Security GRC Manager

Job Summary

Leading a dedicated team, the full-time remote Security GRC Manager will manage compliance onboarding and readiness efforts, focusing on proactive control designs, high-risk control testing, and seamless collaboration across engineering and product teams.

Key responsibilities

• Lead, develop, and mentor a team of GRC professionals while executing high-impact control walkthroughs and testing critical systems
• Manage the centralized compliance onboarding intake process, ensuring security and compliance controls are embedded early in product design
• Oversee rigorous internal testing of high-risk controls and automate evidence collection through continuous monitoring telemetry

Required qualifications

• Demonstrated experience in Security GRC, IT Compliance, or IT Audit within a public SaaS environment
• Experience managing or mentoring GRC professionals, with a strong desire to contribute as an individual contributor
• Strong understanding of SOX 404 control design and risk-based scoping in modern engineering environments
• Experience implementing automated and scalable compliance controls
• Familiarity with AI governance frameworks and traditional compliance frameworks such as SOC 1/2 and ISO 27001