Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior Manager, Information Security GRC

Greystar Worldwide, LLC

ABOUT GREYSTAR

Greystar is a leading, fully integrated global real estate platform offering expertise in property management, investment management, development, and construction services in institutional-quality rental housing. Headquartered in Charleston, South Carolina, Greystar manages and operates over $300 billion of real estate in more than 265 markets globally with offices throughout North America, Europe, South America, and the Asia-Pacific region. Greystar is the largest operator of apartments in the United States, managing over one million units/beds globally. Across its platforms, Greystar has nearly $79 billion of assets under management, including over $35 billion of development assets and over $36.5 billion of regulatory assets under management. Greystar was founded by Bob Faith in 1993 to become a provider of world-class service in the rental residential real estate business. To learn more, visit

JOB DESCRIPTION SUMMARY
The Senior Manager, Information Security GRC owns the strategy, execution, and continuous improvement of Greystar's Global Information Security Governance, Risk, and Compliance program. This role builds and leads the GRC function - developing internal team capability and directing third-party partners - and is accountable for the frameworks, processes, and reporting that govern security risk, regulatory compliance, third-party risk, and security awareness across the enterprise. The Senior Manager sets the GRC program roadmap, advises senior leadership on the organization's risk posture, and partners across the business to preserve the availability, integrity, and confidentiality of Greystar and customer information in compliance with applicable information security laws, policies, and standards. Reports to the Information Security Officer (or CISO).

JOB DESCRIPTION

Leadership and Strategy
  • Own the GRC program roadmap and strategy, setting priorities, objectives, and maturity goals aligned with business and security objectives.
  • Build and lead the GRC function, growing internal team capability while directing third-party partners to deliver against program objectives.
  • Advise the Information Security Officer and senior leadership on enterprise security risk posture, emerging threats, and regulatory exposure.
  • Establish and report program metrics, dashboards, and KPIs that communicate GRC program health to senior leadership and the board.
Governance and Compliance
  • Own the information security policy framework, including development, approval, enforcement, and periodic review of policies, standards, and procedures for global locations.
  • Direct the monitoring of changes in laws, regulations, and industry standards affecting information security (e.g., NIST, ISO 27001, PCI DSS, SOX, GDPR, CCPA), and oversee translation of those changes into actionable business requirements.
  • Oversee compliance assessments and maintain the organization's compliance posture across applicable frameworks and regulations.
  • Build and mature AI governance practices, applying emerging frameworks such as ISO 42001 and the NIST AI RMF.
Risk Management
  • Lead the enterprise information security risk management program, including risk assessments across business units, applications, infrastructure, and processes; the risk register; and risk treatment planning.
  • Drive remediation of identified risks, partnering with control owners and holding the program accountable for closure.
  • Own the third-party risk management program, including pre-contract security due diligence, recurring vendor risk reviews, the vendor risk inventory, and remediation tracking.
Audit and Controls
  • Oversee responses to client, regulator, and internal audit requests, including security questionnaires (SIG, CAIQ), evidence collection, and findings remediation.
  • Direct periodic audits of internal control systems to ensure access levels, segregation of duties, and configuration baselines remain appropriate, and lead the response to audit findings requiring action.
  • Oversee periodic user access and privileged access reviews across in-scope systems and applications, ensuring timely remediation of inappropriate or excessive access.
  • Partner with Legal, Privacy, and other stakeholders on Electronically Stored Information (ESI) requests, including identification, preservation, collection, and chain-of-custody documentation in support of legal holds, investigations, and regulatory inquiries.
Awareness and Platform
  • Own the enterprise security awareness program, including training curricula and ongoing awareness communications that promote secure behavior across the organization.
  • Oversee the phishing simulation program, including campaign strategy, results analysis, and remediation training.
  • Direct administration and enhancement of the enterprise GRC platform, including workflow configuration, control library maintenance, reporting, and user support.
Qualifications
  • Bachelor's degree in Information Security, Computer Science, Information Systems, or a related field, or equivalent work experience.
  • Eight or more years of progressive experience in information security, with at least four years focused on GRC, risk, audit, or compliance.
  • Two or more years of direct people-management experience leading security, risk, or compliance teams.
  • Demonstrated experience building, operating, and maturing an enterprise risk management program, including risk assessments, risk registers, and risk treatment planning.
  • Demonstrated experience owning a third-party risk management program, including vendor security assessments and due diligence.
  • Strong working knowledge of security frameworks and standards including ISO 27001, SOC 2, NIST 800-53, and GDPR.
  • Familiarity with cloud environments (AWS, GCP, Azure) and their risk and compliance implications.
  • Familiarity with AI governance concepts and emerging frameworks (ISO 42001, NIST AI RMF), or a demonstrated ability to learn and apply new frameworks quickly.
  • Strong analytical and problem-solving skills with the ability to translate technical risk into clear business language for executive audiences.
  • Demonstrated ability to lead multiple priorities, drive issues to closure, and operate with significant autonomy.
  • Proven ability to influence partners across IT, Engineering, Legal, Privacy, Internal Audit, and the business.
  • Industry certifications such as CRISC, CISA, CISSP, CISM, or CCSK strongly preferred.
  • Experience with GRC platforms such as Hyperproof, OneTrust, Archer, or similar.
Experience with security awareness traini

