Enterprise grc platform configuration and integration
Third-party risk management and vendor assessments
This role is responsible for leading and modernizing the firm's cybersecurity compliance and governance programs while leveraging automation and AI capabilities
Job Summary
This role is responsible for leading and modernizing the firm's cybersecurity compliance and governance programs while leveraging automation and AI capabilities.
The Compliance Manager will oversee key security governance activities including incident response readiness, annual tabletop exercises, and security policy lifecycle management.
Candidates must have extensive experience managing complex internal and external audits while partnering with technical teams to ensure controls are effectively implemented.
Matching Summary
This role is responsible for leading and modernizing the firm's cybersecurity compliance and governance programs while leveraging automation and AI capabilities.
Skills & Requirements
Must-have
SOC 2 ISO 27001 NIST compliance frameworks
Enterprise GRC platform configuration and integration
Third-party risk management and vendor assessments
Audit coordination and evidence management strategy
Security policy development and lifecycle governance
Incident response readiness and tabletop exercises
Client security questionnaire and assurance responses
Nice-to-have
AI governance and emerging framework knowledge
Experience with Drata or ServiceNow GRC tools
Ability to mentor and coach team members
Strong communication skills for senior stakeholders
Background in scripting and automation workflows
Key Requirements
8+ years of experience in cybersecurity governance or compliance
Proven ownership of enterprise-level compliance programs
Hands-on experience with enterprise GRC platforms like Drata
Bachelor's degree in Cybersecurity or related field preferred