RemoteLeaf Logo
Log in Sign up

Information Security Program Manager - Governance, Risk, & Compliance (GRC)

1 day, 22 hours ago
United States
Full-time
Senior
Program Manager
Cybersecurity
AWS
Apply Now
Upstart

Upstart

Upstart Powered Loans: Personal, Car Refinance & Consolidation Through Upstart, apply online for a fast personal loan, auto refinancing, or debt consolidation. Try our quick rate check today with no impact to your credit! Founded by ex Googlers, Upstar...

Banks
1K-5K
Founded 2012
View All Jobs 60

Description

  • Act as a trusted GRC partner by translating audit, risk, and compliance requirements into practical guidance for teams.
  • Coordinate core assurance activities, including SOX IT and SOC 2 audits, across engineering, IT, and business stakeholders.
  • Manage security due diligence requests from prospective and existing business partners and provide clear, timely responses.
  • Own information security policy management, including drafting, maintaining, reviewing, and driving awareness of policies and standards.
  • Support and execute the third-party risk management program, including vendor assessments, risk tracking, and remediation follow-up.
  • Improve the efficiency and consistency of GRC operations through process improvement and automation.
  • Work closely with technical, operational, and business partners to assess risk and support compliance initiatives.
  • Help embed security practices into day-to-day operations across the organization.
  • Design metrics, KRIs, and reporting for diverse stakeholders.

Requirements

  • 5+ years of experience in information security, GRC, or IT/information security audit.
  • Experience operating GRC programs in a regulated technology or financial services environment.
  • Experience supporting audits, risk assessments, control testing, policy management, or third-party security risk activities.
  • Working knowledge of security and compliance frameworks such as SOC 2, NIST CSF 2.0, NIST SSDF, and NYDFS.
  • Strong written and verbal communication skills with both technical and non-technical audiences.
  • Ability to design metrics, KRIs, and reporting for diverse stakeholders.
  • Experience in cloud-native environments, with AWS preferred.
  • Experience using GRC automation tools.
  • Relevant certifications such as CISSP, CISA, CRISC, or CISM.
  • Scripting or light coding skills to automate workflows and system integrations are a plus.
  • Familiarity with privacy and data protection requirements such as GDPR and CCPA.

Benefits

  • Base salary range of $115,800 to $160,100 USD for the U.S. Remote role.
  • Target bonuses and annual equity compensation.
  • Generous 401(k) plan with Upstart matching $2 for every $1 contributed, up to $15,000 per year.
  • Employee Stock Purchase Plan with discounted stock purchase options for eligible employees.
  • Affordable medical, dental, and vision coverage, with Upstart covering 90% to 100% of premiums depending on the plan.
  • Health Savings Account contributions for eligible plans.
  • Income protection benefits including company-paid life, AD&D, and short- and long-term disability coverage.
  • Paid time off, sick and safe time, and company holidays.
  • Paid family and parental leave, plus family-support benefits through Carrot and Cleo.
  • Employee Assistance Program, financial wellness resources, annual wellness allowance, and annual productivity allowance.
  • Flexible digital-first work model with remote work and regular in-person onsites.
  • Onsite perks including catered lunches and stocked micro-kitchens at office locations.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Stripe

Technical Program Manager, Extensibility Programs

Stripe 5K-10K Diversified Financial Services

Stripe is hiring a product-focused Technical Program Manager to lead its Extensibility platform across Scripts, Custom Objects, and Workflows within the Developer Experience & Product Platform organization.

United States Full-time Senior Program Manager
TypeScript
1 day, 5 hours ago
Samsara

Senior Program Manager, Sales Programs – AI

Samsara 1K-5K IT Services

Samsara is hiring a Senior Program Manager to lead critical AI programs within its Sales Programs AI team, partnering across engineering, sales, operations, and legal to turn prototypes into scalable internal and customer-facing solutions.

United States Full-time Senior Program Manager
$102k-$154k
Agile Databricks Generative AI GPT LLM Machine Learning NetSuite Python Salesforce Scrum
1 day, 6 hours ago
Nice Côte d'Azur

Marketing Event Manager

Nice Côte d'Azur Hotels, Restaurants & Leisure

NiCE is hiring a Marketing Manager to lead B2B event marketing and field marketing execution for global conferences, executive experiences, webinars, and integrated campaigns that drive pipeline.

United States Full-time Junior Marketing Manager Program Manager
Email Marketing Monday.com Salesforce Social Media Marketing
1 day, 6 hours ago
Toast

Principal Design Operations Program Manager, AI

Toast 1K-5K Hotels, Restaurants & Leisure

Toast is hiring a Principal Design Operations Program Manager to lead AI-enabled ways of working for its distributed design organization and build the systems that make AI-native design practice durable at scale.

United States Full-time Lead Design Lead Program Manager
$149k-$304k
Prototyping
1 day, 6 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers