Global InfoSec GRC Leader & Compliance Strategy
$112kIvalua Inc
Sr Manager, InfoSec Governance Risk and Compliance (GRC) Sr Manager, InfoSec Governance Risk and Compliance (GRC) Founded in 2000, Ivalua is a leading global provider of cloud-based procurement solutions.
COMPANY OVERVIEW
At Ivalua we are a global community of exceptional professionals, who believe that digital transformation revolutionizes supply chain sustainability and resiliency to unlock the power of supplier collaboration. We achieve this through our leading cloud-based spend management platform that empowers hundreds of the world's most admired brands to effectively manage all categories of spend and all suppliers to increase profitability, improve ESG (environmental, social, and corporate governance) performance, lower risk, and improve productivity. Driven by our passions and fueled by our shared ambitions, we empower and challenge each other to create meaningful experiences for our colleagues, customers, partners, and communities. Our InfoSec team is dedicated to building, maintaining, and continuously improving Ivalua’s Information Security program globally. We provide peace of mind and assurance of protection and safety to our customers. In this fast-growing environment, the GRC program is critical to ensuring compliance with industry standards and certifications, managing risks, and supporting business growth.ROLE:
We are currently looking for an experienced InfoSec Governance Risk and Compliance (GRC) Sr Manager to lead a global team and own the GRC program worldwide. Reporting to the InfoSec leadership, you will manage and develop a high-performing team, drive compliance efforts, and serve as a subject matter expert on security frameworks and standards.WHAT YOU WILL DO WITH US
Lead and own the Governance, Risk, and Compliance (GRC) program globally, managing and developing a high-performing team. Manage and drive compliance efforts and audits for certifications such as FedRAMP, IRAP, ISO 27001, HIPAA, SOC1/SOC2, PCI DSS, and others. Serve as the subject matter expert (SME) on security frameworks and standards including NIST SP 800-53 Rev 5, NIST 800-171, ITAR, FedRAMP, PCI DSS, SOC2, etc., providing guidance to internal stakeholders. Efficiently manage and respond to customer security audit and compliance requests in a timely manner. Maintain continuous compliance and monitoring of security controls to ensure ongoing adherence to standards. Collaborate closely with Sales, Marketing, and Customer Success teams to effectively communicate Ivalua’s security posture to prospects and customers. Review and negotiate information security exhibits and contractual terms in partnership with the legal team. Lead the Security Awareness and Training program to promote a culture of security across the organization. Track, manage, and drive remediation efforts for control deficiencies and gaps identified through internal and external audits. Oversee the Third Party Risk and Vendor Security Assessment program to mitigate supply chain risks. Develop, maintain, and enforce InfoSec policies, standards, and plans.YOUR PROFILE
If you have the below experience and strengths this role could be for you: Skills and Experience: At least 7+ years of proven experience leading GRC programs and managing compliance certifications and audits (FedRAMP, ISO 27001, HIPAA, SOC1/SOC2, PCI DSS, IRAP, etc.). At least 3+ years experience as a direct leader, managing a team. The position will be part of an established global team with opportunity to grow the team Strong knowledge of security frameworks such as NIST SP 800-53, NIST 800-171, ITAR, PCI DSS, SOC2, and FedRAMP. Demonstrated ability to manage and influence stakeholders across multiple departments and time zones. Excellent project management, analytical, and problem-solving skills with keen attention to detail. Strong interpersonal and communication skills, capable of building trust and managing conflicts effectively. Self-motivated with a high degree of initiative and ability to work independently. Ability to handle multiple competing priorities and deadlines efficiently. Bachelor’s degree in related field preferred or equivalent experience with proven skills Soft Skills: Excellent interpersonal, communication, and organizational skills. Team player with the ability to interface effectively with a broad range of individuals and roles, including IT and vendors. High degree of initiative, dependable, and able to work well with limited supervision.WHAT HAPPENS NEXT
If your application fits this specific position’s needs, our skilled Talent team will reach out to schedule an initial screening call. Get one step closer to achieving your goals – apply today! Our Talent team will guide you through every step of the interview process - from preparation to completion. They're here to support you! Our recruitment process is designed to assess your competencies through a series of personalized interviews with internal stakeholders relevant to the role. Interviews will be conducted virtually via video or on-site with face-to-face meetings.LIFE AT IVALUA
