Manager, Governance, Risk, & Compliance

Requirements

• Bachelor's degree or equivalent experience
• Proven experience implementing GRC platforms and engineering compliance automation solutions in cloud & on-prem environments
• Proven people management experience operating in onshore/offshore model
• 10 + years of direct experience in development, build and delivery of global GRC programs including managing audits
• On-Camera Policy
• About Arctic Wolf
• At Arctic Wolf, we foster a collaborative and inclusive work environment that thrives o

Benefits

Additional Information

At Arctic Wolf, you won't just watch the cybersecurity industry evolve - you'll help lead the change. Our global Pack is made up of people who thrive on solving hard problems, moving fast, and building technology that protects organizations around the world. We're proud to be recognized by Forbes, CNBC, Fortune, CRN, Gartner Peer Insights and IDC MarketScape - but what matters most is the work behind it: delivering real outcomes for customers through award winning innovation like our Aurora Platform. If you're looking for meaningful work, smart teammates and the chance to make a real impact in a high-growth company that's redefining security operations, Arctic Wolf is the right place for you ! Our mission is simple: End Cyber Risk. We're looking for a/an [ insert job title ] to be part of making this/that happen. Position Overview and Objective As a Manager for Governance, risk & Compliance, information technology & security GRC professional, with a great track record for managing the execution of GRC programs. Excels in organising, planning, and delivering results and relish working with others to achieve critical security outcomes. Champions the customer's right to privacy and security and build in those requirements into product offerings & services as well as day-to-day business processes. Helps Arctic Wolf implement and maintain a sustainable GRC program for the enterprise. Primary Responsibilities and Duties Lead a team of Governance, Risk and Compliance professionals Facilitate and Support Arctic Wolf's internal and external audit/assessment activities Work with multiple cross functional teams to enhance and maintain a Unified Controls Framework that meets multiple regulatory/industry best practices security and privacy standards. Gather and maintain library of objective evidence to show ongoing compliance with the documented controls. Execute periodic organizational and asset level risk and impact assessments to identify IT, Security & Privacy risks in a manner that helps AW comply with multiple regulations/frameworks that use a risk-based approach to implementing Security & Privacy practices. Maintain a Risk Register and drive sound risk management and reporting functions. Log, analyze, track and report on control related gaps/non-conformities/findings and contextualize them for Risk Management purposes. Perform governance activities such as creation and maintenance of internal security & privacy policies, standards, procedures/guidance, and program documents. Implement and maintain a Customer Due Diligence program, to maintain a set of customer facing standardized assessments and corresponding artifacts that showcase AW's strong security & privacy posture and commitment. On an as-needed basis, support the Sales teams by completing customer due diligence questionnaires for prospects and returning customers. Implement a Third-Party Service Provider Risk Management Program that assesses, manages, monitors and reports on the security risk of Arctic Wolf's third party risk landscape covering activities from onboarding to off boarding of vendors. Administer and operate GRC toolset to automate processes and programs to gain efficiencies. On an as-needed basis, provide advisory services to other teams on maintaining compliance with the IT, Privacy and Security policies and standards through the course of their business operations. Provide Program level metrics & reporting for consumption by Senior & Executive management Key Skills Expert understanding of domestic and global security & privacy frameworks Deep industry knowledge of Information Security, and Governance, Risk & Compliance processes Executive level content creation and message delivery Collaborative skills with technical teams, operations teams and corporate functions such as Legal, HR, Sales, Marketing, Facilities conducting risk and compliance assessments Strong project/program management expertise Key Competencies

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at arcticwolf? Share your experience