Security GRC Manager

Job Summary

A company is looking for a Security GRC Manager who will manage compliance programs and security controls within the organization.

Key Responsibilities

• Mature the GRC strategy and manage GRC initiatives to align with business goals
• Lead risk management programs, conducting assessments and tracking remediation efforts
• Oversee third-party risk management, including vendor evaluations and ongoing monitoring

Required Qualifications

• Expertise in HIPAA, SOC 2, and regulatory frameworks with practical operational experience
• Experience in leading vendor security reviews and third-party risk assessments
• Strong knowledge of cloud security, identity management, and application security principles
• Ability to assess technical risks and anticipate threats effectively
• Comfortable operating in fast-paced, ambiguous environments typical of startups