Lead Manager, Security Governance, Risk & Compliance

About the Role: Make-A-Wish is the world's largest wish-granting organization. You will work with a growing Information Technology Security team to support the organization's Governance, Risk, and Compliance (GRC) efforts, assisting in maintaining policies, assessing risks, and ensuring compliance with regulatory requirements.

What You'll Do

• Assist in the development, implementation, and maintenance of GRC frameworks and manage third-party risk.
• Maintain internal policies, standards, and security baselines oriented toward compliance and regulatory standards.
• Participate in audits of security controls and assist with BCP, BIA, and Disaster Recovery documentation.
• Perform vendor and product risk assessments and conduct due diligence on potential third-party vendors.
• Maintain GRC monitoring applications and aid in the development of risk training programs.

What You Bring

• Bachelor's degree in Computer Science or a related technology field.
• 5+ years of total experience with 2+ years of hands-on experience designing and supporting enterprise GRC and TPRM solutions.
• Understanding of GRC concepts and frameworks (e.g., ISO 27001, NIST, SOC, GDPR).
• Experience in IT Compliance, IT Audit, IT Security, Cloud Security, and Risk Management.
• Bonus: Certifications like CGRC, CRISC, CISA, or GRCP, and knowledge of OneTrust tools.

Benefits

• Salary Range: $76,300 - $92,000 USD.
• Comprehensive benefit package effective day 1 (Medical, Vision, Dental, Wellness).
• 401(k) Retirement Savings Plan with 5% match after one year of service.
• Up to 15 PTO days, 11 Paid Holidays, and Parental Leave.
• Fully remote work flexibility within the continental U.S.