Plus
Π’ΠΊΠ»ΡŽΡ‡ΠΈΡ‚ΡŒ Plus
Назад
Company hidden
9 Π΄Π½Π΅ΠΉ Π½Π°Π·Π°Π΄

Cybersecurity Manager (GRC)

130Β 000 - 175Β 000$
Π’ΠΈΠΏ Ρ€Π°Π±ΠΎΡ‚Ρ‹
fulltime
Π“Ρ€Π΅ΠΉΠ΄
lead
Английский
b2
Π‘Ρ‚Ρ€Π°Π½Π°
US
Вакансия ΠΈΠ· списка Hirify.GlobalВакансия ΠΈΠ· Hirify Global, списка ΠΌΠ΅ΠΆΠ΄ΡƒΠ½Π°Ρ€ΠΎΠ΄Π½Ρ‹Ρ… tech-ΠΊΠΎΠΌΠΏΠ°Π½ΠΈΠΉ
Для мэтча ΠΈ ΠΎΡ‚ΠΊΠ»ΠΈΠΊΠ° Π½ΡƒΠΆΠ΅Π½ Plus

ΠœΡΡ‚Ρ‡ & Π‘ΠΎΠΏΡ€ΠΎΠ²ΠΎΠ΄

Для мэтча с этой вакансиСй Π½ΡƒΠΆΠ΅Π½ Plus

ОписаниС вакансии

ВСкст:
/

TL;DR

Cybersecurity Manager (GRC): Leading governance, risk, and compliance operations for a multi-brand wellness platform with an accent on third-party risk management and compliance program portfolios. Focus on scaling compliance automation, harmonizing controls across acquired entities, and coordinating external audits for SOC 1 and ISO 27001.

Location: Must be based in the United States

Salary: $130,000 - $175,000

Company

hirify.global builds the definitive platform for intentional living, connecting people with fitness and wellness experiences via brands like Mindbody and ClassPass.

What you will do

  • Manage and coach a team of 3-5 GRC analysts and program managers, setting quarterly OKRs and guiding technical depth.
  • Oversee the end-to-end third-party risk management (TPRM) workflow, including intake, risk tiering, and ongoing monitoring.
  • Drive compliance programs across SOC 1 Type II, ISO 27001, HITRUST, NIST CSF/800-53, and IT SOX.
  • Serve as the primary point of contact for external auditors, managing timelines and remediation of findings.
  • Advance the compliance automation platform, designing evidence flow and automating high-volume collection.
  • Partner with Legal, Security Engineering, and Finance to integrate compliance and risk assessments into product decisions.

Requirements

  • 7+ years of progressive experience in Information Security GRC, Compliance, or Audit.
  • At least 2 years of direct people management experience.
  • Hands-on ownership of SOC 1 Type II (required) and depth in at least two of ISO 27001, HITRUST, NIST, or IT SOX.
  • Proven experience managing TPRM workflows at scale.
  • Experience with compliance automation platforms such as Drata, Vanta, Hyperproof, or Secureframe.
  • Must be based in the United States.

Nice to have

  • Experience integrating acquired companies into existing compliance programs.
  • Background in multi-brand or SaaS/consumer-marketplace environments.
  • Certifications such as CISA, CIPP/US, CIPP/E, or ISO 27001 Lead Implementer/Auditor.
  • Technical literacy in detection or security engineering to partner on control design.

Culture & Benefits

  • Competitive, fair, and transparent compensation packages.
  • Eligibility for performance bonuses and comprehensive benefits.
  • High autonomy and the opportunity to shape a growing GRC function.
  • Environment focused on real-world connections and intentional living.

Π‘ΡƒΠ΄ΡŒΡ‚Π΅ остороТны: Ссли Ρ€Π°Π±ΠΎΡ‚ΠΎΠ΄Π°Ρ‚Π΅Π»ΡŒ просит Π²ΠΎΠΉΡ‚ΠΈ Π² ΠΈΡ… систСму, ΠΈΡΠΏΠΎΠ»ΡŒΠ·ΡƒΡ iCloud/Google, ΠΏΡ€ΠΈΡΠ»Π°Ρ‚ΡŒ ΠΊΠΎΠ΄/ΠΏΠ°Ρ€ΠΎΠ»ΡŒ, Π·Π°ΠΏΡƒΡΡ‚ΠΈΡ‚ΡŒ ΠΊΠΎΠ΄/ПО, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡ‚Π΅ этого - это мошСнники. ΠžΠ±ΡΠ·Π°Ρ‚Π΅Π»ΡŒΠ½ΠΎ ΠΆΠΌΠΈΡ‚Π΅ "ΠŸΠΎΠΆΠ°Π»ΠΎΠ²Π°Ρ‚ΡŒΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡˆΠΈΡ‚Π΅ Π² ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΡƒ. ΠŸΠΎΠ΄Ρ€ΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β†’