677 grc manager jobs at 468 companies in United States

3mo
Save
Mark Applied
Hide
Sr. Manager GRC
San Jose, California, United States
$179k-$257k/yr OnsiteFull Time
Bloom Energy
Bloom EnergyNYSE: BE: Manufactures solid oxide fuel cell systems for onsite power.
12+ YOELead governance, risk, and compliance program; manage risk assessments; ensure ISO27001/NIST CIS/GDPR/CCPA; lead GRC team; collaborate across functions.
GRC tools, Policy management, Compliance tooling
1w
Save
Mark Applied
Hide
GRC Program Manager - Remote
United States
$110k-$143k/yr RemoteFull Time
Velera
Velera: Integrated fintech and payment processing solutions for credit unions.
8+ YOE8+ years in cyber GRC or related fields, 5+ years in GRC program management, experience implementing GRC tools (Optro,Vanta,Drata,OneTrust), PCI/NIST/SOC audit experience, strong stakeholder and program skills.
Optro, Vanta, Drata, OneTrust
1mo
Save
Mark Applied
Hide
GRC Engineer
Palo Alto or San Francisco
$130k-$170k/yr OnsiteAll Commitments Available
Zania
Zania: Automates enterprise risk and compliance using agentic AI teammates.
3+ YOE3–8 years in GRC, information security, risk management, audit, or enterprise tech customer success; strong frameworks knowledge (SOC 2, ISO 27001, NIST CSF, FedRAMP, HIPAA, PCI-DSS); proven stakeholder management and communication; SaaS/technical product experience.
GRC frameworks, SOC 2, ISO 27001, NIST CSF, FedRAMP, HIPAA, PCI-DSS
2mo
Save
Mark Applied
Hide
GRC & Incident Manager
Los Angeles, California, United States
$145k-$163k/yr OnsiteFull Time
Lendistry
Lendistry: Technology-enabled lender providing capital to small businesses.
3+ YOE3-5 years in GRC, data privacy, risk management; SOC 2 and GLBA; cloud experience (AWS/Azure); privacy engineering; CIPT/CDPSE required; CIPM/CISSP preferred; B.S. in CS/Info Security or equivalent.
AWS, Azure, SQL, Python, data mapping, PIA, DPIA
1mo
Save
Mark Applied
Hide
GRC Risk Manager
Los Angeles or United States
$108k-$180k/yr OnsiteFull Time
SHEIN
SHEIN: Global online retailer selling affordable fashion and lifestyle products.
7+ YOE7+ years in information security risk management; bachelor’s degree; CISSP/CISM/CISA or ISO 27001 Lead Auditor desirable; strong standards knowledge; team leadership experience.
GRC tools
2mo
Save
Mark Applied
Hide
GRC Manager
Boston or San Francisco
HybridFull Time
CloudZero
CloudZero: Platform for cloud cost intelligence and FinOps optimization.
5+ YOE5+ years in governance, risk, and compliance, SaaS/cloud focus; SOC 2/audit experience; knowledge of COSO/ISO 31000/NIST RMF; GDPR/CCPA controls.
Vanta, Drata, Loopio, Iris
2w
Save
Mark Applied
Hide
GRC Manager
United States
$139k-$168k/yr RemoteFull Time
Mattermost
Mattermost: Secure collaboration platform for defense and enterprise teams.
Owner of governance, risk, and compliance programs with federal and commercial experience; familiarity with NIST, CMMC, ISO 27001, SOC 2, third-party risk, and cloud security; strong communication and program leadership.
Claude, OpenAI, Gemini, Vanta, Drata, AWS, GCP, Azure, Microsoft Teams, Outlook, Microsoft 365
1mo
Save
Mark Applied
Hide
GRC Program Manager
Sydney or Melbourne or San Francisco or London or United States
HybridFull Time
Deputy
Deputy: Workforce management software for scheduling and managing hourly employees.
5+ YOE5+ years GRC experience in a fast-paced SaaS environment; hands-on audit execution; expertise in ISO 27001, SOC2, PCI-DSS and emerging AI standards; policy writing, risk assessments, and stakeholder engagement; advanced security/privacy certs preferred.
ISO 27001, SOC2, PCI-DSS, ISO 42001 (AI), NIST AI, NIST Privacy Framework
4d
Save
Mark Applied
Hide
Senior GRC Analyst
United States
$120k-$190k/yr RemoteFull Time
Modine
ModineNYSE: MOD: Manufactures thermal management systems and HVAC equipment.
5+ YOE5+ years in Information Security GRC, IT Audit, or IT Compliance with ITGC/SOX experience, GRC tool configuration, framework knowledge, strong process and project management skills.
SimpleRisk, AuditBoard, LogicGate
3d
Save
Mark Applied
Hide
GRC Manager - Associate
Charlotte, North Carolina, United States
HybridFull Time
SMBC Group
SMBC GroupNew York Stock Exchange: SMFG: Provides global banking, investment, securities, and consumer finance services.
5+ YOEBachelor's in IT/InfoSec,5+ years IT audit/assurance experience,knowledge of IT controls,regulations and frameworks;strong communication,analytical and project management skills.
