GRC (Governance, Risk and Compliance) Senior Associate

Full Time
Charlotte, NC, USA
6 months ago

This role is not open to visa sponsorship or transfer of visa sponsorship including those on OPT and STEM-EXT OPT, nor is it available to work corp-to-corp.

As a GRC Senior Associate, you will work to ensure compliance with US and International laws, rules, standards, and contractual obligations. You will work closely with our business, legal, security, and technology teams to identify, measure, and report on technology risk. You should be passionate about security and the myriad of security standards and guidelines that large successful companies follow. You will have latitude to make decisions, recommendations, and collaborate with a broad group of bright and energetic people throughout the company. This position will report to our Fort Mill, SC campus four days per week. 

What You'll Do:

  • Ensure compliance with security policies and standards, including regulatory, legal and contractual requirements, by providing ongoing support to tech teams and the business on the assessment of key security controls.
  • Own end-to-end audit process, including engagement with auditors, analysis of evidence, and facilitation of interviews to achieve intended results to achieve key business certifications.
  • Oversee the remediation of security assessment findings and recommendations to ensure timely reduction of intolerable risks.
  • Assess information security controls across multiple business processes and/or locations, ensuring implementation techniques meet the intent of organizational compliance frameworks and security requirements.
  • Lead multiple security GRC initiatives as needed, including the review of the company's security program, policies and standards, implementation of security awareness programs, and reporting of key metrics.
  • Identify, assess, measure, and monitor technology risk by performing hands-on, data-focused risk assessments, actively participating in all aspects of the risk management process.
  • Identify opportunities and drive implementation for automation and integration of GRC programs, develop requirements, and recommend solutions or products to meet the need.

What We're Looking For:

  • Hands-on experience performing security compliance assessments in a cloud-first environment, with specific knowledge of multiple industry frameworks including PCI-DSS, ISO 27001, and SOC 2.
  • Excellent written and verbal communication skills; must be able to enhance documented security requirements, raise awareness of those requirements through multiple communication channels, and interface with all levels of the organization.
  • Self-starter with the ability to manage multiple tasks and responsibilities, work collaboratively, achieve established goals, and communicate progress in a timely and meaningful manner.
  • Experience identifying failures or inefficiencies in processes, conflicting business practices and integration issues, and providing alternative solutions.
  • Possess understanding of controls pertaining to cloud security and computing, system development lifecycle, and privacy (such as GDPR and CCPA).

Compensation

  • Cash Compensation Range: $90,000-120,000* *Note actual salary is based on qualifications, and experience. 

Additionally, the following benefits are provided by Red Ventures, subject to eligibility requirements.

  • Health Insurance Coverage (medical, dental, and vision)
  • Life Insurance
  • Short and Long-Term Disability Insurance
  • Flexible Spending Accounts
  • Paid Time Off
  • Holiday Pay
  • 401(k) with match
  • Employee Assistance Program
  • Paid Parental Bonding Benefit Program

Who We Are

Founded in 2000, Red Ventures (RV) is home to a diverse portfolio of industry-leading brands and businesses, strategic partnerships and proprietary technology – including Bankrate, Lonely Planet, CNET, The Points Guy, BestColleges and more. Together, RV helps millions of people worldwide make life’s most important decisions, accelerates digital adaptation, and innovates the online consumer experience by improving every step of the consumer journey – from first discovery of information, throughout the decision-making process, to transactions. Headquartered south of Charlotte, NC, Red Ventures employs thousands of people across the US and Puerto Rico, with international offices in the UK and Brazil. For more information, visit https://redventures.com and follow @RedVentures on social platforms. 

We offer competitive salaries and a comprehensive benefits program for full-time employees, including medical, dental and vision coverage, paid time off, life insurance, disability coverage, employee assistance program, 401(k) plan and a paid parental leave program.

Red Ventures is an equal opportunity employer that does not discriminate against any employee or applicant because of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or any other basis protected by law. Employment at Red Ventures is based solely on a person's merit and qualifications. 

We are committed to providing equal employment opportunities to qualified individuals with disabilities. This includes providing reasonable accommodation where appropriate. Should you require a reasonable accommodation to apply or participate in the job application or interview process, please contact accommodation@redventures.com. 

If you are based in California, we encourage you to read this important information for California residents linked here.

Click here for more details regarding the employee privacy policy: https://www.redventures.com/legal/us-emp-privacy-notice

Questions about this Privacy Notice can be directed to employeerights@redventures.com. Alternatively, you may raise any questions or concerns to your manager, HR Business Partner, or through the Privacy Team.