Hybrid working model (3 days in the office per week) We're a team dedicated to pushing the boundaries of product innovation and technology Sustainable Growth, Privately Held A stable and cash-flow positive Company since 10 years Snacks and weekly lunches in the office Feel empowered to pursue your goals with improved team collaboration and increased creativity/productivity Unlock and unleash your full professional potential with our exceptional training and career development program Join a dynamic and international team of top-notch professionals who are experts in their respective fields. Collaborate with like-minded individuals who are deeply passionate and highly motivated about their work. Experience a truly diverse and inclusive work environment where your unique contributions are highly valued Regular social events, competitive outings, team running events, and musical activities, United by our values we embrace diversity and equity in the broadest possible sense to create an inclusive workplace. To help our customers make supply chains more efficient, sustainable and resilient, we rely on a global team with a variety of backgrounds, skills and views. We believe in equal opportunity and in diversity as a driver of innovation that cultivates a spirit of inclusiveness, creates a productive and fun place to work, and provides fulfilling career opportunities for all Ivaluans. Experience life at Ivalua - check out our captivating video ! Gain insight into our unique company culture and get a glimpse of what it's like to work with us. Ivalua’s core values include a priority on Care & Grow People. We take matters like pay equity very seriously and strive to reward our employees appropriately and fairly for their talents. The compensation range for this position reflects the cost of labor across our US locations and is based upon careful and continual market research. In addition to location, compensation may also vary based upon job-related knowledge, skills, and experience. Title: Manager, InfoSec Governance Risk and Compliance (GRC) Range minimum: USD 112000 Range maximum: USD 208000 Additional compensation / rewards: Ivalua also offers exceptional benefits including medical, dental, vision and transportation.#LI-SG1
#LI-HYBRID
#LI-DNI
Create a Job Alert Interested in building your career at Ivalua? Get future opportunities sent straight to your email. Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf This role will require a Hybrid work schedule of 3 days of the week working in the office - Tuesday and Thursday in the office is required with the 3rd day based on Department preference. Are you able to work this Hybrid work schedule? * Select... What is your expected Base Salary (not including bonus) for this position? A narrow range or single number is greatly appreciated. * As this position requires access to export-controlled technology, can you demonstrate you qualify as a “U.S. Person” as defined under the U.S. export control laws (22 CFR 120.62). U.S. export control laws define a "U.S. Person" as a U.S. citizen, a lawful permanent resident (green card holder), or protected individuals (including refugees and asylees). * Select... This role requires at least 3 years of experience managing and leading teams. Do you meet this requirement? * Select... What is your hands on experience in securing a company's FedRAMP (or other security standard) certification? * Voluntary Self-Identification For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file. As set forth in Ivalua’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law. If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows: A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability. A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service. An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense. An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985. Select... Voluntary Self-Identification of Disability Form CC-305 Page 1 of 1 OMB Control Number 1250-0005 Expires 04/30/2026 Voluntary Self-Identification of Disability Form CC-305 Page 1 of 1 OMB Control Number 1250-0005 Expires 04/30/2026 Why are you being asked to complete this form? We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years. Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at . How do you know if you have a disability? A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to: Alcohol or other substance use disorder (not currently using drugs illegally) Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS Blind or low vision Cancer (past or present) Cardiovascular or heart disease Celiac disease Cerebral palsy Deaf or serious difficulty hearing Diabetes Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders Epilepsy or other seizure disorder Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome Intellectual or developmental disability Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD Missing limbs or partially missing limbs Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS) Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities Partial or complete paralysis (any cause) Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema Short stature (dwarfism) Traumatic brain injury Disability Status Select... PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete. #J-18808-Ljbffr IvaluaVacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Global InfoSec GRC Leader & Compliance Strategy in San Francisco, CA vacancy