ARM, ISO27002, FFIEC, NIST, GDPR, FCA
2w
Save
Mark Applied
Hide
GRC Analyst
United States
$134k-$202k/yr RemoteFull Time
Vercel
Vercel: Frontend cloud platform for building and hosting web applications.
3+ YOE3+ years supporting audit lifecycle in cloud environments; manage ISO/SOC/HIPAA/PCI compliance, collaborate with engineering, strong project management and communication; familiarity with cloud and GRC tools.
Azure, AWS, Drata, Linear, Datadog
1w
Save
Mark Applied
Hide
Senior GRC Analyst
Atlanta or United States
$110k-$120k/yr RemoteFull Time
PrizePicks
PrizePicks: Operates a daily fantasy sports and player prediction platform.
5+ YOE5+ years GRC/InfoSec/IT audit experience; experience with SOC 2, ISO 27001, PCI-DSS, NIST, GDPR; audit coordination, TPRM, policy management, GRC tooling experience, strong communication and project management.
Vanta, Drata, Archer, OneTrust, ServiceNow GRC
2mo
Save
Mark Applied
Hide
Senior Manager, Security GRC
Denver or São Paulo or Colombia or Argentina or United States or Brazil or Costa Rica
RemoteContract
AspenView: Provides nearshore software engineering and digital transformation services.
12+ YOE5+ Mgmt12+ years in cybersecurity with 5+ years leading enterprise GRC; CISSP or CISM required, CRISC or CGEIT preferred; expertise in NIST, ISO, SOX, GDPR, CMMC; executive advisory and team leadership skills.
NIST CSF, NIST RMF, ISO 27001, ISO 31000, SOX, GDPR, CMMC
3w
Save
Mark Applied
Hide
Manager, IT & Cybersecurity GRC
United States
$145k-$155k/yr RemoteFull Time
Veracyte
VeracyteNASDAQ: VCYT: Provides genomic diagnostic tests for precise cancer diagnosis.
6+ YOE6+ years in audit, regulatory compliance, cybersecurity GRC, or risk management; hands-on IT SOX/ITGC experience; familiarity with COSO, NIST RMF, ISO 27001/27005; strong cross-functional leadership and audit management; Bachelor’s required.
COSO, NIST RMF, ISO 27001, ISO 27005, SOC1, SOC2
1mo
Save
Mark Applied
Hide
GRC Analyst
United States
$84k-$100k/yr HybridFull Time
Uplight
Uplight: Software platform for utility energy management and grid flexibility.
1+ YOE1-3 years in GRC/security; 3rd party/vendor risk; RFPs/security questionnaires; policy management, risk assessment, audits; cloud security exposure (AWS/Azure/GCP); strong communication.
AWS, Azure, GCP, RFP tools, Security and privacy tools
1mo
Save
Mark Applied
Hide
Information Security GRC Manager
Dallas or Akron
HybridFull Time
Signet Jewelers
Signet JewelersNYSE: SIG: Global retailer of diamond jewelry and professional jewelry services.
10+ YOELead governance, risk, and compliance program; 10+ years information security/risk; 2–3+ years GRC; strong frameworks; audits; bachelor’s degree; excellent communication and project management.
Optro, AuditBoard, ServiceNow GRC, OneTrust
1mo
Save
Mark Applied
Hide
GRC Program Manager, Product and Customer Trust
San Francisco, California, United States
$216k-$252k/yr HybridFull Time
OpenAI
OpenAI: Develops artificial intelligence models and generative AI software services.
Experienced GRC/product assurance professional with product launch review, customer trust, and security compliance experience; able to build operating models, automation, metrics, and clear customer-facing security narratives.
Codex
2mo
Save
Mark Applied
Hide
GRC Analyst
Dallas, Texas, United States
OnsiteFull Time
Momentum
Momentum: A collection of companies powering digital commerce and transformation.
5+ YOE5-7 years in GRC/security compliance/risk management; SOC 2 Type II experience; NIST CSF knowledge; policy library development; vendor risk management; client security questionnaires; strong written communication; AI/automation use.
OneTrust, Drata, Vanta, Whistic, Okta, Google Workspace, AWS, GCP, Azure, CrowdStrike, KnowBe4
2w
Save
Mark Applied
Hide
Senior Manager, Information Security GRC
Southlake or Texas
HybridFull Time
Greystar
Greystar: Provides global property management and real estate investment services.
8+ YOE2+ Mgmt8+ years in information security with 4+ years focused on GRC and 2+ years people-management. Bachelor's or equivalent, experience with risk management, third-party risk, compliance frameworks (ISO 27001, NIST, SOC 2), GRC platforms, cloud environments, and security awareness programs.
Hyperproof, OneTrust, Archer, AWS, GCP, Azure, SIG, CAIQ, ISO 27001, PCI DSS, SOX, GDPR, CCPA, ISO 42001, NIST AI RMF, SOC 2, NIST 800-53
1mo
Save
Mark Applied
Hide
Manager, GRC Subject Matter Experts, Product
United States
$230k-$311k/yr RemoteFull Time
Vanta
Vanta: Automated security compliance and trust management software for businesses.
7+ YOE2+ Mgmt7+ years GRC/InfoSec, 2+ years managing SMEs, cross-functional product/program experience, strong communication.