GRC Program Manager

Tasks

• Author and update data protection policies
• Automate third-party risk assessments
• Build AI governance controls
• Collect audit evidence
• Design security and privacy controls
• Escalate and respond to customer security inquiries
• Execute internal and external audits
• Maintain ISO 27001 compliance
• Maintain PCI DSS compliance
• Maintain SOC 2 compliance
• Maintain security response repositories
• Manage customer security questionnaires
• Manage daily GRC compliance workflows
• Perform control testing
• Perform cross functional risk assessments
• Provide mitigation recommendations
• Run privacy by design policy program
• Track remediation actions

Perks/Benefits

• Additional leave days
• Employee assistance program
• Employee share ownership plan
• Employee support for volunteering
• Hackathons
• Internet reimbursement
• Novated leasing
• Paid parental leave
• Salary continuance insurance
• Study assistance
• Work from home stipend

Skills/Tech-stack

AI Governance | AI Risk Management Framework | Audit management | By Design | Compliance Automation | Control Testing | Data Protection | Evidence collection | Governance Risk | Governance Risk and Compliance | ISO 27001 | ISO 42001 | Management Framework | NIST AI | NIST AI Risk | NIST AI Risk Management | NIST AI Risk Management Framework | NIST Privacy | NIST Privacy Framework | PCI DSS | Policy Management | Privacy by Design | Privacy framework | Remediation management | Risk Assessment | Risk Management | Risk Management Framework | Risk and Compliance | SOC 2 | Security Questionnaires | Third Party | Third-Party Risk | Third-party risk management