Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Sound Physicians

Senior Manager, Governance Risk & Compliance

Sound Physicians

Senior Manager, Governance, Risk, and Compliance leading information security for Sound Physicians. Translating cybersecurity strategy into processes and mentoring GRC team members while delivering key compliance activities.

Posted 7/16/2026full-timeRemote • 🇺🇸 United StatesSenior💰 $130,000 - $160,000 per yearWebsite

Core Competencies

Role fit
Core Competencies

Use this summary to align your resume positioning with the role.

Demonstrates expertise in leading enterprise information security GRC programs, translating cybersecurity strategies into measurable outcomes, and managing compliance activities. Proven ability to mentor teams and communicate security risks effectively to senior leadership.

Highest-signal resume keywords
Information Security GRCRisk ManagementNIST CSFISO 27001CISSP

ATS Keywords

Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills
Risk AssessmentsCompliance AuditsControl TestingSecurity Policy FrameworkSecurity Risk Practices
Soft Skills
MentoringCommunicationRelationship Building
Tools & Technologies
Risk MetricsDashboards
Certifications & Qualifications
CISSPCISMCRISCCISA
Industry Keywords
HIPAA Security RuleCISO Led Security OrganizationRegulated Environment

Tech Stack

Tools & technologies
Cyber Security

About the role

Key responsibilities & impact
  • Lead the execution of the enterprise information security GRC program and report directly to the CISO.
  • Translate the CISO’s cybersecurity strategy and risk tolerance into scalable and defined processes, measurable outcomes, and defensible compliance posture.
  • Own the security risk lifecycle, including assessments, tracking, remediation, and escalation of material risks to the CISO.
  • Maintain the security policy framework and translate standards (e.g., NIST CSF, ISO 27001, SOC 2) into actionable control requirements.
  • Manage security related compliance activities and audits; maintain evidence and track remediation to closure.
  • Operate the vendor security risk management program and escalate high risk vendors and systemic issues.
  • Produce concise risk and compliance metrics and dashboards for the CISO and senior leadership.
  • Mentor GRC staff and act as a trusted advisor to Security, IT, Legal, Privacy, and business teams.
  • Partner with the CISO and Sr. Manager of Security Operations to update the Strategic Information Security Program.

Requirements

What you’ll need
  • Bachelor’s degree in Information Security, Cybersecurity, Information Systems, Computer Science, Business Administration, or a related field
  • 7+ years of experience in information security GRC or risk management.
  • Strong knowledge of HIPAA Security rule, NIST CSF, ISO 27001, SOC 2, and security risk practices.
  • Experience with risk assessments, audits, and control testing.
  • Ability to clearly communicate security risk to senior leaders.
  • Proven ability to mentor and develop GRC team members and develop working relationships across organizations.
  • Broad knowledge of technology and security risks.
  • Preferred: CISSP, CISM, CRISC, CISA, or similar certifications.
  • Experience in a CISO led security organization or regulated environment.

Benefits

Comp & perks
  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Health care and dependent care flexible spending account
  • 401(k) retirement savings plan with a company match
  • Paid time off (PTO) begins accruing immediately upon start date at a rate of 15 days per year, in accordance with Sound's PTO policy
  • Ten company-paid holidays per year