×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Manager, InfoSec Governance Risk and Compliance; GRC

Job in New York, New York County, New York, 10261, USA
Listing for: Ivalua
Full Time position
Listed on 2026-01-17
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below
Position: Manager, InfoSec Governance Risk and Compliance (GRC)
Location: New York

Manager, Info Sec Governance Risk and Compliance (GRC) (New York City, New York, United States)

Founded in 2000, Ivalua is a leading global provider of cloud-based procurement solutions.

COMPANY OVERVIEW

At Ivalua we are a global community of exceptional professionals, who believe that digital transformation revolutionizes supply chain sustainability and resiliency to unlock the power of supplier collaboration.

We achieve this through our leading cloud-based spend management platform that empowers hundreds of the world's most admired brands to effectively manage all categories of spend and all suppliers to increase profitability, improve ESG (environmental, social, and corporate governance) performance, lower risk, and improve productivity. Driven by our passions and fueled by our shared ambitions, we empower and challenge each other to create meaningful experiences for our colleagues, customers, partners, and communities.

Learn more at  Follow us on Linked In and Twitter.

THE OPPORTUNITY CONTEXT:

Our Info Sec team is dedicated to building, maintaining, and continuously improving Ivalua’s Information Security program globally. We provide peace of mind and assurance of protection and safety to our customers. In this fast-growing environment, the GRC program is critical to ensuring compliance with industry standards and certifications, managing risks, and supporting business growth.

ROLE:

We are currently looking for an experienced Info Sec Governance Risk and Compliance (GRC) Manager to lead a global team and own the GRC program worldwide. Reporting to the Info Sec leadership, you will manage and develop a high-performing team, drive compliance efforts, and serve as a subject matter expert on security frameworks and standards.

WHAT YOU WILL DO WITH US
  • Lead and own the Governance, Risk, and Compliance (GRC) program globally, managing and developing a high-performing team.
  • Manage and drive compliance efforts and audits for certifications such as FedRAMP, IRAP, ISO 27001, HIPAA, SOC1/SOC2, PCI DSS, and others.
  • Serve as the subject matter expert (SME) on security frameworks and standards including NIST SP 800-53 Rev 5, NIST 800-171, ITAR, FedRAMP, PCI DSS, SOC2, etc., providing guidance to internal stakeholders.
  • Efficiently manage and respond to customer security audit and compliance requests in a timely manner.
  • Maintain continuous compliance and monitoring of security controls to ensure ongoing adherence to standards.
  • Collaborate closely with Sales, Marketing, and Customer Success teams to effectively communicate Ivalua’s security posture to prospects and customers.
  • Review and negotiate information security exhibits and contractual terms in partnership with the legal team.
  • Lead the Security Awareness and Training program to promote a culture of security across the organization.
  • Track, manage, and drive remediation efforts for control deficiencies and gaps identified through internal and external audits.
  • Oversee the Third Party Risk and Vendor Security Assessment program to mitigate supply chain risks.
  • Develop, maintain, and enforce Info Sec policies, standards, and plans.
YOUR PROFILE

If you have the below experience and strengths this role could be for you:

Skills and Experience:
  • At least 7+ years of proven experience leading GRC programs and managing compliance certifications and audits (FedRAMP, ISO 27001, HIPAA, SOC1/SOC2, PCI DSS, IRAP, etc.).
  • At least 3+ years experience as a direct leader, managing a team. The position will be part of an established global team with opportunity to grow the team.
  • Strong knowledge of security frameworks such as NIST SP 800-53, NIST 800-171, ITAR, PCI DSS, SOC2, and FedRAMP.
  • Demonstrated ability to manage and influence stakeholders across multiple departments and time zones.
  • Excellent project management, analytical, and problem-solving skills with keen attention to detail.
  • Strong interpersonal and communication skills, capable of building trust and managing conflicts effectively.
  • Self-motivated with a high degree of initiative and ability to work independently.
  • Ability to handle multiple competing priorities and deadlines efficiently.
  • Bachelor’s degree in related field preferred or…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search