FREE ACCESS
5,000–10,000 jobs/day
See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Senior Manager, Governance Risk & Compliance
Sound PhysiciansSenior Manager, Governance, Risk, and Compliance leading information security for Sound Physicians. Translating cybersecurity strategy into processes and mentoring GRC team members while delivering key compliance activities.
Core Competencies
Role fitCore Competencies
Use this summary to align your resume positioning with the role.
Demonstrates expertise in leading enterprise information security GRC programs, translating cybersecurity strategies into measurable outcomes, and managing compliance activities. Proven ability to mentor teams and communicate security risks effectively to senior leadership.
Highest-signal resume keywords
Information Security GRCRisk ManagementNIST CSFISO 27001CISSP
ATS Keywords
Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills
Risk AssessmentsCompliance AuditsControl TestingSecurity Policy FrameworkSecurity Risk Practices
Soft Skills
MentoringCommunicationRelationship Building
Tools & Technologies
Risk MetricsDashboards
Certifications & Qualifications
CISSPCISMCRISCCISA
Industry Keywords
HIPAA Security RuleCISO Led Security OrganizationRegulated Environment
Tech Stack
Tools & technologiesCyber Security
About the role
Key responsibilities & impact- Lead the execution of the enterprise information security GRC program and report directly to the CISO.
- Translate the CISO’s cybersecurity strategy and risk tolerance into scalable and defined processes, measurable outcomes, and defensible compliance posture.
- Own the security risk lifecycle, including assessments, tracking, remediation, and escalation of material risks to the CISO.
- Maintain the security policy framework and translate standards (e.g., NIST CSF, ISO 27001, SOC 2) into actionable control requirements.
- Manage security related compliance activities and audits; maintain evidence and track remediation to closure.
- Operate the vendor security risk management program and escalate high risk vendors and systemic issues.
- Produce concise risk and compliance metrics and dashboards for the CISO and senior leadership.
- Mentor GRC staff and act as a trusted advisor to Security, IT, Legal, Privacy, and business teams.
- Partner with the CISO and Sr. Manager of Security Operations to update the Strategic Information Security Program.
Requirements
What you’ll need- Bachelor’s degree in Information Security, Cybersecurity, Information Systems, Computer Science, Business Administration, or a related field
- 7+ years of experience in information security GRC or risk management.
- Strong knowledge of HIPAA Security rule, NIST CSF, ISO 27001, SOC 2, and security risk practices.
- Experience with risk assessments, audits, and control testing.
- Ability to clearly communicate security risk to senior leaders.
- Proven ability to mentor and develop GRC team members and develop working relationships across organizations.
- Broad knowledge of technology and security risks.
- Preferred: CISSP, CISM, CRISC, CISA, or similar certifications.
- Experience in a CISO led security organization or regulated environment.
Benefits
Comp & perks- Medical insurance
- Dental insurance
- Vision insurance
- Health care and dependent care flexible spending account
- 401(k) retirement savings plan with a company match
- Paid time off (PTO) begins accruing immediately upon start date at a rate of 15 days per year, in accordance with Sound's PTO policy
- Ten company-paid holidays per year