Governance, Risk, and Compliance Lead
Governance, Risk, and Compliance Lead
Posted on :
27-09-2025
Employer Active
1 Vacancy
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Who We Are:
At Emburse youll not just imagine the future youll build it. As a leader in travel and expense solutions we are creating a future where technology drives business value and inspires extraordinary results.
The security-focused Governance Risk and Compliance (GRC) Lead will lead the efforts for strengthening our security and privacy posture and ensuring adherence to critical regulatory and industry standards. This role will be responsible for building and managing a comprehensive security GRC framework that protects our organization from cyber risks ensures compliance with security regulations and enables business resilience. The ideal candidate has expertise in security governance risk management and compliance with the ability to partner with both technical and business teams.
What you will do :
- Establish and maintain security policies standards and controls aligned with industry frameworks (NIST ISO 27001 PCI SOC 2).
- Develop a metrics and reporting framework to assess the effectiveness of the security framework.
- Organize information security risk assessment process including the reporting and oversight of treatment efforts to address negative findings.
- Assist with compliance audits and projects (SOC 1 SOC 2 ISO 27001 ISO 27701 PCI-DSS Tx-RAMP and other projects).
- Manage privacy program to ensure that it is in compliance with legal and regulatory requirements (GDPR PIPEDA CCPA CPRA).
- Execute Privacy Impact Assessments (PIAs).
- Support in the development and implementation of a continuous controls monitoring program for security compliance and automation of manual processes.
- Monitor regulatory and industry trends to ensure required changes in compliance policies procedures and testing are integrated in a timely manner.
- Assist with enterprise-wide targeted training for employee compliance with regulatory requirements.
- Coordinate security incident response and resiliency activities from a compliance and governance perspective ensuring lessons learned feed back into governance processes.
- Manage Third Party Risk Management oversight for new and existing vendors
What we are looking for :
- Required: Bachelors Degree; Minimum 5 years of technology project/program management.
- Ability to effectively work as part of a cohesive and agile team.
- Ability to manage security audits and frameworks (e.g. PCI ISO SOC 1 SOC2 NIST).
- Ability to manage privacy audits and frameworks (e.g. GDPR CPRA CCPA PIPEDA).
- Ability to remain organized and to elicit cooperation from a wide variety of sources including team members other internal departments and external parties.
- Ability to effectively prioritize and execute tasks in a high-pressure environment and react to project adjustments and alterations promptly and efficiently.
- Ability to exercise good judgment and discretion in confidential matters.
- Demonstrable experience interacting with auditors and strategic partners in cloud-based environments similar to Emburse relating to assurance frameworks such as SOX PCI DSS ISO27001 SOC 2 Trust Principles Business Continuity and Disaster Recovery and Third-Party Risk Management.
- Implemented or maintained Drata (or other GRC tools).
- Certifications: Preferred: CISSP CIPP/EU CIPM Security CISA PMP
Required Skills :
- Excellent analytical skills.
- Self-starter with the ability to work with minimal supervision.
- Experience working on large cross-functional teams representing GRC on initiatives such as change management identity and access management policy management and data retention.
- Strong writing skills and the ability to communicate information about complex issues to stakeholders in a clear and easy to understand way.
- Ability to develop creative and adaptive solutions to unique and complex inquiries.
- Unwavered by a rapid-paced working environment and meeting deadlinesTeam-focused positive attitude and good sense of humor.
Why Emburse
Finance is changingand at Emburse were leading the way. Our AI-powered solutions help organizations eliminate inefficiencies gain real-time visibility and optimize spendso they can focus on whats next not whats slowing them down.
A Company with Momentum We serve 12M users across 120 countries helping businesses modernize
their finance operations.
A Team That Innovates Work alongside some of the brightest minds in finance tech and AI to solve real-
world challenges.
A Culture That Empowers Competitive pay flexible work and an inclusive collaborative environment that
supports your success.
A Career That Matters Your work here drives efficiency innovation and smarter financial decision-making
for businesses everywhere.
Shape your future & find whats next at Emburse.
Emburse provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race color religion sex national origin age disability or addition to federal law requirements Emburse complies with applicable state and local laws governing nondiscrimination in employment in every location where the company has facilities. This policy applies to all terms and conditions of employment.
Employment Type
Full-Time
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
