GRC Program Manager
A company is looking for a GRC Program Manager.
Key Responsibilities
Own day-to-day execution of SOC 1, SOC 2, PCI DSS, and ISO 27001 readiness and audit cycles
Develop and maintain policies, procedures, risk assessments, and control documentation
Facilitate risk assessments and manage vendor security reviews and ongoing monitoring
Required Qualifications
3-6+ years of experience in governance, risk, compliance, audit, or information security roles
Hands-on experience supporting or leading SOC 1 and/or SOC 2 audits; experience with PCI DSS and ISO 27001 preferred
Strong knowledge of compliance frameworks (SOC, ISO 27001, NIST CSF, PCI DSS)
Bachelor's degree in Information Systems, Computer Science, Business, Risk Management, or related field
Experience collaborating with cross-functional teams in a technical environment