Description

You will lead the global GRC program, managing a high-performing team and driving compliance with frameworks like FedRAMP, ISO 27001, and HIPAA. You'll serve as a subject matter expert, handle customer audits, and collaborate across teams to strengthen Ivalua's security posture.

Requirements

• 7+ years leading GRC programs and managing compliance certifications
• 3+ years direct leadership experience managing a team
• Strong knowledge of security frameworks (NIST SP 800-53, NIST 800-171, ITAR, PCI DSS, SOC2, FedRAMP)
• Excellent project management, analytical, and problem-solving skills
• Strong interpersonal and communication skills, ability to influence stakeholders

Responsibilities

• Lead GRC program globally, managing and developing a high-performing team
• Drive compliance efforts and audits for FedRAMP, IRAP, ISO 27001, HIPAA, SOC1/SOC2, PCI DSS
• Serve as SME on security frameworks (NIST SP 800-53, NIST 800-171, ITAR, FedRAMP, PCI DSS, SOC2)
• Manage customer security audit requests and maintain continuous compliance monitoring
• Develop and enforce InfoSec policies, standards, and plans