Senior Manager, Governance Risk and Compliance

Agero, Inc.

Senior Manager leading governance, risk, and compliance initiatives at Agero. Ensuring cybersecurity policies and frameworks meet regulatory standards for the automotive industry.

Posted 5/29/2026full-timeRemote • Arizona, California, Florida, Illinois, Massachusetts, Missouri, New Hampshire, New Mexico, New York, North Carolina, Tennessee, Virginia • 🇺🇸 United StatesSenior💰 $129,900 - $180,000 per yearWebsite

Tech Stack

Tools & technologies

CloudCyber Security

About the role

Key responsibilities & impact

Command the end-to-end response strategy for annual client security assessments; direct the preparation and multi-day presentation of complex technical evidence to sophisticated enterprise partners.
Own the successful execution, maintenance, and scope validation of core compliance frameworks, including PCI-DSS, ISO 27001, SOC2 Type II, and TISAX.
Partner with the Legal and Strategic Procurement teams to draft, review, and negotiate security exhibits within client and vendor contracts, ensuring committed promises align directly with technical capabilities.
Develop, implement, and enforce a comprehensive library of corporate security policies that satisfy global standards while remaining functional and frictionless for a software-driven enterprise.
Monitor global regulatory environments (e.g., CCPA/CPRA, GDPR, and emerging automotive cybersecurity mandates); collaborate with Privacy Owners to design underlying cyber strategies, documentation, and procedures.
Direct the modernization of the GRC infrastructure by maximizing the ROI of continuous monitoring platforms and deploying/tuning Generative AI tools to automate high-volume compliance workflows.
Serve as a core member of the Cybersecurity leadership team, collaborating with Product and Engineering leads to ensure security and legal requirements are embedded natively into the product development lifecycle.
Directly manage, mentor, and evaluate the performance of GRC team professionals, aligning resource allocation with the organization's audit pipeline and strategic deadlines.

Requirements

What you’ll need

Bachelor's degree in Computer Science, Information Security, Information Technology, or a related technical field is required.
Active CISSP or CISM certification is required.
8+ years of progressive experience in Cybersecurity, GRC, or IT Audit.
A minimum of 2 years of direct people management or leadership experience.
Proven track record managing complex frameworks (SOC2, PCI, ISO, TISAX), translating technical controls into contractual language, and implementing automated GRC workflows.
Privacy, cloud-architecture, or specialized IT audit certifications are highly preferred.

Benefits

Comp & perks

Healthcare, dental, vision, disability, life insurance, and mental health benefits for associates and their families.
401(k) plan with company match and tuition assistance to support your future goals.
Flexible time off, paid sick leave, and ten paid holidays annually.
Parental planning benefits to assist associates through life’s milestones.
Bonus/Incentive Programs

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

CybersecurityGRCIT AuditCompliance frameworksAutomated GRC workflowsTechnical controlsCloud architecturePrivacy strategiesRegulatory monitoringSecurity policy development

Soft Skills

LeadershipMentoringCollaborationNegotiationCommunicationResource allocationPerformance evaluationStrategic planningProblem-solvingPresentation skills

Certifications

CISSPCISMISO 27001PCI-DSSSOC2 Type IITISAXPrivacy certificationsCloud architecture certificationsIT audit certificationsCompliance certifications