Cyber Governance, Risk, & Compliance Manager

Cyber Governance, Risk & Compliance (GRC) Manager

Here at Discount Tire, we celebrate the spirit of our people with extraordinary pride and enthusiasm. Our business has been growing for more than 60 years and now is the best time in our history to join us. We are opening more locations every year and we are always looking for qualified individuals to join us in our growth. We are a company that promotes from within, both in our retail and corporate operations.

The Cyber Governance, Risk & Compliance (GRC) Manager is accountable for designing, building, and leading a modern enterprise cybersecurity GRC program. This role owns the structure, execution, and continuous improvement of governance, risk, and compliance capabilities-ensuring cybersecurity risk is clearly understood, measured, and managed in alignment with business priorities, regulatory expectations, and the company's broader technology strategy.

Essential Duties and Responsibilities:

• GRC Strategy & Risk Management
  • Define and operationalize the enterprise cybersecurity governance model, including decision forums, escalation paths, roles and responsibilities, and accountability for cyber risk ownership across technology and business leaders.
  • Own and evolve the enterprise cybersecurity risk management framework, including risk taxonomy, assessment methodologies, third party cyber risk, risk acceptance criteria, and alignment to enterprise governance structures.
  • Establish and maintain a cybersecurity program that provides visibility into risk trends, control effectiveness, and key governance indicators measure effectiveness of the cybersecurity program
• Compliance, Assurance & Audit
  • Lead regulatory, internal audit, and assurance activities
  • Ensure controls are effective, measurable, and aligned to standards (e.g., NIST, PCI)
  • Partner with technology teams to drive remediation
• Leadership & Stakeholder Engagement
  • Partner with technology leaders and business segments to understand technology roadmaps
  • Present risk insights and recommendations to senior leaders and committees
• People & Program Leadership
  • Build, develop, and lead a high performing GRC team
  • Set goals, provide feedback, manage capacity, and coach talent
• Other duties as assigned

Qualifications:

• This position requires a minimum of three years as a Supervisor or Asst Manager in a related role. A minimum of eight years professional experience with Cybersecurity and/or Cyber Risk required.
• Solid understanding of Cyber Risk Management and Strategy frameworks as well as understanding of common enterprise threat scenarios.
• Deep understanding of security controls and alignment to key regulations (examples: NIST, PCI).
• Proven ability to cultivate, mentor/manage and motivate a diverse high-performing team of security professionals and set clear priorities to achieve department goals.
• Exceptional critical thinking skills and thought leadership with the ability to quickly comprehend complex problems, draw logical conclusions, make sound decisions, develop solutions, and negotiate and respond accordingly to drive closure. Strong analytical skills with excellent problem-solving ability.
• Articulate communicator and collaborator with the professional confidence and credibility to effectively engage and interact with senior and executive management.
• Ability to take unpopular positions when necessary, influence others to support these decisions, and maintain trust and credibility.
• Proficient in Microsoft Office, including Word, Excel and PowerPoint is needed.
• Excellent analytical, planning and negotiation skills are needed.
• Excellent interpersonal skills with the expert ability to develop strong relationships with key members of both internal and vendor teams.
• Demonstrated business acumen with an expert knowledge and understanding of business issues, priorities, goals, and strategy is necessary.
• Must be highly organized, extremely detail oriented with strong leadership experience. Maintaining confidentiality, treating others with respect and upholding Company values is a key attribute.

Educational Requirements:

• Bachelor's degree in a related field or equivalent experience is required.
• Professional certifications are a plus.

Discount Tire provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local law.