Governance, Risk and Compliance (GRC) Manager

About The Position

Requirements

• Bachelor’s degree or equivalent military experience.
• Minimum of 10 years of experience in Cybersecurity, Technology, Risk Management, or External Audit.
• 5+ years of experience planning and leading IT audits and risk assessments.
• 4+ years of project or process management experience.
• Demonstrated ability to speak to CMMC standards, controls, and compliance processes.
• Hands-on experience developing and maintaining POA&Ms.
• Ability to travel up to 10%.
• Active Secret clearance or the ability to obtain one.

Nice To Haves

• 8+ years of experience performing information security or technology risk assessments, including NIST-based assessments.
• Active cybersecurity, risk, or project management certifications such as CISSP, CISM, CISA, CRISC, or related credentials.
• Excellent verbal and written communication skills with the ability to engage effectively at all organizational levels.
• Strong problem-solving, analytical, and critical-thinking skills with the ability to manage shifting priorities.

Responsibilities

• Lead and manage enterprise GRC programs aligned with NIST 800-171 Rev. 2, CMMC, and NIST CSF requirements.
• Expand and mature compliance capabilities to support growth in the defense and aerospace market.
• Design, document, and refine foundational GRC elements including processes, risk frameworks, and control frameworks.
• Conduct stakeholder interviews, facilitated workshops, and documentation reviews to assess and improve GRC maturity.
• Develop, implement, and maintain security policies, procedures, and standard operating procedures (SOPs).
• Develop, maintain, and track Plans of Action and Milestones (POA&Ms).
• Demonstrate expertise in access control, including role-based access control (RBAC) and permission inheritance.
• Identify external data sources and design integration strategies between GRC platforms and third-party systems.
• Evaluate on-premises and cloud-based architectures, assessing impacts to sustainability, performance, and scalability.
• Support the evaluation, documentation, testing, and implementation of ERP systems and enterprise applications.
• Prepare for and support internal and external audits, assessments, and regulatory reviews.

Benefits

• Medical (FSA + HSA), Dental, and Vision
• Immediate 401K Vesting/Matching
• Career Opportunity and Growth
• Tuition Reimbursement
• Student Loan Repayment
• Generous PTO and 11 paid Holidays per year (9 regular and 2 floating)
• 8 weeks of 100% Paid Family Leave
• Profit Sharing Plan applies to all non-Annual Incentive Plan and non-Sales Incentive Plan employees.