Cybersecurity Risk and Compliance Manager ($75,000 - $345,000)

Employment Type

Full-Time

Location

100% Remote (US)

Job Responsibilities

- Lead the development and execution of the enterprise cybersecurity risk management framework.

- Conduct regular risk assessments, threat modeling, and risk treatment planning across systems, processes, and vendors.

- Identify, assess, and communicate risks to executive leadership and stakeholders with actionable recommendations.

- Track and manage risk remediation efforts and risk register updates.

- Ensure compliance with relevant regulatory and industry frameworks such as NIST CSF, ISO 27001, SOC 2, PCI-DSS, HIPAA, GDPR, CCPA, and others as applicable.

- Manage internal and external audits, including evidence collection, coordination with control owners, and auditor interactions.

- Maintain and continuously improve cybersecurity policies, procedures, and standards.

- Monitor changes in laws and regulations to ensure ongoing compliance.

- Support the development and maintenance of GRC tools and platforms for managing risk, compliance, and audit activities.

- Develop metrics and dashboards for reporting on cybersecurity risk and compliance posture.

- Promote awareness and understanding of risk and compliance requirements across departments.

- Lead the vendor risk management process including security due diligence, risk assessments, and ongoing monitoring.

- Review and assess third-party contracts and security documentation.

Minimum Qualification

- Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, or a related field. A Master’s degree is a plus.

- 5+ years of experience in cybersecurity, with at least 3 years in risk management and compliance roles.

- Strong knowledge of regulatory frameworks and standards (e.g., NIST, ISO, SOC 2, PCI-DSS, HIPAA).

- Experience with GRC platforms (e.g., ServiceNow, Archer, LogicGate, OneTrust).

- Familiarity with cloud environments (e.g., AWS, Azure, GCP) and associated security and compliance requirements.

- Strong analytical, organizational, and communication skills.

- Ability to work independently and manage multiple priorities in a remote setting.

Benefits

- 100% remote work flexibility within the USA

- Competitive salary and performance bonuses

- Comprehensive health, dental, and vision insurance

- 401(k) with company match

- Generous PTO, paid holidays, and parental leave