Program Manager GRC (Governance, risk, and compliance)
Compensation
$120K - 160K a year
Responsibilities
Lead and manage enterprise GRC programs including risk assessments, control implementation, compliance initiatives, and governance structures while collaborating with leadership and stakeholders.
Requirements
10+ years in IT or cybersecurity with 5+ years in program/project management and deep knowledge of cybersecurity frameworks, risk methodologies, and compliance standards.
Full Description
Dice is the leading career destination for tech experts at every stage of their careers. Our client, ConfigUSA, is seeking the following. Apply via Dice today! Program Manager GRC Required Skills Experience: 10 years of experience in IT or cybersecurity, with 5 years in program or project management. The Program Manager GRC is responsible for leading enterprise-level governance, risk, and compliance initiatives to ensure the organization maintains a strong security and regulatory posture. This role drives strategic programs across IT risk management, policy governance, regulatory compliance, audit management, and control assurance. Role Description: Program Management Governance Lead and manage enterprise GRC programs including risk assessments, control implementation, and compliance initiatives. Define program scope, deliverables, success criteria, and performance metrics aligned with organizational goals. Establish governance structures, steering committees, and regular reporting to leadership and stakeholders. Develop project plans and roadmaps for risk and compliance tool deployments (e.g., Archer, ServiceNow GRC Essential Skills: The Program Manager GRC is responsible for leading enterprise-level governance, risk, and compliance initiatives to ensure the organization maintains a strong security and regulatory posture. This role drives strategic programs across IT risk management, policy governance, regulatory compliance, audit management, and control assurance. The ideal candidate combines strong program management expertise with a deep understanding of cybersecurity frameworks, risk methodologies, and compliance standards such as NIST, ISO 27001, SOC 2, SOX, and GDPR. You will collaborate closely with CISO, risk owners, business units, and auditors to implement effective GRC practices that enable proactive risk management and informed decision-making. Key Responsibilities: Lead and manage enterprise GRC programs including risk assessments, control implementation, and compliance initiatives. Define program scope, deliverables, success criteria, and performance metrics aligned with organizational goals. Establish governance structures, steering committees, and regular reporting to leadership and stakeholders. Develop project plans and roadmaps for risk and compliance tool deployments (e.g., Archer, ServiceNow GRC
This job posting was last updated on 10/23/2025
Ready to have AI work for you in your job search?
Sign-up for free and start using JobLogr today!
Get Started »
