SIGN IN
GRC (Governance, Risk & Compliance) InfoSec Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Bottomline · 12 hours ago

GRC (Governance, Risk & Compliance) InfoSec Manager

positionPortsmouth, NH
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
date8+ years exp
Bottomline is a global leader in business payments and cash management, seeking a GRC (Governance, Risk & Compliance) InfoSec Manager to strengthen their information security posture. The role involves developing and implementing security policies, managing risks, ensuring compliance with regulations, and providing client support regarding information security.
SaaSSoftwareSoftware Engineering
badNo H1Bnote

Responsibilities

Governance – work with key stakeholders to develop, implement and enhance the information security policies, standards, and processes in alignment with regulatory requirements and security frameworks (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Execute governance routines and reporting to ensure compliance with required policies and standards
Risk Management – build and maintain a control library for enterprise-wide controls and product specific controls. Maintain the risk register (issues and risk acceptances) to ensure effective tracking, prioritization, and reporting of risks. Process risk acceptances to ensure they are appropriately rated with sufficient mitigating controls
Compliance – Coordinate assessments to ensure compliance with applicable regulations and industry requirements (e.g., SWIFT, NACHA, PCI, NIST, GLBA)
Client Support - Gather, assess, and present the information security posture to customer (i.e., completion of request for information, contract language reviews, completion of due diligence questionnaires etc.)
Education and Awareness – develop and deliver information security awareness and training

Qualification

CybersecurityRisk ManagementGovernanceRegulatory ComplianceCyber certificationsPeople ManagementInformation Security Awareness

Required

8+ years of experience in Cybersecurity and Risk Management
6 + years of experience in managing people
Bachelor's degree or related experience
In depth knowledge of regulations and industry requirements (e.g., SWIFT, NACHA, PCI, NIST, GLBA)
Candidates for this position must be authorized to work in the United States on a full-time basis for any employer without restriction
Visa sponsorship will not be provided for this position

Preferred

Cyber certifications (e.g., CISSP, CISA) or equivalent

Benefits

Competitive salary and benefits package.
Opportunities for professional growth and advancement.
A collaborative and innovative work environment.
Flexible working arrangements.

Company

Bottomline

twittertwitter
Glassdoor3.4
company-logo
At Bottomline, we help businesses pay and get paid.
dateFounded in 1995
location
Singapore, Central Region, SGP
people-size1001-5000 employees
web-link
https://www.bottomline.com/decilliongroup

Funding

Current Stage
Late Stage
Total Funding
unknown
2017-08-14Acquired

Leadership Team

leader-logo
Bryan Thomason
Vice President Human Resources, Business Partnerships
linkedin
leader-logo
Jennifer Maddie, MA, ACC
VP, HR Business Partner
linkedin
Company data provided by crunchbase