logo inner

Security GRC Manager

Red VenturesCharlotte, North Carolina, United StatesOnsite

This role is not open to visa sponsorship or transfer of visa sponsorship including those on OPT and STEM-EXT OPT, nor is it available to work corp-to-corp.


As a Security GRC Manager, you will be a hands-on people leader responsible for our security governance, risk, and compliance programs in a technology-driven organization. Partnering with our technology, business and legal teams, you will play a key role in influencing the organization’s cybersecurity posture through assessing and driving remediation of security risks and ensuring compliance with relevant frameworks and contracts.  Your technical expertise of security frameworks and understanding of cloud infrastructure will be crucial in ensuring Red Ventures’ security posture aligns with industry best practices.

This role offers the opportunity to make strategic decisions, provide valuable recommendations, and collaborate with a broad group of bright and energetic individuals throughout the company. This position will report to our Fort Mill, SC campus three days per week.

What You'll Do:


  • Lead and manage all aspects of applicable cybersecurity audits, such as scope definition/validation, audit readiness, walkthroughs, evidence collection, and liaising with external auditors
  • Drive adoption of relevant security compliance requirements through thorough analysis and prescriptive guidance
  • Define and lead security risk management process, leveraging automation and partnering with stakeholders to perform hands-on risk assessments
  • Oversee the policies and standards lifecycle process to ensure they address all relevant cybersecurity requirements
  • Define and lead cybersecurity awareness programs including annual training, topical awareness campaigns in partnership with corporate communications, and phishing simulations
  • Proactively identify compliance gaps through continuous monitoring, working closely with control owners to identify ways to effectively monitor compliance posture through automation
  • Document and report identified security or compliance issues and work with control owners on remediation requirements, strategy, and execution, providing recommendations that can be reasonably adopted
  • Regularly monitor remediation activities for noted findings, and escalate on remediation plans that are at-risk of being overdue
  • Develop and maintain security reporting to provide real-time and on-demand compliance status
  • Maintain an up-to-date understanding of emerging trends in information security risks; apply new techniques and trends, in-line with overall information security objectives
  • Establish partnerships with cross-functional teams such as IT, Legal, HR and Privacy to ensure they understand their roles when supporting the security GRC programs
  • Support the broader security team in establishing annual and long-term goals, objectives, metrics, and reporting mechanisms

What We're Looking For:


  • 5+ years of experience in technology audit, security risk management, and/or security compliance role, with at least 2-4 years implementing or auditing compliance with key cybersecurity standards (e.g., PCI DSS, ISO 27001, SOC2, etc.) in a cloud-first environment
  • Experienced with cloud infrastructure technologies and services (e.g., AWS, GCP, Azure) as well as various enterprise SaaS solutions 
  • Functional knowledge of multiple security domains and information security industry standards and best practices
  • Experienced with the implementation and/or use of control automation and compliance tools
  • Effective in building relationships with organizational leaders and influencing senior management
  • Excellent organizational skills, proactive and self-sufficient with a proven ability to work independently to effectively prioritize and execute tasks
  • Drive, determination, and the ability to overcome roadblocks and initial objections
  • Strong project management skills
  • Ability to work collaboratively with multiple stakeholders across different backgrounds and skill sets
  • Strong written, verbal communication, and presentation skills.
  • BS/BA in a related field (e.g., Computer Science, MIS) desirable, or equivalent relevant experience
  • Security-related or cloud-related certifications such as CISA, CISSP, AWS Solutions Architect, etc. is a plus

Compensation


  • Cash Compensation Range: $120,000-150,000* *Note actual salary is based on qualifications, and experience. 

Additionally, the following benefits are provided by Red Ventures, subject to eligibility requirements.

  • Health Insurance Coverage (medical, dental, and vision)
  • Life Insurance
  • Short and Long-Term Disability Insurance
  • Flexible Spending Accounts
  • Paid Time Off
  • Holiday Pay
  • 401(k) with match
  • Employee Assistance Program
  • Paid Parental Bonding Benefit Program

Who We Are


Founded in 2000, Red Ventures (RV) is home to a diverse portfolio of industry-leading brands and businesses, strategic partnerships and proprietary technology – including Bankrate, Lonely Planet, CNET, The Points Guy, BestColleges and more. Together, RV helps millions of people worldwide make life’s most important decisions, accelerates digital adaptation, and innovates the online consumer experience by improving every step of the consumer journey – from first discovery of information, throughout the decision-making process, to transactions.

Headquartered south of Charlotte, NC, Red Ventures employs thousands of people across the US and Puerto Rico, with international offices in the UK and Brazil. For more information, visit https://redventures.com and follow @RedVentures on social platforms. We offer competitive salaries and a comprehensive benefits program for full-time employees, including medical, dental and vision coverage, paid time off, life insurance, disability coverage, employee assistance program, 401(k) plan and a paid parental leave program.Red Ventures is an equal opportunity employer that does not discriminate against any employee or applicant because of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or any other basis protected by law.

Employment at Red Ventures is based solely on a person's merit and qualifications. We are committed to providing equal employment opportunities to qualified individuals with disabilities. This includes providing reasonable accommodation where appropriate. Should you require a reasonable accommodation to apply or participate in the job application or interview process, please contact accommodation@redventures.com. If you are based in California, we encourage you to read this important information for California residents linked here.#li-hybrid #li-lm2Click here for more details regarding the employee privacy policy: https://www.redventures.com/legal/us-emp-privacy-notice Questions about this Privacy Notice can be directed to employeerights@redventures.com.

Alternatively, you may raise any questions or concerns to your manager, HR Business Partner, or through the Privacy Team.

Life at Red Ventures

People describe Red Ventures in many ways. We've been called one of the most innovative direct marketing companies in the nation. We've been named the Best Place to Work. We've even been called the next Google. The truth is, what we do is unique – and it can't be boxed into one category. Some companies focus on building a product and finding effective ways to market and sell it. At Red Ventures, our product is our expertise in how to market and sell. Unlike companies who specialize in either online marketing, telephone sales or building technology infrastructure, Red Ventures has an expertise in all three. We own the risks and rewards of the entire direct marketing process – from lead generation to end transaction. And whether we're marketing and selling services for our partners or for ourselves, our process works. We're able to execute our business model across a wide range of industries, though we most specifically focus on consumer services, small business solutions and media/telecom.
Thrive Here & What We Value1. Committed to equal employment opportunities for qualified individuals with disabilities2. Competitive salaries and comprehensive benefits program (medical, dental, vision coverage; paid time off; life insurance; disability coverage; employee assistance program; 401(k) plan; parental leave)3. Dynamic, fast-paced, performance-driven environment4. Collaborative cross-disciplinary team of designers, product managers, and engineers5. Passionate individual skilled in systems integration and API development6. Work hard in a collaborative, fun, flexible work environment7. Loves experimentation, Agile development, intellectual curiosity8. Headquartered south of Charlotte, NC; offices in the US, London, Sao Paulo; dedicated to local talent cultivation and economic development on Puerto Rico9. Believes in online learning's power for opportunities and transformation10. Partnering with over 300 colleges/universities
Your tracker settings

We use cookies and similar methods to recognize visitors and remember their preferences. We also use them to measure ad campaign effectiveness, target ads and analyze site traffic. To learn more about these methods, including how to disable them, view our Cookie Policy or Privacy Policy.

By tapping `Accept`, you consent to the use of these methods by us and third parties. You can always change your tracker preferences by visiting our Cookie Policy.

logo innerThatStartupJob
Discover the best startup and their job positions, all in one place.
Copyright © 2024