Additional Compensation :

Many factors go into determining employee pay within the posted range including business requirements, prior experience, current skills and geographical location.
  • Corporate Positions: In addition to the base salary, this role may be eligible to participate in a quarterly or annual bonus program based on individual and company performance.
  • Onsite Property Positions: In addition to the base salary, this role may be eligible to participate in weekly, monthly, and/or quarterly bonus programs.
Robust Benefits Offered*:
  • Competitive Medical, Dental, Vision, and Disability & Life insurance benefits. Low (free basic) employee Medical costs for employee-only coverage; costs discounted after 3 and 5 years of service.
  • Generous Paid Time off. All new hires start with 15 days of vacation, 4 personal days, 10 sick days, and 11 paid holidays. Plus your birthday off after 1 year of service! Additional vacation accrued with tenure.
  • For onsite team members, onsite housing discount at Greystar-managed communities are available subject to discount and unit availability.
  • 6-Week Paid Sabbatical after 10 years of service (and every 5 years thereafter).
  • 401(k) with Company Match up to 6% of pay after 6 months of service.
  • Paid Parental Leave and lifetime Fertility Benefit reimbursement up to $10,000 (includes adoption or surrogacy).
  • Employee Assistance Program.
  • Critical Illness, Accident, Hospital Indemnity, Pet Insurance and Legal Plans.
  • Charitable giving program and benefits.

*Benefits offered for full-time employees. For Union and Prevailing Wage roles, compensation and benefits may vary from the listed information above due to Collective Bargaining Agreements and/or local governing authority.

Greystar will consider for employment qualified applicants with arrest and conviction records.

Important Notice: Greystar will never request your banking details or other sensitive personal information during the interview process. Greystar does not conduct any interviews via text or messaging, and all communication will come from official Greystar email addresses (@greystar.com). If you receive suspicious requests, please report them immediately to View email address on click.appcast.io.
Vacancy posted 15 hours ago
Similar jobs that could be interesting for youBased on the Senior Manager, Information Security GRC in United States vacancy
  •  ...Senior Manager, Information Security GRC page is loaded## Senior Manager, Information Security GRClocations: City Office Dallas (Southlake), Southlake, TX: Remote Texas, Remote Texas, TXtime type: Full timeposted on: Posted Yesterdayjob requisition id: R0193182**ABOUT... 
    Senior
    Contract work
    Work experience placement
    Work at office
    Remote work

    Greystar

    Dallas, TX
    1 day ago
  • $138.4k - $235.6k

     ...role reports to VP, Technology GRC and Deputy CISO and has...  ...services. It partners closely with senior leadership, Internal Audit,...  ...1, SOC2and NYDFS. AI Risk Management Demonstrated interest or...  ...as a trusted advisor to IT, Information Security and Engineering on technology... 
    Senior
    Remote work

    RealPage, Inc.

    Richardson, TX
    4 days ago
  •  ...services firm based in Texas is seeking a seasoned Project Manager with over 12 years of experience in Governance, Risk Compliance (GRC). Key responsibilities include managing GRC projects and conducting IT security assessments, with a strong focus on ISO 27K controls.... 
    Senior

    Cloud Hybrid Technologies, LLC

    Dallas, TX
    4 days ago
  • $140.3k - $192.94k

     ...It Uniquely Yours. You work with the information security team as a competent and experienced information...  ...security, compliance and risk management Understanding security solutions and their...  ...leadership across SAP Security and GRC functions, ensuring a secure, compliant... 
    Senior
    Relocation package

