Cybersecurity GRC Manager

We are seeking an experienced and highly motivated GRC Manager to lead our Governance, Risk, and Compliance (GRC) function. Reporting directly to the Cybersecurity Director, the GRC Manager will oversee a team of GRC Engineers and be responsible for developing, maintaining, and optimizing the organization’s information security risk management and compliance frameworks.

Requirements

• Bachelor’s degree in information security, Computer Science, Business, or a related field (Master’s preferred).
• 5–8+ years of experience in information security, with at least 2–3 years in a GRC leadership or management role.
• Experience managing teams and working cross-functionally with legal, IT, engineering, and business stakeholders.
• CISSP, CISM, CRISC, CISA, or similar GRC-related certifications.
• In-depth understanding of security frameworks such as NIST CSF, ISO 27001, SOC 2, and regulatory requirements.
• Familiarity with GRC tools and platforms (e.g., Archer, ServiceNow GRC, LogicGate).
• Strong project management and communication skills.
• Ability to interpret technical and business needs and translate them into risk mitigation actions.

Benefits

• Training & Awareness: Support security awareness training initiatives in partnership with internal communications and HR teams.
• Drive continuous improvement of compliance education across departments.
• Remains knowledgeable on current federal, state and local laws, accreditation standards or regulatory agency requirements that apply to the assigned area of responsibility and ensures compliance with all such laws, regulations and standards.