GRC Manager

About The Position

Requirements

• Significant experience in GRC & compliance within a high growth, technology startup environment.
• You must be able to demonstrate how you have owned building 0-1 compliance processes and best practices. Ideally you’ll have a blend of experience building 0-1 as well as picking up compliance in flight.
• Deep experience with SOC 2 Type II audits and compliance programs. You've built or significantly improved a compliance program, not just maintained one.
• Strong knowledge of the GRC & compliance technology landscape, with a good understanding of what a best in class GRC technology stack should look like.
• Comfortable being hands on. This is an execution role, from answering questionnaires to writing policies you should be the person who wants to deliver.
• Exceptional communicator.

Responsibilities

• Own compliance at Blacksmith. You will design and implement the Blacksmith policies and controls from scratch.
• Run GRC and compliance operations. You’ll manage SOC 2 compliance & ensure audit readiness. You’ll also ensure GDPR compliance.
• Assess, qualify and implement a GRC technology stack that ensures we maintain best practice.
• Own customer and vendor risk. You’ll be responsible for all customer and prospect compliance questionnaires, reviews and due diligence.
• Ensure that the business stays ahead of evolving regulatory changes & changes in risk assessment as we move further into the enterprise market.
• Educate the leadership team and wider business on GRC best practice and the Blacksmith standards for compliance.
• Potentially lead the preparation for further industry certifications (ISO27001 etc.) in the future.

Benefits

• Medical, Vision, and Dental insurance.
• Competitive base + equity.
• 401K match.
• Unlimited PTO.
• Annual offsite.
• Early-exercise stock options