Governance Risk Compliance Manager

Job Summary

A company is looking for a Governance Risk & Compliance Manager.

Key Responsibilities

• Develop and maintain enterprise-wide GRC policies, standards, and procedures
• Own the full risk management lifecycle, including identification, assessment, treatment, monitoring, and reporting
• Manage external audits and monitor emerging regulatory changes, advising stakeholders on required controls

Required Qualifications

• Deep understanding of security control frameworks (SOC II, ISO 27001, NIST)
• Experience with regulatory compliance requirements (GDPR, CCPA/CPRA)
• Proficiency with GRC platforms and risk management tools
• 5+ years of experience in GRC, risk management, compliance, or information security
• 2+ years of experience leading or managing audit engagements (SOC II preferred)