GRC Manager

Job Summary

A company is looking for a GRC Manager to lead and mature its global Governance, Risk, and Compliance program.

Key Responsibilities

• Own and manage the end-to-end lifecycle of external audits and certifications
• Lead and develop the Third-Party Risk Management program and oversee vendor assessments
• Oversee the corporate risk register and facilitate periodic risk assessments across business units

Required Qualifications

• 7-10+ years of experience in GRC, security compliance, or audit leadership
• 3+ years of people management experience
• Deep expertise in ISO 27001, SOC 2 Type 2, PCI DSS, FedRAMP, C5, and ISO 42001
• Strong understanding of cloud security environments (AWS, GCP, Azure)
• Proven experience building or maturing a third-party risk management program