Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Manager, Security Governance Risk & Compliance

$112.87k - $169.31k

Cacheflow

Welcome to the Agentic Commerce Era At Commerce, our mission is to empower businesses to innovate, grow, and thrive with our open, AI-driven commerce ecosystem. As the parent company of BigCommerce, Feedonomics, and Makeswift, we connect the tools and systems that power growth, enabling businesses to unlock the full potential of their data, deliver seamless and personalized experiences across every channel, and adapt swiftly to an ever-changing market. We believe in harnessing AI responsibly to unlock new possibilities, and we’re looking for individuals who use it intentionally to solve problems, accelerate outcomes, and expand what’s possible in their role. Our purpose is to help businesses confidently solve complex commerce challenges so they can build smarter, adapt faster, and grow on their own terms. If you want to be part of a team of bold builders, sharp thinkers, and technical trailblazers who shape the future of commerce, this is the place for you. As a Manager of Security GRC, you will lead our compliance programs and serve as the strategic owner of our audit portfolio at Commerce. You will oversee our most critical certification and regulatory programs — including PCI DSS, SOC 2, ISO 27001, and other security audits — ensuring compliance is embedded into our "business as usual" (BAU) operations and that our control environment is continuously audit-ready across Commerce, Feedonomics, and Makeswift. You will serve as the organizational bridge between Engineering, Infrastructure, Legal, Privacy, and external auditors, translating complex regulatory requirements into clear, executable programs. A core part of this role is working directly with control owners across all business units to ensure they understand their obligations, maintain evidence, and operate within the control framework. This role reports into our GRC function and leads a team of analysts responsible for audit success and control framework integrity. What You’ll Do: Audit Ownership: Own the end-to-end lifecycle of Commerce's core audit programs — PCI DSS 4.0, SOC 2 Type 2, ISO 27001, and SOX — across Commerce, Feedonomics, and Makeswift, including scoping, evidence strategy, auditor management, and final report outcomes. Control Owner Engagement: Partner with control owners across all three business units to ensure they understand their compliance obligations, maintain audit-ready evidence, and operate effectively within the BC Secure Controls Framework on an ongoing basis. External Auditor Relationships: Serve as the primary point of contact for QSAs, external auditors, and certification bodies. Defend the control environment, manage audit timelines, and minimize disruption to technical teams. Continuous Audit Readiness: Drive the operationalization of audit requirements into BAU workflows across all business units, reducing reliance on point-in-time evidence collection and eliminating audit fatigue organization-wide. Findings & Remediation: Own the tracking and closure of audit findings and control gaps across Commerce, Feedonomics, and Makeswift. Partner with control owners to deliver pragmatic, risk-informed remediation plans within defined timelines. PCI 4.0 Evolution: Direct the ongoing maturity of Commerce's PCI DSS 4.0 program, including Targeted Risk Analyses (TRAs), customized approach applicability, and annual assessment planning. Scoping & Segmentation: Partner with Cloud Engineering to validate and maintain PCI scope across Commerce's global footprint, ensuring effective network segmentation and data flow isolation. ISA Oversight: Manage and support ISA-designated personnel; ensure the ISA function operates with rigor and consistency aligned to PCI Council standards. Integrated Controls Framework: Oversee Commerce's Secure Controls Framework (SCF), built from NIST, ISO 27001, and PCI DSS, ensuring controls are designed, tested, and documented to satisfy multiple regulatory obligations simultaneously across all business units. Compliance by Design: Provide GRC leadership on architectural reviews, product launches, and infrastructure changes across Commerce, Feedonomics, and Makeswift to ensure regulatory requirements are addressed upstream — not as an afterthought. Regulatory Intelligence: Stay ahead of emerging requirements across PCI, SOC, and ISO 27001:2022, translating regulatory changes into actionable program updates. Who You Are: Experience: 6–10 years in Information Security, IT Audit, or GRC, with demonstrated ownership of enterprise-level audit programs (PCI, SOC 2, ISO 27001, or SOX). Audit Fluency: Proven track record managing Level 1 Service Provider assessments and navigating complex, multi-framework audit environments spanning multiple business units or legal entities. Control Owner Partnership: Demonstrated ability to work cross-functionally with control owners and operational teams, holding stakeholders accountable to their compliance obligations while maintaining strong working relationships. Regulatory Expertise: Deep working knowledge of PCI DSS 4.0, ISO 27001:2022, SOC 2 Trust Service Criteria, and SOX IT general controls. Leadership Presence: Ability to influence and manage cross-functional stakeholders at all levels — from engineers to executives — with clarity, diplomacy, and conviction. Communication: Skilled at translating compliance requirements into business-relevant language that drives enablement rather than friction. Certification: PCI ISA, CISA, CISSP, or equivalent audit/security certification strongly preferred. Big 4 Experience: Prior experience at a Big 4 advisory or audit firm (Deloitte, PwC, EY, KPMG) in an IT audit, risk advisory, or security compliance capacity is a strong plus. Cloud Security: Experience applying GRC frameworks in cloud-native environments and familiarity with modern cloud security tooling. You lead with the "Why": You build compliance programs that improve security posture — not just check boxes. Your teams and control owners understand the intent behind every requirement. Strategically Grounded, Technically Fluent: You can hold your own in a conversation about IAM policies or network segmentation, and you can turn that same conversation into an executive briefing. Multi-Entity Mindset: You are comfortable operating across distinct business units with different tech stacks, cultures, and maturity levels — bringing consistency to the control framework without losing sight of context. Calm Under Audit Pressure: You thrive in high-stakes audit cycles and know how to keep teams focused, organized, and confident when external scrutiny is highest. (US Pay Transparency Range: $112,870.00 - $169,306.00) Inclusion and Belonging At Commerce, we believe that celebrating the unique histories, perspectives and abilities of every employee makes a difference for our company, our customers and our community. We are an equal opportunity employer and the inclusive atmosphere we build together will make room for every person to contribute, grow and thrive. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the interview process, to perform essential job functions and to receive other benefits and privileges of employment. If you need an accommodation in order to interview at Commerce, please let us know during any of your interactions with our recruiting team. Learn more about the Commerce team, culture and benefits at #J-18808-Ljbffr Cacheflow

