Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Sr. Manager, Information Security

Advance Auto Parts

Role Summary The Cybersecurity Compliance Manager is responsible for designing, operating, and continuously improving the company’s cybersecurity compliance program within a large-scale retail environment. This role leads the day‑to‑day execution of compliance activities using the OneTrust GRC platform, with a strong focus on automation, controls monitoring, and audit‑ready evidence generation. Job Description The Cybersecurity Compliance Manager is responsible for designing, operating, and continuously improving the company’s cybersecurity compliance program within a large‑scale retail environment. This role leads the day‑to‑day execution of compliance activities using the OneTrust GRC platform, with a strong focus on automation, controls monitoring, and audit‑ready evidence generation. The role ensures enterprise alignment with NIST Cybersecurity Framework (CSF) and regulatory requirements including

PCI DSS

, HIPAA, and U.S. state privacy regulations (CCPA/CPRA). This role is hybrid and based in our corporate headquarters in Raleigh, NC. Key Responsibilities Cybersecurity Compliance Program Execution Operate and mature the enterprise cybersecurity compliance program aligned to NIST CSF and applicable regulatory frameworks (PCI DSS, HIPAA, CCPA/CPRA). Translate regulatory and framework requirements into clear, monitored internal controls mapped to business systems and processes. Serve as a subject matter expert for cybersecurity control compliance across IT, cloud, retail, e‑commerce, and corporate environments. Lead day‑to‑day use of the OneTrust GRC compliance modules, including: Control libraries and framework mappings Automated evidence collection and surveys Workflow‑driven control testing and remediation tracking Compliance reporting and dashboards Implement and enhance automation to reduce manual effort and eliminate point‑in‑time compliance gaps. Partner with IT, Audit and Security teams to integrate OneTrust with upstream systems where feasible (e.g., vulnerability management, asset inventories). Controls Monitoring & Assurance Establish and operate a continuous controls monitoring (CCM) model in dynamic retail and cloud environments. Monitor control performance, SLA adherence, and exception trends across in‑scope systems (e.g., PCI environments, customer data platforms). Track control effectiveness metrics and produce regular compliance reporting for leadership. Coordinate and support internal and external audits and assessments, including: PCI DSS attestations HIPAA risk and compliance reviews Privacy regulatory inquiries and assessments Maintain audit‑ready evidence within OneTrust and drive timely remediation of findings. Partner with IT, Internal Audit, Legal, and Privacy to ensure consistent interpretation and execution of control requirements. Work closely with system owners, IT leaders, cybersecurity team, and business partners to ensure controls are properly implemented and operated. Assign control ownership, track accountability, and facilitate risk acceptance where appropriate. Provide guidance and training to control owners on compliance expectations, evidence requirements, and remediation processes. Required Qualifications 6+ years of experience in cybersecurity compliance, GRC, or IT risk management, preferably in a retail or consumer‑facing enterprise. Strong working knowledge of: NIST Cybersecurity Framework (CSF) PCI DSS HIPAA Security Rule CCPA/CPRA and U.S. privacy obligations Experience supporting audits and regulatory assessments in complex, distributed environments. Preferred Qualifications Hands‑on experience with OneTrust GRC (or comparable GRC platforms) including compliance automation and evidence workflows. Experience implementing continuous controls monitoring (CCM) or security metrics programs. Retail industry experience supporting point‑of‑sale (POS), e‑commerce, or cardholder data environments (CDE). Familiarity with third‑party risk and vendor compliance monitoring. Relevant certifications (preferred, not required): CISA, CISSP, CRISC, PCI ISA, or similar. Key Competencies Strong analytical and risk‑based thinking Ability to translate regulatory language into practical, business‑aligned controls Excellent stakeholder communication and influence skills Detail‑oriented with a strong audit and evidence mindset Comfortable operating in fast‑moving, matrixed retail organizations California Residents Click Below For Privacy Notice We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran and basis of disability or any other federal, state or local protected class. #J-18808-Ljbffr Advance Auto Parts

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Sr. Manager, Information Security in Raleigh, NC vacancy
  • Position Overview This position is for a Cloud Product SOC Manager in the Security Center of Excellence for PC and Smart Devices business (...  ...analysis and reporting. Perform event correlation using information gathered from a variety of sources within the enterprise to... 
    Senior
    Local area
    Immediate start

    Lenovo

    Raleigh, NC
    4 days ago
  • Security Operations Center (SOC) Senior Manager Durham, NC The Senior Manager, Security Operations (SOC), will lead Incident Handlers and Incident Responders...  ...Bachelor's degree in Computer Science, Information Technology, Homeland Security, Intelligence Analysis... 
    Senior
    Temporary work
    Casual work
    Internship
    Flexible hours
    Rotating shift