    Mondelez International

    East Hanover, NJ
    4 days ago
  •  ...exciting opportunity within the Security Strategy and Governance (...  ...developing and refining information security strategy,...  ...organization. About the role: The Senior Technical Program Manager is an expert‑level...  ...program tooling (security GRC, TPRM, continuous control... 
    Senior
    Flexible hours

    Klaviyo

    Boston, MA
    4 days ago
  •  ...capabilities that power our security risk management function: an AI-assisted...  ...Lead and sit within the Chief Information Security Officer (CISO)...  ...standpoint Credible with senior technical and non‑technical...  ...governance, risk, and compliance (GRC) tooling, KRI frameworks,... 
    Senior
    Live in
    Shift work

    CoreWeave

    Sunnyvale, CA
    4 days ago
  • Greystar in Texas is seeking a Senior Manager, Information Security GRC to lead the Governance, Risk, and Compliance program. This role involves strategy development, advising senior leadership on security risk, and ensuring compliance with relevant laws and regulations... 
    Senior

    Greystar

    Dallas, TX
    1 day ago
  • $150k - $190k

     ...commercial launch and expansion of our data and technology footprint. We are seeking a hands‑on, execution‑focused Senior Manager, IT Information Security to lead the development, implementation, and day‑to‑day operation of the company’s cybersecurity program. This role... 
    Senior
    Visa sponsorship
    Work visa

    COMPASS Pathways

    New York, NY
    15 hours ago
  • Ellenco Estágios e Treinamentos is seeking a Senior Information Security GRC Analyst to manage security audits and compliance efforts. The role requires over 10 years of experience in information security and a strong understanding of NIST standards. This position allows... 
    Senior
    Remote job

    Ellenco Estágios e Treinamentos

    New York, NY
    4 days ago
  •  ...Trucks North America LLC is seeking an experienced Advisor, Information Security GRC to lead Governance, Risk, and Compliance programs. The...  ...IT, emphasizing Information Security Governance and Risk Management. Located in Atlanta, Georgia, the ideal candidate will implement... 
    Senior

    Daimler Trucks North America LLC

    Atlanta, GA
    4 days ago
  • $200k - $280k

     ...building, and governing enterprise network and security infrastructure across a high-tech manufacturing environment. The Senior Manager blends deep technical expertise in network...  ...: Bachelor's degree in Computer Science, Information Technology, Network Engineering, or... 
    Senior
    Contract work

    TryApplyNow

    Santa Clara, CA
    1 day ago
  •  ..., Inc. is seeking a Risk Analyst to enhance its corporate Information Security GRC team. The role focuses on defining processes and implementing...  ...frameworks like PCI, NIST, and possess strong vendor management skills. Benefits include a competitive salary, flexible time... 
    Senior
    Flexible hours

    Ellation

    Dallas, TX
    3 days ago
  • Crunchyroll is seeking a Risk Analyst to advance the company’s Information Security GRC program. You’ll partner with Legal, Engineering, IT,...  ...Trust & Safety to govern standards, support vulnerability management, and drive risk assessments on a global scale. You will apply... 
    Senior

    Crunchyroll, LLC

    Fort Worth, TX
    1 day ago
  • Signet Jewelers is seeking an experienced Information Security GRC Manager to lead their governance, risk, and compliance efforts. This role is pivotal...  ...initiatives while providing actionable insights to senior leadership. The position offers a hybrid working model and... 
    Senior

    Signet Jewelers

    Cleveland, OH
    4 days ago
  •  ...Title: Senior Project Manager (IT/Security) (Remote) Duration: 1 year with 37.5 hours a week Location: Remote On-site (Springfield, IL) presence...  ...is seeking a Senior Project Manager to support the Information Security team in planning, executing, and delivering IT... 
    Senior
    Work at office
    Remote work

    Diversified Services Network

    United States
    5 days ago
  • $180k - $270k

     ...opportunity within the Security Trust and Risk (STAR)...  ...developing and refining information security policies,...  ...strategy, enterprise risk management, creating metrics and...  .... About The Role The Senior Manager, Security Risk...  ...evolution from a traditional GRC / compliance model... 
    Senior

    Klaviyo

    Boston, MA
    4 days ago
  • Ecotal in Durham, North Carolina is seeking an Information Security Manager to lead security operations and compliance efforts across the organization. The role entails managing security tools, optimizing compliance with NIST standards, and collaborating with various business... 
    Senior

