GRC Manager
MeridianLink
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteSalary
💰 $94,700 - $148,000 per year
Job Level
Mid-LevelSenior
Tech Stack
Cyber SecurityServiceNow
About the role
- The Manager of GRC will oversee the strategic direction, establishment/execution of objectives, and/or people management of the Security and Compliance function.
- Create and manage security compliance policies and procedures.
- Plan, implement, manage, monitor, and upgrade solutions to defend against cyberattacks, hacking attempts, and threats.
- Responsible for identifying, assessing, and mitigating risk by establishing risk management procedures and processes to ensure adherence to policies.
- Expected to specialize in developing, evaluating, and implementing compliance with programs and processes to mitigate cybersecurity risk.
- Conducts security risk assessments, compliance, and cybersecurity audits.
- Selects, develops, and evaluates personnel to ensure the efficient operation of the function.
- Oversees the development, evaluation, and implementation of governance, risk compliance, and processes to mitigate cybersecurity risk and ensure the protection of company and allied assets and information.
- Research and interpret current and pending laws and regulations, industry standards, and customer and vendor contracts to understand and communicate compliance requirements.
Requirements
- Bachelor’s degree in Information Security, Business Administration, IT, or related field.
- 5–7 years of experience in governance, risk management, and compliance
- Ability to provide guidance to subordinates within the latitude of established MeridianLink policies
- Ability to recommend changes to policies and establishes procedures that affect section or multiple disciplines
- Ability to execute financials, business planning, organizational priorities, and workforce
- Ability to follow processes and operational policies in selecting methods and techniques for obtaining solutions
- Ability to develop and manages operational initiatives to deliver tactical results
- Interacts frequently with subordinate supervisors, customers, and/or functional peer group professionals, involving matters between sections and multiple units
- Responsible for impact partnering with key contacts outside own area of expertise and other external stakeholders
- Ability to effectively communicate and present results and recommendations across discipline
- Hands-on experience with GRC platforms (RSA Archer, ServiceNow GRC, MetricStream) and risk assessment tools
- Experience with SOC 2 Type 2 and PCI audits
Benefits
- Insurance coverage (medical, dental, vision, life, and disability)
- Flexible paid time off
- Paid holidays
- 401(k) plan with company match
- Remote work
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
governancerisk managementcompliancecybersecurityrisk assessmentsecurity auditspolicy developmentprocedures implementationfinancial planningoperational initiatives
Soft skills
people managementguidancecommunicationcollaborationproblem-solvingorganizational prioritiestactical results deliveryinterpersonal skillsstakeholder engagementpresentation skills
Certifications
Bachelor’s degree in Information SecurityBachelor’s degree in Business AdministrationBachelor’s degree in IT