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Manager, Security Governance Risk & Compliance in Austin, TX vacancy
  •  ...and more. About the Role LS Power Grid is seeking an Manager of OT Security & Compliance to lead two closely aligned teams within our...  ...and maintaining our core security tooling, and the OT Governance, Risk & Compliance (GRC) team, responsible for the policy framework... 
    Suggested

    LS Power Development, LLC

    Austin, TX
    5 days ago
  • $163k - $237k

     ...experience. 5 years of experience in technical product management, including experience taking software products...  ...corporate/enterprise environment. Experience working in Risk Management, Compliance, Security, or Governance (GRC) technology. Ability to use data to justify... 
    Suggested
    Full time

    PMs for Hire

    Austin, TX
    3 days ago
  • $161.5k - $190k

     ...for starting up new sites and managing client operational expectations, ensuring compliance to contract deliverables. This...  ...operational readiness, identifying risks, and ensuring compliance with...  ...sustainability, and cost optimization. Governance, Risk & Compliance Ensure... 
    Suggested
    Contract work
    Local area
    Flexible hours

    Cushman & Wakefield

    Austin, TX
    3 days ago
  •  ...the leader in Database Change Governance and Database DevOps. We help...  ...strengthening governance, security, compliance, auditability, and control across...  ...for a Senior Product Manager to help advance Liquibase's...  ...regulatory compliance, security, and risk evaluation . This is a... 
    Suggested
    Remote job
    Home office
    Flexible hours

    Liquibase

    Austin, TX
    24 days ago
  • $198k - $368k

     ...KPMG is currently seeking a Director, Security Compliance to join our Digital Security team. Responsibilities...  ...specialist-level knowledge of risk, compliance, and information security...  ...and challenging the status quo; manage and review those team members' work product... 
    Suggested
    Temporary work
    H1b
    Local area

    KPMG

    Austin, TX
    1 day ago
  • $112k - $128k

     ...PIMCO Manager Position PIMCO is a global leader...  ...investors who seek strong risk-adjusted returns....  ...Manager to join our Fund Governance team. This team plays...  ...stakeholders across Legal & Compliance, Account Management,...  ...Company Act of 1940, Securities Act of 1933, Form N‑1A... 
    Contract work
    Work at office
    Flexible hours

