Senior Compliance / GRC Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Agency Cybersecurity ยท 9 hours ago

Senior Compliance / GRC Manager

positionNew York, NY
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$135K/yr - $175K/yr
date4+ years exp

Agency Cybersecurity is a fast-growing venture-backed startup that provides best-in-class cybersecurity and compliance. They are seeking a Senior Compliance / GRC Manager to manage multiple client relationships and lead audits, delivering exceptional cybersecurity compliance services.

Cyber SecurityProfessional ServicesSecurity

Responsibilities

Serve as the primary point of contact for multiple cybersecurity and compliance client engagements
Lead and manage SOC 2, ISO 27001, HIPAA, and other compliance framework audits from initiation through completion
Own the delivery of multiple simultaneous client projects, ensuring timely and high-quality results
Conduct gap assessments, risk analyses, and compliance readiness reviews for clients
Develop and implement comprehensive compliance strategies and remediation plans
Coordinate with external auditors and manage all aspects of the audit process
Build and maintain strong client relationships, serving as a trusted advisor on compliance matters
Guide clients through complex compliance requirements and regulatory standards
Create detailed compliance documentation, policies, procedures, and control frameworks
Manage a team of 10 junior members
Stay current on evolving compliance frameworks, regulations, and industry standards

Qualification

SOC 2ISO 27001HIPAACompliance AuditsCompliance DocumentationCISSPCISACISMGRC PlatformsCompliance Automation ToolsProject ManagementClient Relationship ManagementAnalytical Skills

Required

Minimum 4+ years of consulting experience at a cybersecurity and compliance consulting firm
Proven track record as primary point of contact on multiple client engagements
Demonstrated experience owning delivery for multiple clients simultaneously
Extensive experience leading compliance audits end-to-end (SOC 2, ISO 27001, HIPAA, etc.)
Deep domain expertise with 40+ SOC 2 engagements completed
Strong understanding of compliance frameworks, including SOC 2, ISO 27001, HIPAA, NIST, and related standards
Excellent project management skills with the ability to manage multiple concurrent engagements
Outstanding client-facing communication and relationship management skills
Strong analytical and problem-solving abilities
Experience developing compliance documentation, policies, and procedures
Bachelor's degree in Information Security, Computer Science, Business, or related field (or equivalent experience)

Preferred

Professional certifications such as CISSP, CISA, CISM, or similar
Experience with GRC platforms and compliance automation tools (Vanta, Drata, etc)
Background working with startup or high-growth technology companies
Experience with additional frameworks such as FedRAMP, PCI-DSS, or GDPR
Previous experience at a Big Four firm or top-tier cybersecurity consultancy
Strong technical background in information security and cloud infrastructure

Benefits

Annual bonus
Benefits

Company

Agency Cybersecurity

twittertwittertwitter
company-logo
Agency provides enterprise-level cybersecurity for individuals & growing companies.
dateFounded in 2020
location
New York, New York, USA
people-size11-50 employees
web-link
https://achilleion.com

Funding

Current Stage
Early Stage
Company data provided by crunchbase