Governance, Risk & Compliance Manager (East Coast)

SUMMARY  

We’re looking for a Governance, Risk, and Compliance Manager (East Coast) to own our Risk Management function and join us in spreading the power of Wiz. In this role, you will report to the Head of Governance, Risk, and Compliance and work alongside a team of Wizards that focus on understanding the business needs of our customers, establish GRC best practices, and continue to enhance Security processes. Please note, this will be an individual contributor position. 

Please note: We are focused on candidates located in Denver, New York, Dallas, Austin, or Washington D.C., but support both remote or hybrid models in these locations. 

WHAT YOU’LL DO 

• Develop and implement a comprehensive risk management framework tailored to the unique requirements of cloud security and Wiz
• Conduct risk assessments to identify and prioritize potential threats, vulnerabilities, and impacts on Wiz.
• Collaborate with cross-functional teams, including IT, Legal, Product, Engineering, etc., to assess risks and develop mitigation strategies. 
• Coordinate with Internal Audit to facilitate risk assessments and audits as needed.
• Continuously improve standards, processes, tools, and procedures for risk and audit management.
• Drive industry best Security standards throughout Wiz.
• Centralize compliance data (evidence, processes, policies, etc.) to help compliance teams improve their audit response time and create consistent responses across the team.
• Promote a culture of Security and compliance throughout the organization to maintain simplicity and scale.
• Assist in maintaining the documentation, prioritization, and tracking of items such as the risk register, identified vulnerabilities, exceptions, and major security improvements to Wiz’s Security Program.

WHAT YOU’LL BRING 

• Proven experience with Governance, Risk, and Compliance background including 5 years of experience in a GRC function.
• In-depth knowledge of risk management frameworks, methodologies, and best practices, such as NIST Cybersecurity Framework and COSO ERM.
• Passion for security and keeping Wiz safe. 
• Must have the ability to collaborate with technical and non-technical teams alike to further oversight responsibilities of Security. 
• Experience in security and compliance frameworks such as NIST, ISO 27001, SOC2, GDPR, etc. 
• Familiarity with cloud computing technologies (e.g. AWS, Azure, Google Cloud) and SaaS applications, including associated risks and security controls
• Experience in designing impactful enablement programs to set partner functions up for success. 
• The ability to work in a fast-paced tech environment, managing multiple large-scale projects simultaneously. 
• Ability to scale processes without hindering partner functions.

#LI-Remote