    Dormont Manufacturing Co

    Raleigh, NC
    3 days ago
  • We are seeking a Security Product Manager to lead security strategy and execution across our server product portfolio. In this role, you’ll shape how security is designed, delivered, and differentiated—working closely with system, platform, engineering, and security teams... 
    Senior
    Local area

    Lenovo

    Raleigh, NC
    1 day ago
  • $105.79k - $141.05k

     ...expansive fiber network and connected ecosystem. We enable secure, high‑performance connectivity across cloud, edge, and AI workloads...  ...of AI‑ready connectivity, join us today. The Role The Manager of Information Security—Cyber Threat Exposure Management plays a critical... 
    Suggested
    Full time
    Temporary work
    Remote work

    Lumen

    Raleigh, NC
    4 days ago
  • $145k - $175k

     ..., CTOs and CISOs. Partner with Product Management to understand product strategy and roadmaps...  ...and Messaging Create differentiated security and data center messaging for both sales...  ...recommendations. Act as the voice of the customer to inform product development, solution packaging... 
    Senior
    Work experience placement
    Flexible hours
    Shift work

    SHI GmbH

    Raleigh, NC
    4 days ago
  •  ...computing power for the connections that are changing business and society. About Our Team This position is for a Senior Manager Software Security in the Security Center of Excellence for PC and Smart Devices business (PCSD). This is an exciting role where you will be... 
    Senior
    Local area
    Home office

    Lenovo

    Raleigh, NC
    4 days ago
  • $170.6k - $390k

     ...practice – the best place in the world to grow your career in information security! The opportunity The Senior Network Security...  ...security operations teams. Join our dynamic team as a Senior Manager in Cybersecurity Engineering, where you will play a pivotal... 
    Senior
    Summer holiday
    Remote work
    Flexible hours

    EY

    Raleigh, NC
    16 hours ago
  • CrowdStrike in North Carolina is looking for a Senior Project Manager to lead the deployment of platform services for customers. This...  ...of experience in IT project management, particularly within the security domain. Strong communication and analytical skills are essential... 
    Senior

    CrowdStrike

    Raleigh, NC
    1 day ago
  • $152k - $198k

    Job Description Who You'll Work With We are seeking a highly experienced and motivated Senior Manager - IT Security to join our Information Technology organization. In this critical role, you will lead a team of IT professionals responsible for implementing and maintaining... 
    Senior
    Flexible hours

    Arista Networks

    Raleigh, NC
    1 day ago
  • 慨正橡扯 seeks an experienced Product Manager to join our Trust and Security team. This role involves leading strategy, discovery, and delivery for innovative products that ensure customer protection and enhance their experience. The ideal candidate will have a minimum of... 
    Senior

    慨正橡扯

    Raleigh, NC
    16 hours ago
  • Swoon, an American data analytics company, is seeking a Technical Program Manager for a contract duration of 3-6 months to support their security product. This role involves leading multiple projects, collaborating with stakeholders, and mentoring others to ensure success... 
    Senior
    Contract work

    Swoon

    Raleigh, NC
    4 days ago
  • Instrata is seeking an experienced Project Manager in Raleigh, NC, to drive multiple low-voltage projects. The role involves ensuring project execution, managing client relationships, and mentoring junior professionals. With 7-10 years of experience and strong skills in... 
    Senior
    Work at office

    Instrata

    Raleigh, NC
    1 day ago
  • Akamai Technologies, Inc. is actively seeking a Senior Product Manager for Platform Security & Infrastructure in Raleigh, North Carolina. This role requires technical expertise and a customer-first approach to develop delivery roadmaps and manage security measures. The... 
    Senior

    Akamai Technologies, Inc.

    Raleigh, NC
    16 hours ago
  • Durham, United States | Posted on 08/08/2023 Sr. Technical Project Manager position, based in Durham, North Carolina - We...  ...professional to lead complex projects within the Information Technology - Computer & Network Security industry, specifically those with previous... 
    Senior
    Full time
    Work experience placement

    Career-Mover

    Raleigh, NC
    3 days ago
  • $104.9k - $174.7k

     ...technical direction in one or more or key areas, providing management with insight and input into overall strategic decision based...  ...on advances in technology. The position also supports the Information Security department’s goals and objectives by addressing escalations... 
    Local area

    LexisNexis

    Raleigh, NC
    16 days ago
  • $90k - $150k

    Security Operations Center (SOC) Manager Location: Durham, NC Job Responsibilities Manage the 24/7 team responsible for security operations, detection...  ...Qualifications Bachelor’s degree in Computer Science, Information Technology, Homeland Security, Intelligence Analysis,... 
    Temporary work
    Casual work
    Flexible hours
    Rotating shift

    LCH Lab. Corp. of America Holdings

    Raleigh, NC
    1 day ago
  • $172k - $258k

     ...Grant Thornton is seeking a Director of Information Security Audit & Compliance to join the team. Approved office locations can be found below...  ...be responsible for establishing global delivery centers, managing internal and external audits, and ensuring the information security... 
    Internship
    Seasonal work
    Work at office
    Local area

    Grant Thornton

    Raleigh, NC
    3 days ago
  • As the Sr. Commercial Data Operations Manager at BioCryst, you will own and optimize the data operations ecosystem...  ..., Canadian data privacy and security regulations. Partner with the Data...  ...disease states preferred. Additional Information This role is eligible for remote work... 
    Senior
    Local area
    Remote work
    Flexible hours

    BioCryst Pharmaceuticals, Inc.

