Cybersecurity GRC Program Manager jobs in United States
info-icon
This job has closed.
company-logo

Novia Infotech · 11 hours ago

Cybersecurity GRC Program Manager

positionAtlanta, GA
timeContract
remoteOnsite
senioritySenior Level, Lead/Staff
date10+ years exp

Novia Infotech is seeking a seasoned Program Manager – Cybersecurity GRC to lead enterprise-level Governance, Risk, and Compliance initiatives with a strong focus on Vendor Risk Management. This role is critical to maintaining a strong security, regulatory, and risk posture across the organization, requiring collaboration with CISO leadership and various stakeholders.

Information Technology & Services

Responsibilities

Lead and manage enterprise GRC programs, including:
Risk assessments
Control design and implementation
Compliance initiatives
Vendor risk assessments
Define program scope, milestones, deliverables, success criteria, and KPIs aligned with organizational goals
Drive execution of multi-workstream GRC programs across IT, Security, and Business teams
Establish and manage governance structures, including steering committees and executive forums
Provide regular program status reporting to senior leadership and stakeholders
Partner closely with:
CISO and Security leadership
Risk owners
Legal and Compliance teams
Internal and external auditors
Oversee IT and Cyber Risk Management initiatives
Ensure alignment with industry standards and regulations, including:
NIST
ISO 27001
SOC 2
SOX
GDPR
Support regulatory exams, internal audits, and third-party audits
Drive control assurance, issue remediation, and risk acceptance processes
Develop and execute roadmaps for GRC tooling and process improvements
Lead deployments and enhancements for GRC platforms such as:
RSA Archer
ServiceNow GRC
Ensure tools support scalable risk, compliance, and reporting capabilities

Qualification

Cybersecurity GRCVendor Risk ManagementIT Risk ManagementRegulatory ComplianceAudit ManagementNISTISO 27001SOC 2SOXGDPRRSA ArcherServiceNow GRCCISMCRISCCISSPPMPExecutive CommunicationCross-functional Management

Required

10+ years of experience in Program Management with a focus on Cybersecurity GRC
Strong experience in Vendor Risk Management
Proven ability to lead enterprise-scale GRC programs
Strong understanding of IT Risk Management
Policy Governance
Regulatory Compliance
Audit Management
Hands-on knowledge of NIST
ISO 27001
SOC 2
SOX
GDPR
Strong executive-level communication and presentation skills
Ability to influence senior stakeholders and drive consensus
Experience managing cross-functional and multi-stakeholder programs

Preferred

Experience implementing or optimizing ServiceNow GRC or RSA Archer
Certifications such as: CISM, CRISC, CISSP, PMP (nice to have)
Experience in highly regulated industries (financial services, healthcare, etc.)

Company

Novia Infotech

twitter
company-logo
At Novia Infotech, we’re more than just a service provider — we’re your partner in professional growth.
dateFounded in 2015
location
Dallas, Texas, US
people-size51-200 employees
web-link
https://www.noviainfotech.com

Funding

Current Stage
Growth Stage
Company data provided by crunchbase