Governance, Risk Management, and Compliance Manager

Description

🚀 CUJO AI® is a leader in artificial intelligence solutions for network service providers. We use machine learning and real-world data to develop cybersecurity, device intelligence, and parental control solutions that make internet connections safer for millions of homes. 

ABOUT THE ROLE 

We are looking for a Governance, Risk Management, and Compliance Manager to join our global team. 

The GRC (Governance, Risk, and Compliance) Manager is responsible for supporting the organization's Integrated Management System (IMS) by identifying, assessing, and mitigating risks, ensuring compliance with regulatory requirements, and promoting best practices in governance. This role involves working closely with senior leadership and various departments to implement and maintain effective governance of business processes, risk management and compliance. 

The GRC Manager also educates the internal auditors, leads their team, and acts as the first point of contact for CUJO’s key stakeholders. 

The compensation package is from 3000 EUR to 6000 EUR (gross), depending on your experience. 

MAIN RESPONSIBILITIES

The GRC Manager shall be responsible for supporting the CUJO’s control environment by ensuring that: 

• The company’s policies, procedures, and processes are defined and up to date 
• Risks are promptly identified, assessed, and appropriately managed 
• Necessary controls are properly designed, implemented and operated efficiently to support continuous improvement, ensure compliance, and mitigate operational risks. 
• Their efficacy is regularly analyzed, and identified exceptions are appropriately and promptly remediated. 

The GRC Manager executes the operational plan for the GRC function, defines, documents, and circulates clear instructions to reach the goals, performs day-to-day controls’ performance monitoring, and provides coaching and guidance for the personnel who execute GRC-related activities. 

GRC-specific Duties:  

• Support for CUJO AI strategic initiatives to develop, mature, and optimize GRC practices across the CUJO AI organization. 
• Maintain: 
• a clear and detailed index of CUJO AI business process documentation and related controlled documents, and  
• the register of contractual and legislative requirements affecting CUJO AI® products/services. 
• Assist and guide business process owners on documenting the processes they own and accompanying workflows. 
• Monitor and report efficiency across individual GRC areas. 
• Identifying GRC issues and risks. 
• Help and support employees in process efficacy and practicality analysis and improvements 
• Day-to-day monitoring of risk posture, compliance and governance trends, regulations, guidelines, and lawsuits. 
• Risk management and proactive participation in internal/external Information security audits. 
• Act as the 1st line point of contact with Team leads for all compliance-related cases. 
• Close cooperation with technical and business leadership across the organization. 

Internal Audit Duties: 

• Determine internal audit scope and develop annual plans and schedules, continuously optimize audit process and procedures. 
• Govern the full audit cycle including risk management and control management over business processes’ effectiveness, CUJO AI® service resilience and compliance with all applicable laws, regulations, and international and national standards. 
• Maintain open communication with management, prepare and present reports that reflect audit’s results and conduct follow up audits to monitor management’s interventions.

Requirements

PROFESSIONAL/TECHNICAL COMPETENCIES 

Risk Management: 

• Conduct regular risk re-assessments to identify potential threats and vulnerabilities. 
• Recommend and implement risk mitigation strategies. 
• Monitor and report on risk exposure, associated management activities and Key Risk Indicators (KRIs). 

Compliance: 

• Ensure compliance with customer requirements, relevant laws, regulations, and industry standards. 
• Assist in the development and maintenance of compliance policies and procedures. 
• Conduct compliance audits and assessments. 

Governance: 

• Support the development and implementation of governance frameworks and associated tools. 
• Promote best practices in governance across the organization. 
• Assist in the preparation of governance reports and documentation. 

Policy Development: 

• Collaborate with stakeholders to develop and update management domain-specific policies and procedures. 
• Ensure policies are communicated effectively and adhered to by all employees. 

Training and Awareness: 

• Deliver internal training on risk management, compliance, and governance. 
• Raise awareness of GRC principles and practices within the organization. 

Reporting: 

• Prepare regular reports on GRC activities and performance. 
• Provide insights and recommendations to the senior leadership team. 

WHAT WE’RE LOOKING FOR

• Master’s or Bachelor’s degree in Business Administration, Information Technology, or a related field. 
• Minimum of 3 years of experience in risk management, compliance, and governance. 
• Strong understanding of regulatory requirements and industry standards. 
• Excellent analytical and problem-solving skills. 
• Effective communication and interpersonal skills. 
• Proficiency in GRC tools and software. 
• Good knowledge of information security, business continuity, risk and quality management frameworks 
• Knowledge of ISO 2700x, ISO 2230x, ISO 900x, SOC2, ITILv4/ISO 20000-x standards, GDPR and their North America counterparts. 
• Ability to understand and interpret legal and technical documentation. 

WHAT WILL MAKE YOU STAND OUT

• Professional certifications such as CISM, GRCP or CGEIT. 
• Strong skills in Process mapping and business process reengineering. 
• Ability to analyze, follow-up and provide feedback on all IT and Compliance Audit findings clearly collaborating risks to company Leadership. 
• Willingness to learn and thoroughness. 
• Command of English both written and spoken. 
• Excellent processes and practices development knowledge. 
• Good knowledge of tools and technologies used in the service domain areas such as AWS, Atlassian Jira and Confluence, Trust management platform(s), Contract management SaaS, Data visualization software, Learning Management System(s) (LMS).

WHY JOIN CUJO AI?

• Flexible Work – Hybrid or fully remote options based on your location.
• Team Gatherings – Annual company events and team activities.
• Career Growth – Training bonuses for AWS certifications and other learning opportunities.
• Performance Bonuses – Company-wide annual bonus program.
• Referral Rewards – Earn up to €1,000 for referring new hires. 

At CUJO AI, we value innovation, collaboration, and continuous improvement. Join us and work on technology that makes the internet safer! 

📅 Apply by May 31, 2025 – but don’t wait! We’ll hire as soon as we find the right person. 

📩 Apply via our recruitment portal. Questions? Email us at careers@cujo.com.