$172.5k - $260.1k
Salesforce, Inc. is seeking a Security GRC Senior Lead in San Francisco to oversee compliance for global CCaaS initiatives. The role involves defining compliance strategy, monitoring regulations, and liaising with Product Management. Ideal candidates will have over 8 years...SuggestedRemote job- Precision Point is looking for a Director of Regulatory Affairs Strategy in San Francisco to lead the development and execution of global regulatory strategies across their clinical pipeline. This role involves managing cross functional teams and guiding regulatory strategy...Suggested
- A technology consulting firm is seeking an Infosec or GRC Leader to implement and manage Information Security Management Systems and coordinate... ...have 8-10 years of experience in Information Security and Compliance, with expertise in ISO 27001 and relevant standards....SuggestedRemote job
$260k - $300k
...technology firm based in San Francisco is seeking a Global Head of Benefits to lead their benefits... ...will have 8-10 years of experience in benefits strategy and operations, managing global teams, and navigating compliance. This full-time position offers a competitive salary...SuggestedFull time$135k - $140k
Medium is seeking a Global Benefits Manager in San Francisco, California. This role is essential for leading the strategy and administration of global benefits and leave programs, ensuring high compliance and operational excellence. Ideal candidates must have 8-10 years...SuggestedRemote job- A leading global payments technology company is seeking a Senior Manager of Marketing Strategy to drive cross-border payment volume growth and develop actionable marketing strategies for international travelers. The ideal candidate will have extensive experience in global...
- ...payments technology company is seeking a Senior Manager of Marketing Strategy for International Travel in San Francisco. This role is focused... .... The ideal candidate will possess extensive experience in global brand marketing and a deep understanding of the travel industry...
- A leading global payments company seeks a Senior Payroll Partner in San Francisco to manage payroll operations and ensure compliance. The ideal candidate will have a bachelor's degree and a minimum of 5 years’ experience in payroll processing. Responsibilities include...
- ...spearhead the integration of its solutions within global capital markets. This strategic role demands... ...expertise and involves designing market strategies, developing tailored products, and ensuring regulatory compliance. The successful candidate will leverage their...
- Centaur Labs is seeking a VP, Real Estate Strategy & Planning to shape and execute global real estate strategies. This senior leader will collaborate across teams to align real estate with business objectives, ensuring optimal flexibility and efficiency. With over 20 years...
- Infosec or GRC Leader Job Description: Job Title: Infosec or GRC Leader Location: Remote Duration: 6+ Months (Contract) Responsibilities:... ...in scope and support ISO27001 certification effort. Manage compliance and sustaining efforts to maintain Common controls...Contract workWork at officeRemote workEarly shift
- Mariana Minerals is seeking a Global Workplace Director to lead the development and execution of our global workplace strategy. This role will manage facilities operations and office expansions, ensuring environments that enhance employee experiences and reflect company...Work at office
- Airwallex Pty Ltd. is seeking an experienced professional for the role of Global Product Strategy and Operations. This position is critical in bridging the gap between customers and product teams, requiring 8+ years of experience in strategy or product management. You'll...
$195.5k - $272.5k
Vir Biotechnology, Inc. is looking for a Director of Regulatory CMC in San Francisco to drive regulatory strategy for clinical development. This position requires 10+ years of experience in pharmaceutical development and regulatory CMC leadership. The role offers a competitive...- ...candidates and drive development as a regulatory project lead. The role involves overseeing global Health Authority interactions, leading project teams, and developing regulatory strategies. An ideal candidate will have at least 10 years of experience in regulatory affairs,...
