GRC Compliance Manager

Job Description

- Prioritize compliance matters associated with many different regulations and frameworks we have agreed to align to including SOX ITGCs and ITACs, ISO 27001, various NIST 800-53 controls, Trust Service Principles, ITPA (South Korea’s Industrial Technology Protection Act), SWIFT Data Protection, and various data privacy regulations in cooperation with legal including TrustArc Enterprise Privacy Certification, GDPR, CCPA, South Korea PIPA, China PIPL, and many others. - Build a scalable, repeatable, consistent process for managing compliance. - Develop and lead the strategic direction of the Compliance Management program, ensuring it aligns with the organization’s objectives and regulatory/framework needs.

How you will make an impact:

• Work closely with business leaders to identify and prioritize compliance matters associated with many different regulations and frameworks we have agreed to align to including:  SOX ITGCs and ITACs, ISO 27001, various NIST 800-53 controls, Trust Service Principles, ITPA (South Korea’s Industrial Technology Protection Act), SWIFT Data Protection, and various data privacy regulations in cooperation with legal including TrustArc Enterprise Privacy Certification, GDPR, CCPA, South Korea PIPA, China PIPL, and many others.
• Conduct consistent design and operating effectiveness control assessments to adequately understand gaps and communicate details effectively
• Provide recommendations on improving the overall GRC program
• Build a scalable, repeatable, consistent process for managing compliance
• Record control details in an appropriate tool and link evidence as appropriate
• Build meaningful, actionable compliance reports
• Facilitate discussions with stakeholders across the organization

What will make you stand out:

• Strong ability to extract information by questioning, active listening, challenging assumptions, and interviewing
• Clear, concise communication skills and ability to convey complex topics in a simple manner
• Experience in developing or improving GRC programs
• Ability to work independently and effectively across all levels of the organization

The experience and qualifications you will bring:

• BA/BS or equivalent experience
• 8+ years work experience
• Expert understanding of compliance management practices
• Experience with tools like Archer and ServiceNow
• Demonstrated analytical, decision making and problem-solving skills
• Strong written, presentation, and verbal communication
• Able to start by

Qualifications