Security Governance Risk and Compliance Manager - Hybrid
$205k - $225kGenesis10
Security Governance Risk and Compliance Manager - Hybrid
Genesis10 is currently seeking a Security Governance Risk and Compliance Manager - Hybrid for a direct placement position with a Global Professional Services Firm located in New York, NY or Washington, DC.
As the official ISO ISMS/PIMS Coordinator and a full-time member of the Information Security and Privacy Forum (ISPF), this role is responsible for preparing meeting agendas, working with auditors, performing annual Risk Assessments, and managing continuous improvements. This strategic program management role works closely with the Director of Information Security to ensure improvements are prioritized, develop the Security Awareness Program, and enhance core program elements including incident response, threat intelligence, and vulnerability management.
Responsibilities:
- Act as the primary point of contact to track, triage, and provide a professional response to incoming client assessments/audits, RFPs, and Outside Counsel Guidelines
- Delegate, oversee, and upskill other members of the Information Security Team in handling these assessments
- Own and govern the standard answer and evidence bank that ensures a consistent response to these client assessment requests
- Ensure that all material findings are tracked and escalated to Information Security Department management
- Work within IT and other departments to remediate control gaps and assemble evidence
- Work with external consultants to prepare ISPF meeting agendas, metrics, and other artifacts for review by ISMS-PIMS leadership
- Lead essential ISO 27001 and ISO 27701 activities such as annual risk assessment, BCP tabletop exercises, and other periodic compliance checks
- Prepare for and lead annual internal and external ISO audits by reviewing all in scope assets and required controls
- Provide senior guidance and awareness of the GRC program to partnering departments (e.g., Risk, Procurement, Operations)
- Develop a set of manageable controls that help support compliance with client security requirements
- Develop and update policies and procedures to address evolving regulatory requirements
- Lead and manage quarterly phishing simulation campaigns
- Ensure annual review and refresh of cybersecurity training content
- Manage and deliver weekly compliance updates to senior leadership
Requirements:
- Bachelor's degree in Information Systems, Information Security, Risk Management, or a related field
- At least 5 years of experience managing an ISO 27001 or SOC2 certification program
- Proven experience in governance, risk management, or compliance roles
- In-depth knowledge of relevant industry regulations and standards
- Strong analytical and problem-solving skills
- Excellent communication and interpersonal skills applied across various levels of technical expertise and management
- Ability to work collaboratively in a team and influence stakeholders at various levels
Desired skills:
- Master's degree in Cybersecurity Risk and Strategy, or a related field
- Relevant certifications (e.g., CISA, CRISC, CISSP, PMP)
Pay range: $205,000 - $225,000 annually
Only candidates available and ready to work directly as Genesis10 employees will be considered for this position. If you have the described qualifications and are interested in this exciting opportunity, please apply!
Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Security Governance Risk and Compliance Manager - Hybrid in Washington DC vacancy
- ...seeking a GRC Analyst, Federal & Customer Programs, to manage security governance, risk, and compliance obligations. Responsibilities include analyzing... ...contributing to effective risk management, and documentation. A hybrid work model is offered. #J-18808-Ljbffr GoTo MeetingSuggested
$189k - $225k
...operational execution of the company's security governance, risk, and compliance obligations. This role sits at the... ...with legal, sourcing, program management, engineering, and security operations... ...eligibility to obtain one. Spire operates a hybrid work model, and this position will...SuggestedOngoing contractContract workFor subcontractorWork at office3 days per week- ...Security Compliance Support Role Provides direct support to the Director Security Governance, Risk and Compliance and security shared service team by assuring information system... ...working with Security Incident and Event Management (SIEM) tools, endpoint detection and...Suggested
Software Technology Inc
Washington DC1 day ago $130k - $180k
...Details Virtru is building a cutting‑edge security compliance program aligned with FedRAMP, SOC2, PCI... .... As a GRC Analyst you’ll help manage these initiatives using tools such as Kubernetes... ...endpoints, and SaaS services. Conduct risk assessments across business units and...SuggestedLocal areaFlexible hours- ...located in Washington, DC, is seeking a skilled Product Manager to support the Governance, Risk, and Compliance (GRC) team. This role involves gathering... ...related fields, demonstrating knowledge in federal security compliance frameworks and strong collaboration skills...Suggested
- Providge Consulting is seeking a Technical Product Manager specializing in Security & Compliance to support the Governance, Risk, and Compliance (GRC) team within IT. Responsibilities include gathering requirements, developing product roadmaps, managing a product backlog...Full time
- ...Job Title: Technical Product Manager - Security & Compliance Industry: Information Technology Location: Onsite, Washington, DC Employment... ...specializing in Security & Compliance to support the Governance, Risk and Compliance (GRC) team within the IT division at the...Full timeContract workTemporary work
Providge Consulting
Washington DC1 day ago $85k - $95k
URMIA seeks a Manager, Risk & Compliance to oversee risk management and ensure compliance with institutional guidelines. In this role, you will coordinate... ..., preferably in risk management or compliance. This hybrid position offers a collaboration-focused work environment in...$66.8k - $116.8k
...Overview Workplace Health & Safety (WHS) Compliance Assurance Risk Manager will manage programs and processes that maintain legal compliance and... ...Qualifications 4+ years of compliance program management, legal, governance, audit, risk/loss prevention, or equivalent experience...Full timeTemporary workSeasonal workWorldwideAmazon
Arlington, VA10 hours ago$162k - $310k
...Employment Type Full time Location Type Hybrid Department Security Compensation $162K - $310K •... ...be provided. About the Team Governance, Risk, and Compliance (GRC) is foundational to Security... ...public sector. As a GRC Program Manager, you’ll play a pivotal role in achieving...Full timeWork at officeLocal areaRelocation packageFlexible hours$117.1k - $165k
...learn more, please see The Manager, AI Governance & Policy defines and... ...actionable policies, monitor compliance across use cases, and serve... ...engage credibly with Legal, Security, Privacy, and Product leadership... ...from the business Risk, Incident & Audit Management...Live inLocal areaWorldwide- CoStar Group is seeking a Compliance Manager in Arlington, VA, to oversee and manage their legal compliance program. The successful candidate will help develop policies, conduct risk assessments, and provide training on compliance matters. This role requires a proactive...