    PIMCO

    Austin, TX
    3 days ago
  • $30 - $35 per hour

     ...training is complete. Location: Austin, TX Responsibilities Manage resource planning, monitor workflows, oversee day-to-day...  ...improve the company experience. Maintain a controlled risk environment and ensure compliance with business Professional Standards and Operation team... 
    Hourly pay
    Contract work
    Work experience placement
    Work at office
    Remote work

    Creative Solutions Services, LLC

    Austin, TX
    1 day ago
  • $135k - $168k

     ...Collateralized Loan Obligation (CLO) Operations Manager PIMCO is a global leader in active...  ...financing and investors who seek strong risk-adjusted returns. Since 1971, our...  ..., including portfolio managers, risk and compliance, and service providers, requiring a deep... 
    Work at office
    Flexible hours
    Shift work

    PIMCO

    Austin, TX
    4 days ago
  • $90k

     ...part of one of the largest and fastest-growing privately held security companies in the U.S! Since 1998, Sunstates Security has built...  ...members are provided with the tools, knowledge, and hands-on management support necessary for long-term success. Our commitment to... 
    Full time
    Contract work
    Temporary work
    Local area
    Immediate start
    All shifts
    Weekend work
    Day shift

    Sunstates Security

    Austin, TX
    3 days ago
  • $185k - $237.5k

     ...company is seeking a Principal Product Operations and Risk Analyst in Austin, Texas. This role entails managing the Product Risk function, collaborating with...  ...teams to assess and mitigate risks, and ensuring compliance with regulatory standards. Candidates should have... 

    Circle

    Austin, TX
    2 days ago
  • Technical Program Manager, Marketing Data Governance Reports to: Senior Manager, Information Architecture Locations Austin, Texas, United States of America Vancouver, British Columbia, Canada Montreal, Quebec, Canada Studio / Department Marketing Work Model Hybrid... 
    Full time
    Local area

    Electronic Arts

    Austin, TX
    1 day ago
  • $184.5k - $276.7k

    Manager, Data Center Portfolio & Capacity Strategy Sony Interactive...  ..., capacity, performance, and governance of SIE's global portfolio of...  ...resilience, cost‑efficiency, and compliance. The role requires strong...  ...service levels and mitigate risks. Governance & Reporting - Establish... 
    Contract work
    Temporary work
    Worldwide

    Dormont Manufacturing Company

    Austin, TX
    1 day ago
  • K&L Gates LLP is looking for an AI Program Manager to lead critical technology initiatives in Austin, TX. This role involves managing vendor relationships, translating business goals into actionable plans, and driving AI objectives throughout the organization. Applicants... 

    K&L Gates LLP incorporated

    Austin, TX
    5 days ago
  • $58.1k - $95.9k

    A leading IT service provider in Austin is looking for a Change Management Engineer to design and govern ITIL-aligned change processes in a federal IT environment. This role involves evaluating change requests, collaborating with stakeholders to minimize service disruptions... 

    ASM Research, An Accenture Federal Services Company

    Austin, TX
    3 days ago
  • $200k - $250k

     ...innovation and the future of digital wealth management by building tech-forward solutions...  .... At Apex, we are changing how the securities industry operates by reinventing...  ...and OCC operations, regulatory compliance, and operational risk management across multiple asset... 
    Work experience placement
    Work at office
    Work from home
    3 days per week

    Dormont Manufacturing Co

    Austin, TX
    1 day ago
  • $173k

     ...customer‑centric posture in managing disruptions. Establish the overarching governance, structure, strategy...  ..., platform, and security teams to embed resilience...  ...following areas: Technology Risk Management, Operational...  ..., risk and compliance teams, and executive leadership... 

    Expedia Group

    Austin, TX
    2 days ago
  • $130k - $140k

    Job Description Role: Manager, Security Operations Location: United States...  ...the operational delivery, governance, and assurance of cybersecurity...  ...reviews, vulnerability and risk tracking. Ensure consistent...  ...with Legal, Privacy, or Compliance teams during security incidents... 
    Full time

    Pearson

    Austin, TX
    5 days ago
  •  ...Union in Austin, Texas is seeking a Director of Information Security to oversee and enhance its cybersecurity initiatives....  ...the organization’s information security strategy, ensuring compliance and managing risks associated with technology processes. The ideal candidate... 