    Ecotal

    Durham, NC
    4 days ago
  • Amynta Group in Fort Worth is seeking a Senior GRC Analyst to enhance its risk management and compliance program. This hybrid role requires an individual to assess information security risks and support audits across operations. The ideal candidate should possess a Bachelor... 
    Senior

    Amynta Group

    Fort Worth, TX
    1 day ago
  • $200k - $280k

    A cutting-edge technology firm in California is seeking a Senior Manager for Network and Information Security. This role involves architecting and managing enterprise network and security infrastructure while leading a small team of engineers. Candidates should have over... 
    Senior
    Full time

    Atomic Machines

    Santa Clara, CA
    4 days ago
  • Role Summary The Cybersecurity Compliance Manager is responsible for designing, operating,...  ...compliance activities using the OneTrust GRC platform, with a strong focus on automation...  ...gaps. Partner with IT, Audit and Security teams to integrate OneTrust with upstream... 
    Senior
    Local area

    Advance Auto Parts

    Raleigh, NC
    4 days ago
  • Ernst & Young Oman is seeking a Senior Manager for the Americas Tax Technology Group to oversee information security capabilities at their Chicago office. This role focuses on implementing robust security frameworks and collaborating with various teams to enhance operations... 
    Senior
    Work at office
    Flexible hours

    Ernst & Young Oman

    Chicago, IL
    2 days ago
  • $105k - $130k

    MISO, located in Carmel, Indiana, is hiring a Senior GRC Risk Analyst to enhance cybersecurity and protect...  ...with diverse teams, and improving third-party risk management frameworks. A bachelor’s degree in Information Security or a related field and over 5 years of... 
    Senior

    MISO

    Carmel, IN
    4 days ago
  • Dollar General Corporation is seeking a Senior Information Security Manager, Identity & Access Management (IAM) to lead the IAM program across employees, contractors, partners, and customers. You will shape the roadmap, oversee engineering, operations, and governance, and... 
    Senior
    For contractors

    ∙ Elijah House Foundation

    Goodlettsville, TN
    3 days ago
  • ## Senior Manager, Information SecurityApplylocations: Atlanta-GA-UStime type: Full timeposted on: Posted Todayjob requisition id: R26002531**Job Summary**Manage and coordinate a team of Security Managers and Engineers. Ensure tight rigor and control over Security Operations... 
    Senior
    Night shift

    HD Supply Canada, Inc

    Atlanta, GA
    3 days ago
  • $150k - $170k

     ...s our impact on the planet. Learn more at . Position Overview We are seeking a highly accomplished and strategic Senior Manager, Information Security to join our team in Seattle, WA (Open to Portland, OR and Austin,TX). In this leadership role, you will drive the vision... 
    Senior
    Full time

    Stanley-1913

    Portland, OR
    1 day ago
  • Toyota North America is seeking a Senior Cyber Risk Assurance Analyst to design, manage, and mature the Information Security GRC program. You will collaborate with leaders across Information Security, Data and Technology, Legal, and Privacy to establish and mature the... 
    Senior

    Toyota North America

    Plano, TX
    4 days ago
  • Toyota Financial Services (TFS) is seeking a Senior Cyber Risk Assurance Analyst to design and mature the Information Security GRC program in North America, partnering with leaders across IT, Data & Technology, Legal and Privacy to embed risk-aware decision making into... 
    Senior

    TCC Toyota Motor Credit Corporation Company

    Plano, TX
    15 hours ago
  • Senior Manager, Information Security Reporting to the Head of Information Security & Governance, the Sr. Manager of Information Security is a primary team member who is responsible for strategy, execution and program management for information security department. The... 
    Senior
    Work at office
    Home office
    Shift work

    Uniting Holding

    Houston, TX
    15 hours ago
  • Overview Senior Project Manager, Information Security - UCLA Information Technology Services Requisition Number: 35336 Salary: Salary commensurate with skills, knowledge and experience. Position Description The University of California, Los Angeles (UCLA) Information Technology... 
    Senior
    Work at office

    Inside Higher Ed

    Los Angeles, CA
    4 days ago
  •  ...land, sea and cyber domains in the interest of national security. Job Title: Senior Manager, Info Security Systems Engineering Job Code: 40062 Job...  ...other Friday off. Job Description L3Harris is seeking an Information Security Systems Engineering Manager to lead a team in... 
    Senior
    Local area
    Remote work

    L3Harris Technologies

    Greenville, TX
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior Manager, Information Security GRC. Be the first to apply!