$130k - $180k
...data to us means keeping it secure and protected at all times across... ...a cutting edge security compliance program aligned with FedRAMP... .... You will lead and manage the organization's efforts to... ...compliance program. As a Security Governance Risk & Compliance (GRC) Analyst,...Remote jobLocal areaFlexible hoursShift work- ...capability for the U.S., allied governments, and commercial customers.... ...across defense, national security, public safety, and critical... ...looking for a Director, SEC Compliance & Corporate Governance to help... ..., and stakeholder management skills. Ability to operate...
Powerus
Washington DC4 days ago $90k - $115k
...self-motivated technically proficient Compliance Manager with immediate availability who wants... ...to the next level. The role blends governance, risk, and compliance (GRC) expertise with... ...CMMC. Develop, review, and maintain security policies, standards, procedures, and...For contractorsLocal areaImmediate startRemote work- Director, Cybersecurity Compliance Job Description Purpose & Scope: The Director of... ...healthcare organization’s information security governance, risk, and compliance (GRC) program. This role... ...requirements, establishing risk management frameworks, and independently assessing...
- ...The Governance, Risk, and Compliance (GRC) Analyst supporting federal and customer programs is responsible... ...regulatory standards, and internal security controls-translating external requirements... ...gaps. The role also supports risk management processes, policy and governance...Contract work
Nexus IT Group
Washington DC4 days ago - ...Security Risk Management Specialist In depth understanding and hand on experience with NIST 800-53, 800-36 and 800-66 frameworks. Significant... ...functional deployments, processes creation and integrations. Nice to have: Privacy (HIPAA) and PCI Compliance experience....
Samprasoft
Washington DC2 days ago - ...Senior Vice President, Legal and Chief Compliance Officer (CCO) About the Company Nationally recognized healthcare services... ...-level role that directly impacts organizational strategy, governance, and risk posture. The successful candidate will be a trusted advisor...
Confidential
Washington DC2 days ago $179.82k - $336.96k
Responsibilities TikTok is seeking a Governance, Risk, & Compliance ("GRC") Services Lead to be part of the US Security & Privacy Risk and Compliance team. This role will... ...services: 1) Controls & Certifications 2) Policy Management 3) Third-Party Risk Management. The GRC...Temporary work- ...Senior Manager: Information Governance Compliance Mayer Brown is an international law firm positioned to represent... ...of coordination across IG, Legal Risk Management (LRM), Information... ...partnership with IT and Information Security Monitor and report on access-related...Work at office
Mayer Brown
Washington DC3 days ago - ...technology consulting firm is seeking a Senior Product Manager to support the Governance, Risk and Compliance (GRC) team within their IT division. This role... ...of product management experience, with expertise in security and compliance. U.S. Citizenship is required for this...
- ...accessible and affordable across the nation. Our Impact The Compliance Testing (CT) team conducts risk‑based, independent testing across the Enterprise to... ...and efficacy of Freddie Mac’s compliance risk management activities and identify potential non‑compliance with...Work at office
- A cybersecurity compliance consulting firm is looking for a GRC Analyst to help organizations manage cybersecurity compliance and risk. This fully remote position involves conducting assessments, developing security policies, supporting compliance audits, and collaborating...Remote job
- Neier Inc. is looking for a GRC Analyst to enhance their security compliance program. You will lead compliance efforts for CMMC, manage complex control frameworks, and design automation solutions to streamline risk assessments. The ideal candidate has over 5 years of...Flexible hours
$66.8k - $116.8k
...WHS) professional to join the Governance Regulatory Response and... ...for regulatory response case managing. This role combines strategic... ...implementation to ensure regulatory compliance and promote a safety-first... ...in regulations governing high-risk operations. Experience in varying...Flexible hoursAmazon
Arlington, VA1 day ago- ...Digital Content Strategy to lead digital content planning and governance. This role focuses on ensuring a unified brand voice across digital... ...strategy and digital editorial roles. This position offers a hybrid work environment and a comprehensive benefits package including...
- ...Virginia is seeking a Director of Cybersecurity Compliance to lead the organization's information security governance, risk, and compliance program. This position... ...years of experience in IT security and risk management within the healthcare sector, with leadership...
- Governance, Risk, & Compliance (GRC) Analyst Washington, DC Remote Full-Time About This Role As a GRC Analyst, you... ...of cybersecurity compliance and risk management. You will work directly with clients to assess their security posture, develop policies, and guide them...Full timeRemote work
$128.1k - $239.6k
.... Our Information Security professionals enable... ...Portfolio Compliance Enablement function... ...and strengthening risk posture across global... ...Responsibilities Risk Management and Reduction -... ...security practices. Governance, Risk, and... ...and leader‑enabled hybrid model. Our expectation...Work experience placementSummer holidayLocal areaWorldwideFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Governance Risk and Compliance Manager - Hybrid. Be the first to apply!
Related searches
- governance manager Washington DC
- risk management associate Washington DC
- director credit risk Washington DC
- risk management manager Washington DC
- risk management specialist Washington DC
- head of risk management Washington DC
- enterprise risk manager Washington DC
- operational risk manager Washington DC
- senior risk manager Washington DC
- director of risk management Washington DC