Related skills
iso grc pci soc 2 hipaaπ Description
- Lead and scale the GRC program across SOC 1, SOC 2, PCI, HITRUST, and HIPAA
- Own audit relationships: planning, evidence collection, documentation, and auditor communications
- Define and enforce compliance roadmaps with cross-functional alignment
- Attract top-tier talent to scale the GRC team; mentor and manage performance
- Oversee vendor risk management: third-party due diligence, risk tiering, escalation
- Lead DDQ reviews with Security Engineering; final sign-off authority
π― Requirements
- 8+ years in GRC or related field with at least 3 years in leadership
- Deep expertise across SOC1, SOC 2, PCI, HIPAA, and ISO certifications
- Proven track record managing audit programs end-to-end with external auditors
- Experience building or scaling a GRC function, including hiring and development
- Strong understanding of vendor risk management and third-party due diligence
- Ability to translate complex compliance and risk topics for executive audiences
π Benefits
- Equity in the company
- Medical, Dental and Vision premiums covered at 100%
- Fully paid parental leave
- Commuter benefits
- 401k benefits
- Relocation packages covered
π Relocation support
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Legal Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!