Manager, Security Governance, Risk, and Compliance at CarGurus careers | Open rolesSearch results | Find available job openings at CarGurus — CareerPair

4h ago

Manager, Security Governance, Risk, and Compliance

Boston, Massachusetts, United States

full-timemanager Hybridautomotive

Tech Stack

Description

You will lead and mature the GRC function, ensuring security is a business enabler. You'll own the Integrated Management System (ISO 27001, SOC 2), drive quantitative risk reporting using FAIR, guide AI governance, and partner with engineering to embed security in cloud environments and CI/CD pipelines.

Requirements

7+ years in Information Security, track record of maturing teams
Deep understanding of AWS security services and Snowflake data governance
Experience with quantitative risk management (FAIR) and CRQM platforms (preferred)
Strong communication: translate technical risk to business value
Leadership: empathy, inclusion, change management, cross-functional collaboration

Responsibilities

Own and mature GRC team, IMS (ISO 27001, 27017, 27018, SOC 2)
Modernize risk reporting with quantitative FAIR principles
Guide AI governance, secure AI/LLM adoption (ISO 42001)
Partner with Product/Engineering on cloud security controls (AWS, GCP, Snowflake)
Provide expert guidance on GDPR and CPRA compliance

CarGurus careers | Open rolesSearch results | Find available job openings at CarGurus

CarGurus is hiring! Help us continue to grow the #1 most-visited automotive platform in the US. Explore our open roles and apply today.

Other jobs at CarGurus careers | Open rolesSearch results | Find available job openings at CarGurus

No other jobs found.

0 views 0 saves 0 applications