Security Governance, Risk, and Compliance Program Manager V
Security Governance, Risk, and Compliance (GRC) Program Manager
Contract Duration: 6 months (W2)
Work Arrangement: Remote
Location: Menlo Park, CA
Role Overview
We are seeking a Senior Security Governance, Risk, and Compliance (GRC) Program Manager to support a large, highly regulated technology environment. This role is a senior individual contributor position within a centralized Risk organization, providing second?line oversight for security risk management and compliance across multiple business units, products, and regulatory landscapes.
The ideal candidate brings deep cybersecurity and GRC expertise, strong judgment in ambiguous environments, and the ability to influence outcomes across engineering, security, legal, and product teams—without formal authority. This role is not SOX?driven and is instead focused on enterprise security risk, control maturity, and scalable governance.
Key Responsibilities
- Provide second?line security risk and compliance oversight across a complex, global organization.
- Drive security governance and risk initiatives aligned to enterprise security and risk frameworks.
- Assess, mature, and monitor security controls, including opportunities for automation and scalability.
- Partner cross?functionally with Security, Engineering, Product, Legal, and Privacy teams to evaluate and manage security risk.
- Influence decision?making in ambiguous or evolving regulatory environments using a risk?based approach.
- Contribute to unified enterprise GRC programs, ensuring consistency across governance forums and risk domains.
- Communicate security risk posture clearly to senior stakeholders through narratives, artifacts, and governance processes.
- Support compliance with global regulatory and security requirements while enabling the business to move quickly and securely.
Must?Have Qualifications
- Deep knowledge of cybersecurity and GRC standards (e.g., NIST, ISO?aligned frameworks, enterprise security risk models).
- Proven experience building or maturing security controls, including opportunities for automation.
- Strong background in enterprise risk and compliance, particularly outside of SOX?centric environments.
- Ability to operate as a senior individual contributor, driving initiatives with autonomy and accountability.
- Demonstrated success influencing cross?functional partners and senior stakeholders in large, complex organizations.
Nice?to?Have Qualifications
- Experience working within large?scale technology organizations or similarly complex enterprise environments.
- Exposure to regulatory compliance across multiple regions or regulatory bodies.
- Background in program management for security, risk, or compliance initiatives.
- Strong internal networking skills and the ability to act as a trusted security risk advisor.
Ideal Candidate Profile
- Well?rounded cybersecurity professional with strong risk and compliance depth.
- Comfortable navigating ambiguity, scale, and evolving regulatory expectations.
- Risk?based mindset focused on pragmatic security outcomes, not checkbox compliance.
- Experienced in second?line oversight, governance, and security risk advocacy.
#INDPRO
