Security GRC Program Manager

Job Summary

A company is looking for a Program Manager, Security GRC.

Key Responsibilities

• Act as an information security subject matter expert during cross-functional audit engagements
• Create and maintain a central repository of audit evidence artifacts for compliance with various regulatory standards
• Support the overall GRC team program initiatives, including policy writing and third-party security risk assessments

Required Qualifications

• Subject matter expert in information security frameworks and standards (e.g., NIST CSF, SOC 2, PCI DSS)
• 6+ years of experience in Security Governance, Risk, and Compliance (GRC) or Technology Compliance roles
• Exposure to global regulatory requirements and their integration into compliance programs
• Proven track record in leading GRC initiatives and managing large-scale security programs
• Strong project management skills with proficiency in coordinating security assessments