GRC Program Manager

at Abnormal Security
  • $137k-$162k
  • Remote - United States

Remote

Project Management

Mid-level

Job description

About the Role

Abnormal Security is looking for a GRC Program Manager (Governance, Risk, and Compliance) to support the GRC team and programs. The GRC team aims to facilitate information security and data governance processes, enable risk-based decision-making, and deliver a compliance foundation to achieve and maintain compliance certifications.

This role will play a critical part in the successful execution of GRC programs and driving the achievement of program objectives.  The role will be focused on owning and improving program/project management and reporting practices across GRC, coordinating and aligning with other organizational program and project managers to implement consistent practices, developing and maintaining team and project documentation, ownership of select GRC operations, facilitating best practices with team internal processes, and supporting the Director of GRC with planning activities. In addition this role will act as project manager for critical GRC projects and cross-functional projects identified through the GRC programs to drive risk reduction across the company.

The ideal candidate will have proven program and project management skills, can design project management and operational processes and scale through continuous improvement, can produce and maintain comprehensive documentation and reporting, and understands the requirements and operations of governance, risk, compliance, customer trust, and privacy programs.

Who you are

  • Proven experience leading and scaling programs as a program manager for a GRC or similar team, managing portfolios of projects, and developing and implementing frameworks and best practices.
  • Proven experience developing and reporting project and program performance metrics to varying levels of audience.
  • Demonstrated experience developing and maintaining technical, procedural, and program/project related documentation .
  • Solid technical background with an ability to give instructions to a non-technical audience.
  • Hold yourself accountable for high-quality results and meeting deadlines in a fast-paced environment.
  • Exercise sound judgment even when faced with ambiguity or competing approaches regarding the best path to success.
  • Ability to foster relationships with stakeholders and represent the GRC team across

What you will do

  • As a key contributor within GRC, you will own GRC program management such as developing program plans, defining program goals, objectives, deliverables, and success criteria, developing frameworks and best practices for projects and operations, and overseeing program/project/process performance.
  • Ensure program activities align with strategy and manage the timely and high-quality execution of GRC landmarks.
  • Work with project managers to develop project plans.
  • Design and manage program/project reporting for varying levels of audience.
  • Coordinate with other program managers to ensure consistency across programs/projects within the InfoSec organization.
  • Drive program maturity growth through development of program maturity models and maturity roadmap; track progress.
  • Direct project management of critical projects for GRC projects or cross-functional projects identified through GRC Programs.
  • Drive remediation and mitigation activities, also known as issues management, through development of tracking, update, and progress reporting processes for projects identified by GRC programs related to remediation and mitigation.
  • Lead GRC Documentation Management including maintaining document templates, overall document structure, and content requirements.  Develop and maintain documentation for the team, programs, and projects.
  • Lead select GRC operations as assigned by the Director of GRC.
  • Support GRC planning activities for strategic, annual, and quarterly planning, including cross-functional planning coordination.
  • Maintain regular, clear communication with project teams, key partners, and management regarding the status of programs, projects, owned processes and issues management.
  • Effectively communicate program and project execution status, program health and effectiveness, key accomplishments, and risks to senior management both within Security and to our business partners.

Must Haves

  • 4+ years in a program manager role assigned to GRC, Security, or a team in a related field
  • Bachelor’s degree or equivalent experience
  • Proven experience leading complex technical programs and successfully executing projects with an emphasis on delivering results.
  • Strong understanding of security concepts and practical usage
  • Strong understanding of basic governance, risk management, and compliance concepts and requirements
  • A solid grasp of audit, security, financial, and operational internal control methodologies and terminology (e.g., COSO)
  • Ability to effectively communicate governance, risk, and compliance program performance to management
  • Familiarity with project management tools, ServiceNow, and Jira

Nice to Haves

  • PMP, CRISC, CISSP, CISA, or CISM certification(s)
  • Prefer a degree in information assurance, computer science, information security, or business.
  • Experience preferably at a technology or SaaS / Cloud and/or with a regulated public company
  • Big 4 experience
  • Familiarity with Governance Risk Compliance (GRC) tools, Drata

#LI-RT1

At Abnormal AI, certain roles are eligible for a bonus, restricted stock units (RSUs), and benefits. Individual compensation packages are based on factors unique to each candidate, including their skills, experience, qualifications and other job-related reasons. We know that benefits are also an important piece of your total compensation package. Learn more about our Compensation and Equity Philosophy on our Benefits & Perks page.

Base salary range:

$137,700—$162,000 USD

Abnormal AI is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by law. For our EEO policy statement please click here. If you would like more information on your EEO rights under the law, please click here.

Share this job:
Please let Abnormal Security know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Abnormal Security logo

Abnormal Security

Cloud-Native Email Security

  • Founded in 2018
  • 94 remote jobs

Latest Jobs at Abnormal Security

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply now