Manager, Governance, Risk & Compliance (GRC)

📋 Description

• Report to the VP of Information Security.
• Own and modernize Aya's enterprise GRC program for scale.
• Primary owner of ServiceNow GRC/IRM; configure and adopt across org.
• Translate regulatory requirements into scalable automated controls and workflows.
• Lead SOC 2 and ISO/IEC 27001:2022 readiness, audits, remediation.
• Establish control ownership, audit-ready docs; build dashboards; lead a team.

🎯 Requirements

• 5+ years in Governance, Risk, and Compliance (GRC) or related.
• 2+ years hands-on experience with ServiceNow GRC/IRM (config/admin).
• Experience modernizing GRC programs for scalability and automation.
• Strong knowledge of SOC 2 and ISO/IEC 27001:2022.
• Proven experience leading/mentoring compliance analysts and cross-functional influence.

🎁 Benefits

• Free premium medical, dental, life, and vision insurance.
• Generous 401(k) match.
• Company-sponsored virtual events and team-building.
• Unlimited PTO — we believe in time off.
• Virtual yoga, meditation or boot camp daily.