    University Federal Credit Union

    Austin, TX
    2 days ago
  •  ...selling experience into a simple, secure, and enjoyable process. Our...  ...will help clients implement compliance and best practices, industry...  ...areas of organizational risk and non‑compliance. Leverage...  ...scripts, coaching, and performance management to ensure consistent,... 
    Work at office
    Remote work
    Flexible hours

    Qualia

    Austin, TX
    5 days ago
  • $192k - $279k

    Staff Technical Program Manager, Data Center Data Security Google Austin, TX, USA; Atlanta, GA, USA X Note...  ...stakeholders to plan requirements, identify risks, manage project schedules, and...  ...our security posture, ensure compliance, and manage risk. You will be responsible... 

    Google Inc.

    Austin, TX
    1 day ago
  • Rockwell Automation in Austin is seeking a Project Manager to lead initiatives for the Trusted Content team. In this role, you will collaborate with leadership to drive impactful projects, applying project management techniques across various project phases. The ideal candidate... 
    Flexible hours

    Rockwell Automation

    Austin, TX
    5 days ago
  • $25 - $28 per hour

     ...and South America. The Product Operations Specialist, Risk is responsible for the day‑to‑day risk and fraud operations...  ...for risk events, escalating to Business Credit Risk, Compliance, or Tech as needed Manage a high volume of cases accurately and within established... 
    Hourly pay

    Medium

    Austin, TX
    3 days ago
  • A leading security firm located in Austin, Texas, is seeking a Contract Manager responsible for managing all contract-related operations and ensuring compliance across security services. The ideal candidate will have a minimum of five years of experience in project management... 
    Contract work

    Walden Security

    Austin, TX
    5 days ago
  •  ...Prometheus Security Group Global (PSG) seeks a Project Manager for their Austin, Texas office. The ideal candidate will manage large-scale electronic security projects, ensuring they meet deadlines and quality standards. Key responsibilities include project planning, budget... 
    Work at office

    Prometheus Security Group Global

    Austin, TX
    2 days ago
  • Position Overview A Project Manager at Pref-Tech will be responsible...  ...Pref-Tech meet all project compliance requirements: Certificates of...  ...written formats. Mitigate risks and problems and resolve any...  ...requirements. Obtain and maintain a security license through the Texas... 
    Contract work
    For contractors
    For subcontractor
    Work at office
    Monday to Friday
    Night shift

    Preferred Technologies, LLC

    Austin, TX
    4 days ago
  • Rapid Fire Safety & Security LLC is looking for a Service Manager in Austin, Texas. The Service Manager will manage service and support staff to ensure...  ...while maintaining a focus on customer satisfaction and compliance with safety regulations. The ideal candidate will... 

    Rapid Fire Safety & Security LLC

    Austin, TX
    4 days ago
  • $55 - $60 per hour

     ...Database Administrator for a contract role based in Austin, TX. The ideal candidate will have 6-8 years of experience managing MongoDB databases in secure environments. Responsibilities include designing and configuring database systems, implementing security protocols,... 
    Hourly pay
    Contract work

    Akkodis Group Nordics

    Austin, TX
    1 day ago
  • DoorDash is seeking a Sr. Associate Project Manager in Austin, Texas to lead projects related to physical security technology. You will work with cross-functional teams to ensure projects are delivered on time and within budget while traveling 25%+. The ideal candidate... 

    DoorDash

    Austin, TX
    a month ago
  • Ouro, based in Austin, Texas, is seeking a manager for their Risk Data Analytics team. The role focuses on building visualizations, monitoring KPIs, and conducting data analysis to optimize product performance and reduce risks. Additionally, you will lead a team of analysts... 

    Ouro

    Austin, TX
    1 day ago
  • $100k - $150k

     ...heard your next great opportunity is just a few clicks away! Security Systems Sales Representative The Security Systems Sales...  ...growth role responsible for supporting Global Strategic Account Management (GSAM) efforts while driving revenue growth in integrated security... 
    Contract work
    For contractors

    Johnson Controls

    Austin, TX
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Manager, Security Governance Risk & Compliance. Be the first to apply!