GRC Risk Manager

About SHEIN SHEIN Technology is a U.S. technology company founded in 2012. It is a leading global online retailer with operations in Guangzhou, Los Angeles and Singapore, along with other key markets. SHEIN serves consumers in more than 150 countries and regions, delivering over 6,000 new fashion, beauty and lifestyle products daily from a catalog of more than 600,000 items. Our mission is to help people express their individuality through the latest trends that are accessible and affordable. Position Summary SHEIN Global Security & Risk Management oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN’s global footprint. This team of security professionals, innovators and thought leaders has decades of experience leading large‑scale transformations and serving in Fortune 500 executive roles. The GRC Risk Manager is a thought leader responsible for implementing and maintaining the risk management framework and program. The role works with technology, legal partners and business units to meet global risk management needs. Job Responsibilities Develop, implement, mature, and champion risk management processes and concepts. Deploy the risk management framework, processes and tools to conduct risk assessments consistently. Manage the risk register and define and report key risk metrics to management regularly. Conduct risk assessments of business units, critical processes and information assets. Conduct third‑party risk assessments and security reviews of third‑party agreements. Work closely with technology and legal partners and business units to incorporate appropriate security and data protection requirements into third‑party engagements. Prepare risk assessment reports to inform risk treatment decisions. Track and monitor remediation and risk management activities. Maintain current knowledge of relevant industry standards to incorporate into the risk management strategy. Support integration and maturation of policy, compliance and risk frameworks. Job Requirements Minimum 7 years of experience in information security risk management, including business impact analysis, risk assessment, treatment, metrics and trend analysis. Bachelor’s degree or higher in information security, engineering, computer science or an advanced technology field. Relevant security certifications such as CISSP, CISM, CISA or ISO 27001 Lead Auditor highly desired. Strong knowledge of security and data privacy standards and regulations (ISO 27000 series, NIST, CIS, GDPR, CCPA, PCI DSS). Team management experience, including setting and aligning goals, providing feedback and fostering collaboration. Experience developing and deploying risk management frameworks and programs, preferably in an e‑commerce or technology industry. Experience with deploying GRC tools desirable. Practical knowledge of threat modeling frameworks such as STRIDE, MITRE ATT&CK, OCTAVE desirable. Strong analytical and problem‑solving skills. Strong written and verbal communication skills, translating complex technical issues to all levels. Detail oriented, highly organized and able to thrive in a fast‑paced environment. High level of personal integrity, capable of handling confidential matters with judgment and maturity. Benefits And Perks Bonus and RSU eligible Healthcare (medical, dental, vision, prescription drugs) Health Savings Account with Employer Funding Flexible Spending Accounts (Healthcare and Dependent care) Company‑Paid Basic Life/AD&D insurance Company‑Paid Short‑Term and Long‑Term Disability Voluntary Benefit Offerings (Voluntary Life/AD&D, Hospital Indemnity, Critical Illness, Accident) Employee Assistance Program Business Travel Accident Insurance 401(k) Savings Plan with discretionary company match and financial advisor access Vacation, paid holidays, floating holiday and sick days Employee discounts Free weekly catered lunch Dog‑friendly office (select locations) Free gym access (select locations) Free swag giveaways Annual Holiday Party Invitations to pop‑ups and other company events Complimentary daily office snacks and beverages SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment. Pay Range: $108,000 USD - $180,000 USD #J-18808-Ljbffr SHEIN Distribution Corporation