GRC Expert

Posted 20 Days Ago
Hiring Remotely in US
Remote
Expert/Leader
Information Technology • Security • Software • Cybersecurity
The Role
The GRC Expert at ZenGRC will provide strategic guidance on compliance and risk management, advising customers on GRC best practices, implementation, and program design. They will collaborate with various internal teams, create content, and support subscription growth through customer engagement and feedback.
Summary Generated by Built In

About ZenGRC!

Founded in 2009, ZenGRC is a leading governance, risk, and compliance (GRC) SaaS solution provider, offering two robust products: ZenGRC and ZenGRC Pro. Recognized for its in-house GRC expertise, ZenGRC delivers Simply Powerful GRC solutions that guide organizations through compliance with ease and efficiency.

ZenGRC stands out by offering a single price for comprehensive access to all modules and frameworks, ensuring users benefit from a seamless and cost-effective experience. Dedicated to simplifying GRC processes, ZenGRC continues to innovate and support organizations in achieving compliance and managing risk effectively.

Our Commitment to Pay Transparency

At ZenGRC, we are committed to transparent & equitable compensation practices across our entire organization. This is a critical component of our hiring process and as such, compensation for this role will be discussed during your first interview to ensure a fair interviewing experience and effective use of your time. No questions related to compensation are off-limits as we believe complete transparency leads to an enjoyable hiring experience for all involved. 

Job Description

Are you an expert in compliance, risk management, InfoSec, or auditing and have you wanted to shape the future of GRC? Now’s your chance! We are looking for a GRC Expert to join our team at ZenGRC. Our GRC Experts are a thoughtful and professional presence on customer-facing calls, and they give customers strategic and tactical guidance to achieve desired outcomes through ZenGRC. Behind the scenes, GRC Experts collaborate with internal ZenGRC teams by providing insightful product ideas and feedback and creating strategic and engaging content. Our GRC Experts know “how to GRC” and enjoy helping customers and other ZenGCR teams to do the same.

What you will get to do:

  • Advise customers on GRC strategies and best practices to help them with the best program design and rollout to meet their business goals.
  • Advise customers on ZenGRC implementation and improvement strategies to achieve business goals.
  • Identify and develop new opportunities for expansion across a customer’s business to support subscription growth.
  • Assist internal ZenGRC teams including Customer Success, Product, Sales, etc. as requested with thought leadership, prescriptive guidance, product demonstrations, product reviews, and product feature development.
  • Create and maintain ZenGRC best practices, example data sets, and other written collateral and content.
  • Collaborate with the GRC Expert team to identify potential frameworks to support and create/maintain related ZenGRC content.
  • Provide product feedback, improvement ideas, and review of proposed features and product offerings.
  • Scope and deliver paid services engagements as assigned.
  • Evaluate and measure impact of use of ZenGRC and related GRC processes on customer’s business.

What we're looking for:

  • 10+ years experience in GRC-related fields including but not limited to information security, compliance, risk management, third-party risk management, auditing and assurance, and data privacy.
  • Passion for delivering customer delight with the demonstrated ability to drive execution.
  • Experience building/supporting customer relationships at the executive/CISO level.
  • Cross-functional experience working across teams like customer success, sales, product, and marketing.
  • Experience consulting, training, and leading new initiatives in a collaborative or cross-functional environment.
  • Ability to build effective project plans and manage against milestones with customers.
  • Demonstrated experience building programs, processes, and tools.
  • Effective written and verbal communication, including presentation development.

BONUS:

  • Significant experience with our solution ZenGRC.
  • Experience with software implementation.
  • Experience implementing, managing, or enabling customers with compliance frameworks such as SOC2, PCI, SOX, GDPR, CCPA ISO 27001/2, FedRAMP, NIST 800-53, etc.
  • Experience implementing, managing, or enabling customers with Enterprise Risk Management, Cybersecurity Risk, or Third-Party Risk Management.
  • Experience working with GRC Software as a Service such as MetricStream, LogicGate, Galvanize, OneTrust, Auditboard etc.

#LI-REMOTE

The job looks interesting but you don't know if you meet all of the qualifications on paper?

Apply anyway! We're aware that many people only apply for a job when they've met every requirement listed in a job description. At ZenGRC, we hire the PERSON, not the resume. We value diversity, in experiences and backgrounds, and are committed to providing equal opportunity for all applicants and employees. While there are certain requirements that exist for all open positions, we want to get to know YOU above all else when making our hiring decisions. Go for it.

Benefits (US-Based Employees)

  • We are committed to the health and safety of our people. Our people are mostly working remote, collaborating online and connecting over video, as they continue to deliver high-quality technology solutions
  • Competitive salary and equity (we want everyone to be a stakeholder) 
  • Full benefits (medical, dental, vision, 3% 401k match, wellness offerings, etc.)
  • Unlimited PTO, paid sick days, 11 holidays
  • Collaborating with smart coworkers that put customers first

Equal Employment Opportunity Statement

We value a diverse environment. ZenGRC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, citizenship or immigration status, disability status, genetics, protected veteran, sexual orientation, gender identity or expression, or any characteristic protected by federal, state or local laws.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

The statements herein are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required for personnel so classified.

ZenGRC will comply with all local data protection laws, including GDPR when it comes to the handling and processing of personal data. All resumes submitted to ZenGRC will be retained for 6 months (12 months with your consent) after submission for recruitment purposes. Should you wish for us to remove your personal data from our recruitment database, please email us directly at [email protected].

The Company
San Francisco, California
73 Employees
On-site Workplace
Year Founded: 2009

What We Do

We believe cyber risk management has evolved from an IT problem into a business problem. Because of this shift, security executives must adapt how they communicate risk to the board. But since risk is hard to frame in the context of a business initiative, security executives need help putting risk into business terms that the board can use to make informed, strategic decisions to drive growth.

Additionally, security teams are often seen as the team that says “no”, shutting down projects and initiatives due to risk, which limits growth and results in missed opportunities.

At ZenGRC, we aim to make risk management more strategic, pulling it up from tactical “check-the-box” work to something more valuable to both the company and the security team.

There’s an opportunity for security executives to go beyond just protecting their company and secure their role as a more valuable, strategic member of the team. We can help by giving them the business context they need to report risk to their board in a way that is easy to understand and act upon

Similar Jobs

Iodine Software Logo Iodine Software

CDI Auditor

Artificial Intelligence • Healthtech • Machine Learning • Natural Language Processing • Software
Remote
Hybrid
Austin, TX, USA
250 Employees

BlueConic Logo BlueConic

IT Manager

Big Data • Information Technology • Machine Learning • Marketing Tech • Software • Data Privacy
Easy Apply
Remote
2 Locations
240 Employees
110K-130K Annually

Capital One Logo Capital One

Distinguished Engineer - Network Infrastructure Security (Remote Eligible)

Fintech • Machine Learning • Payments • Software • Financial Services
Remote
Hybrid
Plano, TX, USA
55000 Employees

Capital One Logo Capital One

Distinguished Engineer - Network Infrastructure Security (Remote Eligible)

Fintech • Machine Learning • Payments • Software • Financial Services
Remote
Hybrid
Richmond, VA, USA
55000 Employees

Similar Companies Hiring

bet365 Thumbnail
Software • Gaming • eSports • Digital Media • Automation
Denver, Colorado
6100 Employees
Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Cloud
Chicago, IL
45 Employees
InCommodities Thumbnail
Renewable Energy • Machine Learning • Information Technology • Energy • Automation • Analytics
Austin, TX
234 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account