Hiring: GRC Associate
Company: AIO
Location: Islamabad, Pakistan / On-Site
Employment Type: Full-time
Seniority Level: Associate level
Estimated Salary: PKR 80,000 - PKR 130,000 per month
Industry: Computer Software / Restaurant Tech SaaS
Company Overview
AIO is a world-class, Silicon Valley-funded startup operating in stealth mode within the $55 billion restaurant technology SaaS market.
The company's mission is to revolutionize the United States restaurant industry by delivering a comprehensive, fully integrated "All-In-One" super app platform.
Powered by patented AI technology, AIO combines front-of-the-house operations like ordering, payments, and rewards with back-of-the-house systems like inventory and staff management.
AIO empowers restaurant owners to optimize profit margins and reduce costs while focusing entirely on exceptional dining experiences.
Key Responsibilities
Assist in documenting, implementing, and monitoring internal security controls to maintain compliance with SOC2, ISO 27001, and other regulatory frameworks.
Support the organizational risk management cycle, including proactive risk identification, comprehensive assessment, and execution of mitigation strategies.
Collect, compile, and analyze technical documentation to prepare accurate data for upcoming internal and external compliance audits.
Assist with third-party risk management by assessing vendor security postures and compliance standards.
Coordinate with IT, Compliance, Legal, and internal business units to ensure alignment with client and regulatory compliance requirements.
Help maintain, update, and enforce information security policies, procedures, and security awareness training across the organization.
Experience & Qualifications
Bachelor's degree in Information Technology, Computer Science, Cybersecurity, Management Information Systems, or a related functional field.
Prior experience or foundational exposure to enterprise information security, compliance auditing, or data risk management frameworks.
Excellent coordination skills with the ability to bridge communication between technical IT teams and business departments.
Strong analytical, documentation, and data reporting capabilities with close attention to detail.
Technical Skills Required
Foundational knowledge of cybersecurity and GRC compliance frameworks such as SOC2 and ISO 27001.
Familiarity with risk assessment methodologies and IT/Information Security governance standards.
Proficiency in structured data collection, analysis tools, and administrative compliance reporting.
Basic understanding of vendor management or Third-Party Risk Management (TPRM) evaluations.
Apply Now
To apply for this role with our Silicon Valley-backed team, please submit your updated professional CV and portfolio through the official AIO recruitment network or our corporate portal.
