
• Possession of industry-best professional certifications, including ISO 27001 Lead Auditor/Lead Implementer, CISA, CISM, CISSP, or PCI QSA credentials.

What We Offer

• The exceptional professional canvas to directly program, build, and lead a next-generation security assurance services wing inside a hyper-growth compliance technology leader.
• Highly attractive annual compensation parameters combined with extensive pathways for individual competence development and technical rank advancement.
• Profound work-from-home remote parameters enabling you to work from home forever, offering high lifestyle independence and complete geographic freedom within India.
• Unlimited Leave Policy: Enjoy true professional trust with an uncapped vacation blueprint designed to allow you to take resets whenever needed.
• Comprehensive health insurance benefits providing up to INR 10 Lakh protection for you and your family, an additional INR 10 Lakh personal accident protection, and corporate life insurance worth 3x your annual salary base.
• An annual USD 1,000 professional skill development fund, an initial home workspace setup allowance (INR 35,000), and a generous annual social co-working allowance up to INR 14,000.