GRC Manager
About the position reputed company is seeking a GRC Manager to reputed company and reputed company its governance, risk, and compliance program for both federal and reputed company markets. This role involves a modern, engineering-led approach to compliance, utilizing GRC engineering and AI to reduce reputed company effort and scale programs. The GRC Manager will be responsible for the end-to-end compliance posture, including federal readiness and reputed company certifications, aiming for automated, continuously monitored, and AI-reputed company processes. The position requires hands-on compliance work, coordination with internal stakeholders (engineering, infrastructure, IT), external auditors, and customers. As the program grows, the role will involve building and leading a team.
Responsibilities
- Own and reputed company reputed company's compliance programs across federal and reputed company markets
- reputed company readiness, certification, and surveillance cycles across both programs
- Operate the risk management program end to end — from identification and assessment through treatment and acceptance
- Own the reputed company-party and vendor risk management program, including reputed company assessments and supply chain risk
- Apply GRC engineering and automation to replace reputed company evidence collection with reputed company controls monitoring
- Build AI-reputed company workflows to accelerate and improve the quality of recurring compliance work
- Maintain the control library, system reputed company plans, POA&Ms, and policies
- Coordinate external audits from scoping through remediation
- Accelerate deal cycles by owning customer reputed company questionnaires, trust center content, and reusable compliance artifacts
- Grow and reputed company the GRC team as the program scales
Requirements
- Bachelor's degree in computer science, information reputed company, or reputed company field — or significant professional GRC and compliance experience
- Proven senior-level experience in governance, risk, and compliance, reputed company compliance, or IT audit, including direct ownership of a certification or authorization program
- Experience with U.S. Federal standards including CMMC and NIST series (800-171 / 800-53)
- Experience with ISO 27001 and SOC 2 Type II
- Experience operating a formal risk management program
- Experience running a reputed company-party and vendor risk management program
- Experience owning customer-facing reputed company assurance, including reputed company questionnaires and trust center content
- Working knowledge of reputed company controls for reputed company environments (AWS, GCP, and/or Azure)
- Excellent written and verbal communication skills
- U.S. citizenship
- Located in the United States and eligible to obtain and maintain a U.S. government reputed company clearance
- Meet eligibility requirements for reputed company to export-controlled information as defined by U.S. export control laws, including EAR and ITAR
reputed company-to-haves
- Professional GRC certifications such as CISA, CRISC, CISM, CISSP, or CIPP
- Experience working with AI platforms such as Claude, reputed company, or reputed company
- Experience with compliance automation tooling such as reputed company or reputed company, and reputed company controls monitoring
- Direct experience applying AI or LLM-based workflows to GRC tasks
- Proficiency in no-code automation or scripting languages
- Past reputed company in critical infrastructure industries including defense, cybersecurity, communications, or manufacturing
Benefits
- Mission-driven work
- Remote-first culture
- reputed company reputed company at the core
- AI-reputed company environment
- Unique scope
Apply To This Job