Manager, Corporate Governance, Risk, and Compliance (GRC)- Remote (Anywhere in the U.S.)
Skills
- Practical experience aligning security programs with regulatory frameworks (e.g., CMMC, GDPR, HIPAA, NYSDFS)
- Hands-on experience with industry frameworks (NIST, ISO)
- Proven experience managing compliance audits and assessments
- Privacy program knowledge including DSR handling and DPIAs
- Strong stakeholder engagement and cross-functional collaboration skills
- Familiarity with supplier risk management and security exhibits for contracts
Responsibilities
- Manage and mentor a team of four Information Security Specialists and oversee the GRC service portfolio
- Develop, publish, and maintain enterprise information security policies, standards, and procedures and deliver associated training
- Establish, monitor, and report security risk metrics and program performance
- Manage privacy programs, including Data Subject Requests and Data Privacy Impact Assessments
- Perform security and privacy reviews for contracts, RFIs, and RFPs
- Conduct risk assessments for enterprise, COTS software, and suppliers and recommend mitigation strategies
- Coordinate and support internal and external security audits and assessments
- Lead third-party risk management activities and craft security exhibits for supplier agreements
- Contribute to business resilience and contingency planning efforts
Education
- Undergraduate degree in cybersecurity, computer science, or related field OR equivalent professional experience
- Relevant security certifications preferred (CISA, CISM, CISSP)
Benefits
- Group medical insurance options with employer premium contributions (Zero-deductible PPO or HDHP with HSA)
- Group dental insurance with employer-paid employee premium
- Flexible Time Off (FTO) and 12 corporate holidays
- Healthy mobile phone and home internet allowance
- Retirement plan eligibility after 2 months and employer open enrollment
- Remote-first workforce with up to 10% travel
- Pet benefit option
Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
J.S. Held seeks an experienced Legal Nurse Consultant to perform medical-legal record reviews, generate polished expert reports, and provide clinical analysis in support of liability cases.
Provide high-level administrative and site support to VP-level leadership at AbbVie's Madison location, managing calendars, travel, communications, and on-site operations.
American Express is hiring a Senior Manager to own and strengthen global program controls and governance for third-party merchant acquiring programs.
Experienced L&C technology leader needed to manage applications, drive end-to-end projects, and improve compliance processes and user experience within BlackRock's hybrid workplace.
American Express seeks an Analyst, Compliance to review and approve consumer marketing materials and ensure advertising meets regulatory, legal and brand requirements while partnering with marketing stakeholders.
StackAdapt is hiring a business-minded Commercial Counsel to draft and negotiate commercial agreements, advise on adtech, data/privacy and AI issues, and support revenue operations in a remote-first environment.
Kraken is hiring an Assistant General Counsel - Commercial to lead commercial legal strategy for product partnerships and complex technology agreements across a fast-moving, remote-first crypto exchange.
Lynker seeks a Fisheries Policy Analyst to support NOAA’s Highly Migratory Species Branch by drafting regulatory documents, coordinating international reporting, and providing strategic fisheries policy input.
Hamilton Lane seeks a detail-oriented Compliance Analyst in suburban Philadelphia to support SEC-registered adviser compliance activities, regulatory reporting, and examination readiness.
Lead enterprise privacy risk assessment and program enablement at American Express, developing controls, guidance, and cross-functional integration to reduce privacy risk across the firm.
Lead WRITER's governance, risk, and compliance strategy—owning SOC2/ISO programs, AI regulatory research, privacy, third-party risk, and audit readiness to enable safe, compliant AI products.
Syneos Health is hiring a Regulatory Consultant CMC to lead CMC regulatory activities, prepare submissions and gap analyses, and support global regulatory strategy in a remote capacity.
Serve the community as a Court Operations Associate in Heppner by managing courtroom operations, case processing, jury coordination, and public-facing court services for the Oregon Judicial Department.
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions that minimize risk. Our experts act as your trusted advisor to understand your business and challenges, helping you ...
14 jobs
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
