Manager, IT Security, Governance, Risk and Compliance jobs in United States
cer-icon
Apply on Employer Site
company-logo

Burlington Stores, Inc. · 2 days ago

Manager, IT Security, Governance, Risk and Compliance

positionBeverly, NJ
timeFull-time
remoteHybrid
seniorityMid, Senior Level
money$115K/yr - $150K/yr
date8+ years exp

Burlington Stores, Inc. is seeking a Manager of Governance, Risk and Compliance (GRC) to play a critical mid-level leadership role within the Information Security function. This role is responsible for translating strategy into operational execution across the GRC program, overseeing analysts, and ensuring consistent delivery of risk, audit, policy, and continuity efforts.

ApparelE-CommerceRetail
check
H1B Sponsor Likelynote

Responsibilities

Lead enterprise-wide cybersecurity risk assessments across business units and IT domains
Own the accuracy and ongoing maintenance of the enterprise risk register, ensuring it is consistently updated and informed by stakeholder input
Collaborate with business and IT leaders to define and apply enterprise risk tolerance thresholds
Translate technical risk findings into actionable, business-relevant recommendations
Identify and escalate systemic risks that could materially impact operations or compliance
Monitor industry trends, threat intelligence, and regulatory changes to adjust risk posture
Deliver clear, timely risk reports and dashboards to senior leadership and governance bodies
Implement structured risk governance processes, including review cycles and escalation protocols
Implement automated GRC tools and data analytics to improve cybersecurity risk management efficiency and accuracy
Develop KPIs and KRIs for the security organization and maintain tactical and strategic dashboards to monitor risk and compliance efforts
Oversee GRC team operations, assigning work, setting priorities, and ensuring effective collaboration
Partner with senior leadership and business stakeholders to align GRC efforts with enterprise goals
Foster a high-performing, collaborative team culture through coaching, accountability, and career development
Lead collaboration with IT and business leaders to identify mission-critical applications and conduct comprehensive BIA, define RTO/RPO, and recovery procedures
Develop dependency mappings for critical systems with application and infrastructure teams
Oversee documentation of recovery procedures, including technical and business continuity procedures
Lead tabletop exercises and failover/failback recovery testing with IT and business users
Identify gaps in the BC/DR program and take ownership of remediation
Ensure business continuity objectives are effectively aligned with IT capabilities to support organizational resilience during disruptions
Contribute to recovery planning efforts and facilitate coordination among IT and business teams to ensure effective response during disruptions
Partner with the procurement and legal teams to integrate cybersecurity function into the overall process, mitigating supply chain risks for the company
Manage third-party risk processes, including assessments and reviews. Continuously identify opportunities for improvement to enhance its effectiveness and efficiency
Escalate high-risk vendor issues to leadership and work with business stakeholders to develop and execute mitigation plans
Oversee monthly reporting on security assessments of AI vendors, provide expert analysis to leadership on AI-related risks and recommend strategic actions to resolve identified issues
Establish and manage a comprehensive set of criteria and assessment questions to support third-party risk management activities
Own vendor incident response governance program and playbooks
Ensure vendors provide formal evidence of incident containment and remediation and ensure compliance with security requirements before closing a third incident
Consolidate third party incident and GRC-owned MSSP results into executive dashboards
Embed incident response obligations into contracts and procurement
Oversee internal/external audit readiness and evidence collection
Ensure compliance with SOX, PCI, and privacy frameworks
Serve as audit liaison for the GRC function
Act as the primary contact for internal audit and take ownership of recreating risk and compliance assessment findings
Manage the policy lifecycle from creation through enforcement
Ensure policies align with frameworks like NIST and PCI DSS
Ensure the organization adheres to all relevant policies and standards
Manage company-wide security training programs
Strategically identify education and awareness needs based on enterprise-wide cybersecurity threats and business priorities
Establish metrics to evaluate the success of training initiatives, including trends in knowledge retention, behavior changes, and overall effectiveness of the security culture
Oversee continuous improvement of the training curriculum, ensuring it evolves to address new threats and compliance requirements

Qualification

GovernanceRiskComplianceCybersecurity Risk ManagementAuditBusiness Continuity PlanningVendor Risk ManagementCybersecurity EducationCISM CertificationCISSP CertificationCISA CertificationTeam LeadershipCross-Functional CollaborationConflict ResolutionEffective Communication

Required

8+ years in security governance, risk, or compliance roles
Demonstrated success in leading cross-functional projects
Deep understanding of controls, audits, and frameworks
Maintain relevant certifications such as CISM, CISSP, or CISA
Communicate effectively with technical and non-technical stakeholders
Resolve conflicts and drive consensus across teams
Provided leadership and oversight for a cybersecurity team of 3+ members
Mentor team members and model professional behavior
Bachelor's degree in Information Systems, Cybersecurity or related field required

Preferred

Master's preferred

Benefits

Medical, dental and vision coverage including life and disability insurance
Paid time off
Paid holidays
401(k) plan
A variety of training and development opportunities

Company

Burlington Stores, Inc.

twittertwittertwitter
Glassdoor3.0
company-logo
Burlington Stores, Inc., headquartered in New Jersey, is a nationally recognized off-price retailer.
dateFounded in 1972
location
Burlington, New Jersey, USA
people-size10001+ employees
web-link
https://www.burlington.com/

H1B Sponsorship

Burlington Stores, Inc. has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (4)
2024 (2)
2023 (7)
2022 (7)
2021 (4)
2020 (4)

Funding

Current Stage
Public Company
Total Funding
unknown
2013-10-07IPO
2006-01-18Acquired

Leadership Team

leader-logo
Travis Marquette
President, Chief Operating Officer
linkedin
leader-logo
Durand Guion
Senior Vice President, Fashion
linkedin

Recent News

Business Insider
UBS says to buy these 10 apparel stocks as US consumers show signs of strength
2025-12-30
San Bernardino Sun
What’s new: Nothing Bundt Cakes opens in Yucaipa, Bowlero switches to Lucky Strike
2025-12-29
Home Textiles Today
Burlington to boost store expansion next year
2025-12-01
Company data provided by crunchbase