View all jobs

Governance, Risk, and Compliance Program, SOC 2, ISO 27001, GDPR, HITRUST

Atlanta, GA · Information Technology
We are well funded and at the forefront of technological innovation, driving transformative solutions in the world of data and analytics.
Our mission is to enable your business to harness the power of big data, transforming complex data sets into actionable insights that disrupt industries and deliver a competitive advantage for our clients.
We are a trusted advisor that handles the heavy lifting of big data management and governance, so our clients can focus on making informed, strategic decisions that drive growth and innovation.
We firmly grasp the transformative power of data and artificial intelligence.
We have a spirited team of employees across the U.S. dedicated to redefining the boundaries of technology and cognitive solutions all with deep expertise in Management Consulting.
Job Description: 

We are innovators in the world of data and analytics, dedicated to unlocking the full potential of your data. Our tech-enabled managed service for big data infrastructure combines cutting-edge technology with deep industry expertise to deliver comprehensive, tailored solutions. Our mission is to enable your business to harness the power of big data, transforming complex data sets into actionable insights that disrupt your industry and deliver a competitive advantage The GRC Manager reports to the Director of Information Security and is responsible for managing, administering, optimizing, and maturing Governance, Risk, and Compliance (GRC) Program. The GRC Manager works closely with Information Security, Information Technology, Engineering, DevOps, and HR to support company Governance, Risk Management, and Compliance requirements. In addition, the GRC Manager facilitates and tracks company compliance obligations, coordinates internal and external audits, and manages the company risk register, master controls register, compliance automation platform, and dashboards. Candidates applying for this high-impact role should be experienced GRC professionals and highly organized, self-motivated, resilient team player with experience in security and privacy compliance frameworks such as SOC 2, ISO  27001, GDPR, HITRUST etc., implementing security and privacy compliance controls, policies, and procedures, and  working with diverse stakeholder groups to navigate internal and external compliance activities and audits in an  organization with a cybersecurity mission and modern tech stack.  This is a multi-faceted role within a fast-moving startup and will require the successful candidate to possess an ownership mentality, sound judgment, personal responsibility, discipline, and initiative. In this role, you will manage and administer the company's overall Governance, Risk Management, and Compliance mission and help drive alignment, maturity, capacity, and optimization where needed. This is a strategic and high-impact role. 
Key Responsibilities:
Ensuring we maintain compliance with its GRC commitments. Maintain the master controls register and ensure that compliance framework controls are mapped, accurate, and up-to- date
Leading and coordinating compliance activities 
Table-top exercises
Internal and external audits
Risk assessment 
Ability to work with teams throughout the organization to collect and catalog required evidence for internal and external audits
Organize and facilitate internal and external compliance activities 
Providing governance support and oversight
Designing, optimizing, and implementing governance controls, policies, and procedures to meet requirements while enabling the organization to achieve tactical and strategic goals efficiently. Monitoring, development, and administration of GRC tooling, reporting, documentation, and dashboards. Ability to consistently drive adherence to and improvement in organizational compliance requirements, controls, and policies 

• A person who is excited about working at a startup company
• A proven track record of successfully leading GRC programs and teams
• Excellent understanding of and experience in multiple compliance frameworks such as SOC 2, ISO 27001,
• 5-6 years of experience working with public cloud platforms such as Azure, AWS, or GCP required
• Experience creating documentation, analytic dashboards, and reporting
• Minimum of 3-5 years of relevant technical experience in Information Security.
• A bachelor's degree in computer science, cybersecurity, information systems, or a related field. Advanced degrees or
  professional certifications (e.g., CISSP, CISM, CompTIA Security+) would be a plus.
• The ability to lead, prioritize, collaborate, and execute complex projects across multiple, geographically diverse groups with competing priorities is required.
Strong troubleshooting and problem-solving abilities. 
Excellent customer service and communication skills.
Experience with support ticket systems and adherence to SLAs.
Willingness to work in a fast-paced, dynamic environment.
Ability to work effectively in a team and collaborate with cross-functional stakeholders. 

If you meet the above qualifications and are excited to join a dynamic team of professionals in a fast-paced environment, we would love to hear from you. Join us and become a part of our dynamic and innovative team that is dedicated to transforming how businesses utilize and derive value from their data. Take the next step in your career and unlock endless possibilities. 
We’ve crafted a comprehensive benefits package designed to support you not just at work but in all facets of life. Here’s a snapshot of just some of the typical benefits you can expect when joining our dynamic team:
Base Salary +
Company matched 401(k) contributions
Unlimited PTO
Comprehensive Medical, Dental, and Vision Insurance
Life and Disability Insurance
STD/LTD Insurance
Mental Health Support
Fitness Discount Programs



Share This Job

Powered by