Governance, Risk & Compliance Manager
Remote
Full Time Mid-level / Intermediate USD 1K - 2K
Wrapbook
Meet the unified platform for film, TV, and commercial production payroll, accounting, and cost-tracking. Wrapbook offers automated timecards, compliance, budget management, and much more.About Us:
Wrapbook is a smart, intuitive platform that makes production payroll and accounting easier, faster, and more secure. We provide a unified payroll platform that seamlessly connects your entire team—production, accounting, cast, and crew—all in one place. Wrapbook empowers production teams to manage projects, pay cast and crew, track expenses, and generate data-driven insights, while enabling workers to manage timecards, track pay, and onboard to new projects from any device. Wrapbook brings clarity and dependability to production payroll, while increasing the productivity of your whole team.
Trusted by companies of all sizes, Wrapbook powers payroll for some of the industry’s top production companies, including SMUGGLER, Tuff, and GhostRobot. Our growing team of 250+ people across the USA and Canada, including entertainment and technology experts from SAG-AFTRA, DGA, IATSE, Teamsters, Amazon, Microsoft, Facebook, and more. Wrapbook is backed by top-tier investors, including Jeffrey Katzenberg’s WndrCo, Andreessen Horowitz, and A* Capital. We have raised $130M and are in a strong financial position.
The Opportunity
Wrapbook is looking for a Governance Risk and Compliance (GRC) Manager who will play a hands-on role in driving our mission to build an outstanding technology company. As a member of the growing Security & IT team in the Trust department, there’s a lot of room to make your mark. In this role you will leverage your leadership and technical expertise to own and execute on a roadmap for Wrapbook Governance, Risk, and Compliance capabilities. This includes Policy lifecycle, Third Party Risk, Audits, Customer Assurance, Information Security Risk management, and Security Awareness initiatives.
What You’ll Do
To fulfill your mission, you'll engage in various activities including: developing a vision and strategy for GRC maturity, planning and driving projects across Security, defining and refining processes and policies, and setting an example for security culture within the company. We're looking for experienced security-oriented compliance professionals who aim to enhance and mature security programs using framework guidance.
In your first year, you will impact our program by:
Leading the organization-wide information security compliance capability by designing, developing, and implementing programs to ensure IT activities, processes, and procedures align with necessary requirements, policies, and regulations.
Representing Wrapbook in information security matters through clear communication—both verbal and written—with all levels of company staff (IT, engineering, senior leadership, general counsel) and external parties (auditors, customers, technology vendors, and contractors).
Establishing requirements and policies for our employees to follow. Own Information Security Policy lifecycle, creating and updating our document library and driving employee policy education efforts.
Coordinating risk collection and review activities, resulting in calibrated risks for presentation. Executing operational security risk management activities, including annual security risk assessments. Identifying and implementing risk process automation opportunities.
Enhancing our current approach to assessing and tracking Third Party Risk.
Developing and maintaining customer assurance packages and other self-service security resources. Streamlining the process for customers to obtain security attestations and answers to their questions.
Maintaining and optimizing continuous compliance tools to effectively track security-oriented work.
Spearheading the Security Awareness program, fostering a robust security culture across Wrapbook through training, presentations, and promotion of best practices. Continuously enhancing the program to address evolving needs and raise overall maturity.
Coordinating and tracking security programs and audits, including project scope, decisions, involved parties, timelines, measurements, and success criteria.
Cultivating productive relationships with partners and stakeholders to ensure security programs integrate with and support cross-functional teams.
What You’ll Have
Bachelor’s degree in a technical field (ex: IT, Engineering, Accounting, Business Admin) or 5+ years of related field expertise
At least 5 total years of experience working in Security/GRC and are able to demonstrate knowledge of core Security basics.
Working understanding of compliance in cloud-native technology stacks
Ability to develop security standards and guidelines based on best practices and industry standards
Plus:
3+ years of experience with advanced auditing. Bonus if multiple frameworks.
3+ years of Project and/or Program management experience with ability to demonstrate organization, communication, execution and leadership to drive outcomes.
Understanding of common security and privacy standards, regulations, and laws relating to cloud, privacy and application security (e.g., SOC 1 and 2, ISO 27001 - ISMS, ISO27017 - Cloud Security, ISO27018 - Protection of PII in the Cloud, GDPR/CCPA)
Empathy for customers and a thoughtful listener. Able to build trust and relationships with fully virtual team members.
Excellent communication and interpersonal skills, with the ability to effectively communicate and present cybersecurity risks and recommendations to stakeholders at all levels.
Detail oriented and accountable for results.
Why Join Us
At Wrapbook, creativity meets technology — and not just in the product.
In addition to a competitive salary and all the benefits you can expect from a fast-growing technology company, you’ll get access to a team of creative problem solvers and the chance to see your contributions make large impacts. Benefits include:
Unlimited Paid Time Off
Work from anywhere in Canada and USA
Health and Dental benefits
Up to $1500 towards IT set up for your home
Up to 2% matching RRSP / 401K
Learning and Development opportunities
Up to $50 USD/ $66.50 CAD towards Internet/Cell phone service
Our Pledge to Fostering an Inclusive and Safe Workplace:
Wrapbook pledges to be a harassment- and discrimination-free space for everyone, regardless of age, disability, ethnicity, gender identity or expression, nationality, neurotype, personal appearance, political affiliation, professional background, race, religion, or sexual identity or orientation.
Apply Now
Have we got your attention? Submit your application today and a member of our Talent team will be in touch with you shortly!
Tags: Application security Audits Automation CCPA Cloud Compliance GDPR Governance ISMS ISO 27001 Privacy Risk assessment Risk management SOC SOC 1 Strategy
Perks/benefits: Career development Competitive pay Health care Salary bonus Unlimited paid time off
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.