$172k - $250k
...Information Security Audit & Compliance to join the team. Approved office... ...to lead and scale a global audit and compliance practice... ...Responsibilities Audit & Compliance Strategy Define and lead the global... .... Experience implementing GRC tooling to support audit and...InternshipSeasonal workWork at officeLocal areaFlexible hours3 days per week- Lyft is seeking an Analytics Lead to join their Global Growth team in San Francisco. This role involves developing data-driven strategies to grow Lyft's luxury product offerings. The ideal candidate will have 2-5+ years of experience in analytics, strong business acumen...Work at office3 days per week
- A leading technology company is looking for a Global Benefits Lead to manage the strategy and execution of global benefits programs. The successful candidate... ...workforce, expertise in U.S. health and welfare compliance, and skills in financial modeling and vendor...Remote job
- Google seeks a Global Civics Partnerships Lead in San Bruno, CA, to drive YouTube's partnership efforts and manage a team of Partner... ...on civic engagement and political discourse, you will develop strategies and initiatives to optimize YouTube’s platform for government entities...
- Brain Co. in San Francisco is seeking a GRC Lead to own the governance, risk, and compliance programs from start to finish. This high-ownership role requires... ...SOC 2 Type II and HIPAA, while also working towards an evolving compliance strategy. #J-18808-Ljbffr BRAIN CORP
$165k - $185k
OpenTable is hiring a Director of Global Partnerships in San Francisco to lead strategic partnerships with both B2B and B2C businesses. This critical role will require negotiation of impactful deals and providing leadership across the organization. Ideal candidates will...- ...is seeking a Senior Manager for Global Mobility to lead its immigration and mobility strategy. The role will focus on... ...across borders while balancing compliance and business priorities. The ideal... ...responsible for advising senior leaders and establishing global policies...Remote job
- A leading digital security firm is seeking a GRC Security Compliance Leader for a remote position. Candidates should have 8-10 years of experience in Information Security and Compliance, with expertise in ISO 27001 and other relevant standards. Responsibilities include...Remote job
- Watershed is seeking a Senior People Operations leader to enhance HR systems and drive compliance while supporting global operations. This role involves designing operational workflows, managing vendor relations, and ensuring top-quality employee support for US and global...Work at office
$128.4k - $160.5k
A leading technology firm is seeking a Global Deal Desk Manager based in San Francisco. This full-time, hybrid position requires over 6 years of Deal Desk experience and a deep understanding of revenue recognition and pricing analysis. The ideal candidate will act as a...Full time$167.5k - $234.5k
Tensec is seeking a Tax Planning Senior Manager who will take charge of the company's tax planning strategy. The role involves collaborating with Finance on global tax forecasting, managing tax incentives, and overseeing tax due diligence for M&A. The ideal candidate has...Remote jobFlexible hours$162k - $180k
Uber is seeking a Strategy & Planning Analyst for the Uber Eats Global Consumer Strategy team in San Francisco, CA. This role demands a high-performing professional with analytical excellence and strategic problem-solving skills to develop and execute consumer strategies...$160k - $220k
Airwallex is seeking a Senior Manager for Partnerships Strategy in San Francisco or New York. The role involves defining the partnership roadmap and leading strategic negotiations for complex deals. Ideal candidates have at least 8 years in strategy and business development...- Anthropic is seeking a Global Senior Equity Program Manager to lead the equity compensation strategy across all markets. This role involves designing and managing equity... ...will oversee equity plan operations, ensure compliance, and provide support to employees on equity-related...
$193.8k - $228k
A leading technology company in San Francisco seeks a Senior GRC Analyst II. In this role, you will manage the Governance, Risk, and Compliance program, ensuring it aligns with security strategies. Candidates should have a strong knowledge of information security frameworks...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Global InfoSec GRC Leader & Compliance Strategy. Be the first to apply!
Related searches
- group strategy director San Francisco, CA
- clinical team leader San Francisco, CA
- marketing team manager San Francisco, CA
- team leader San Francisco, CA
- application team lead San Francisco, CA
- group operations director San Francisco, CA
- group operations manager San Francisco, CA
- after school program leader San Francisco, CA
- healthcare team leader San Francisco, CA
- team lead full time San Francisco, CA

