Manager, Governance, Risk & Compliance
About The Position
Plains is an industry-leading transportation and midstream provider specializing in transportation, storage, processing and marketing solutions for crude oil. We own an extensive network of pipeline transportation, terminalling, storage and gathering assets in key oil producing basins and transportation corridors and at major market hubs in the United States and Canada. The company is headquartered in Houston, Texas. We’re on the lookout for passionate self‑starters who thrive in fast‑moving, collaborative, and innovative environments. The Manager, GRC is responsible for overseeing the Governance, Risk, and Compliance (GRC) functions within the organization. This role involves developing and implementing strategies, policies, and standards to ensure that the organization adheres to regulatory requirements and internal audit policies.
Requirements
- A minimum of +6 years of experience in a similar GRC functional leader role.
- Experience should include managing GRC functions, working across teams, and implementing compliance programs.
- A Bachelor's degree in a related field or equivalent experience is required.
- Strong people, analytical and problem-solving skills.
- Excellent communicator and interpersonal skills, and the ability to work effectively with cross-functional teams.
- Open to evolving their skillset as industry regulations change.
- Working knowledge of GRC Platforms (Workiva, Archer, etc.).
- Working knowledge of program/project management/audit Methodologies/Platforms.
- Working knowledge of MTSA/TSA/CER regulatory tracking and pipeline common carrier cyber and risk management regulations.
- Proficiency in GRC and tracking in Microsoft Excel, project management, and GRC software is required.
- Familiarity with the organization's core energy software applications is also important for effectively managing GRC functions.
- Expert Understanding of the following IT/OT cybersecurity regulations and/or risk management frameworks: IEC 62443, NIST CSF 2.0, NIST 800-53, NIST 800-82, NIST 800-37, NIST AI 100-1, MTSA, CER, TSA, VADR, and Coast Guard (preferred).
- Cleared criminal history (background) and satisfactory reference checks.
- Government intelligence clearance or previous experience working in a secure, classified environment(s).
Nice To Haves
- Relevant certifications such as CISA, CRISC, CGEIT, AAIA, and CISSP are highly desirable.
Responsibilities
- The primary function of the GRC Manager is to lead, develop, and implement GRC strategies, policies, and standards managing risks to an acceptable level of organization for IT/OT environments.
- This includes creating frameworks and guidelines that align with the organization's objectives, regulatory standards, and internal audit requirements.
- In addition to managing Third Party Risks.
- The GRC Manager is accountable for leading a team ensuring compliance with regulatory requirements and internal audit policies.
- This involves conducting risk assessments, regular audits, and applying appropriate risk treatment to ensure that the organization remains compliant.
Benefits
- Competitive compensation
- A top-tier benefits program designed to keep our employees safe, healthy and happy.
- Personal and family time
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Manager
