GRC Specialist
Location: Kfar Sava,IL (hybrid)
NEXT’s mission is to help entrepreneurs thrive. We’re doing that by building the only technology-led, full-stack provider of small business insurance in the industry, taking on the entire value chain and transforming the customer experience.
Simly put, wherever you find small businesses, you’ll find NEXT.
Since 2016, we’ve helped hundreds of thousands of small business customers across the United States get fast, customized and affordable coverage. We’re backed by industry leaders in insurance and tech, and we still have room to grow — that’s where you come in.
We’re looking for a Governance, Risk & Compliance (GRC) Specialist to join our Information Security team in Kfar Saba. You’ll work closely with security, engineering, and data teams to maintain and enhance NEXT’s compliance and risk management programs, supporting Post-Merger Integration (PMI) activities with our parent group, ERGO and Munich Re.
Want more jobs like this?
Get jobs in Kfar Saba, Israel delivered to your inbox every week.
This is a hands-on, cross-functional role for someone who enjoys connecting policy to practice, and process to impact.
What You’ll Do:
- Support internal and external audits (SOX ITGC, ISO27001, NYDFS, CPRA) and maintain evidence for ongoing compliance.
- Maintain and improve information security policies, standards, and procedures
- Lead security awareness and social engineering programs, and analyze campaign results to identify risk trends.
- Conduct Cyber Security, Privacy, and AI risk assessments across business units.
- Maintain and track the corporate risk register, and partner with business owners to mitigate risks.
- Collaborate with Security, R&D, DevOps and Data teams to integrate security into development and operations.
- Enhance and automate GRC processes, leveraging AI and modern tooling.
What We Need:
- 3–5 years of experience in Information Security, GRC, or Risk Management.
- Strong Knowledge of Data Privacy principles, laws and regulations.
- Solid understanding of Cloud Infrastructure Security (AWS).
- Relevant certifications (CISSP, CISM, CIPP/US, CIPP/E) – advantage.
- Excellent English communication skills (written and verbal).
- Strong analytical and organizational abilities, with a collaborative mindset.
- Background in insurance, financial services, or other regulated sectors – advantage.
- Experience from a Big 4 firm – advantage.
Please note, we do not ask for sensitive information via chat, text, or social media, and any email communications will come from the domain @nextinsurance.com. Additionally, Next Insurance will never ask for payment, fees, or purchases to be made by a job applicant. All applicants are encouraged to apply directly to our open jobs via the careers page on our website. Interviews are generally conducted via Zoom video conference unless the candidate requests other accommodations.
If you believe that you have been the target of an interview/offer scam by someone posing as a representative of Next Insurance, please do not provide any personal or financial information. You can find additional information about this type of scam and report any fraudulent employment offers via the Federal Trade Commission's website (https://consumer.ftc.gov/articles/job-scams), or you can contact your local law enforcement agency.
Don’t meet every single requirement? Studies have shown that some underrepresented people are less likely to apply to jobs unless they meet every single qualification. At NEXT, we are dedicated to building a diverse, inclusive and respectful workplace, so if you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.
One of our core values is 'Play as a Team'; this means making sure everyone has an equal chance to participate and make a difference. We win by playing together. Next Insurance is an equal opportunity employer and prioritizes building a diverse and inclusive workplace. We provide equal employment opportunities to all employees and applicants of any type and do not discriminate based on race, color, religion, national origin, gender, age, sexual orientation, physical or mental disability, genetic information or characteristic, gender identity and expression, veteran status, or other non-job-related characteristics or other prohibited grounds specified in applicable federal, state, and local laws. Next's policy is to comply with all applicable laws related to nondiscrimination and equal opportunity and will not tolerate discrimination or harassment based on any of these characteristics. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
Perks and Benefits
Health and Wellness
- Health Insurance
- Dental Insurance
- Vision Insurance
- Life Insurance
- Short-Term Disability
- Long-Term Disability
- FSA
Parental Benefits
- Birth Parent or Maternity Leave
- Non-Birth Parent or Paternity Leave
Work Flexibility
- Flexible Work Hours
- Remote Work Opportunities
Office Life and Perks
- Commuter Benefits Program
- Casual Dress
- Happy Hours
- Snacks
- Some Meals Provided
- Company Outings
Vacation and Time Off
- Paid Vacation
- Unlimited Paid Time Off
- Paid Holidays
- Personal/Sick Days
Financial and Retirement
- 401(K) With Company Matching
- Company Equity
- Performance Bonus
Professional Development
- Learning and Development Stipend
- Promote From Within
- Mentor Program
- Shadowing Opportunities
- Access to Online Courses
- Lunch and Learns
Diversity and Inclusion
- Diversity, Equity, and Inclusion Program