    Raleigh, NC
    3 days ago
  • $172k - $250k

     ...Grant Thornton is seeking a Director of Information Security Audit & Compliance to join the team. Approved office locations can be found below...  ...be responsible for establishing global delivery centers, managing internal and external audits, and ensuring the information security... 
    Internship
    Seasonal work
    Work at office
    Local area
    Flexible hours
    3 days per week

    Grant Thornton

    Raleigh, NC
    16 hours ago
  • $82.5k

     ...event production and travel management across sports, entertainment,...  ...Scope of Role The Accommodation Sr. Manager is responsible for...  ...lodging needs, gather and relay information between the client, partners,...  ...Privacy and Information Security for TKO employment candidates... 
    Senior
    Hourly pay
    Contract work
    Temporary work
    Local area
    Remote work

    TKO, LP

    Raleigh, NC
    4 hours ago
  • $100k - $170k

     ...and aligned with NSA requirements. Produce and maintain audit‑ready technical evidence supporting compliance with the NSA and Data Security Plan. Support quarterly and annual reporting requirements, including preparation of access logs and monitoring outputs. Validate... 
    Local area

    Lenovo

    Raleigh, NC
    1 day ago
  •  ...Compliance professional in Raleigh, NC. The role involves implementing security controls, risk assessments, and preparing security...  ...Candidates should have 5-7 years of experience in security or risk management and must pass US Government Clearance processes. Strong... 
    Senior

    Pyramid Consulting

    Raleigh, NC
    1 day ago
  • $130k - $140k

     ...Job Description Role: Manager, Security Operations Location: United States (Hybrid – Durham, NC) Department: Cybersecurity – Security Operations...  ...eligible to participate in an annual incentive program, and information on benefits offered is here. Equal Opportunity Employer... 
    Full time

    Pearson

    Raleigh, NC
    2 days ago
  • $185k - $225k

    Sr Principal Enterprise Data Architect- AI & Innovation Location...  ...enterprise standards for security, resiliency, and compliance....  ...Development, Data & Analytics, Information Security, and Infrastructure...  ...practices, including metadata management, data quality, lineage, classification... 
    Senior
    Temporary work
    Work at office
    Local area
    3 days per week

    MetLif

    Cary, NC
    1 day ago
  • RELX INC is seeking a Senior Business Engagement Specialist (BISO) in Raleigh, NC, to enhance information security by bridging business objectives with security priorities. Candidates from diverse backgrounds in product and leadership roles are encouraged to apply. The... 
    Senior

    RELX INC

    Raleigh, NC
    1 day ago
  • Eagle Creek Renewable Energy LLC is looking for an experienced IT Director to oversee all Information Technology operations. You will manage technology infrastructure, lead cybersecurity efforts, and implement high-level IT strategies in the energy industry. The ideal... 
    Senior

    Eagle Creek Renewable Energy LLC

    Raleigh, NC
    16 hours ago
  • EY is seeking an Information Security Consultant in Raleigh, North Carolina. The role focuses on designing security for cloud-based systems, requiring expertise in AI technologies and blockchain security. The successful candidate will contribute to project teams, ensuring... 
    Senior

    EY

    Raleigh, NC
    1 day ago
  •  ...leading IT consulting firm is seeking an experienced Security Professional in Raleigh, North Carolina, to perform security...  ...improvement plans. The role requires developing information security standards and managing risks. The ideal candidate will have a Bachelor's degree... 
    Senior

    Infojini Inc

    Raleigh, NC
    1 day ago
  • MaintainX is seeking an Information Security professional to enhance its security posture by managing vulnerabilities and conducting assessments. This role requires expertise in AWS and various security frameworks to support compliance programs. The ideal candidate has... 
    Senior

    MaintainX

    Raleigh, NC
    4 days ago
  •  ...in Raleigh, NC is looking for a strategic leader in enterprise security architecture. In this role, you'll define and drive the...  ...standards. The ideal candidate has over 7 years of experience in information security and a degree in Cybersecurity or a related field. Benefits... 
    Senior

    Ally

    Raleigh, NC
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Sr. Manager, Information Security. Be the first to apply!