Senior Program Manager - Governance, Risk, and Compliance
1 week ago
You will be hands-on solving security problems and providing thought leadership and direction for the Information Security program. You will own writing and updating our information security policies, and working with our Compliance, Privacy, Legal and Business teams to make sure these policies are right for Assurance. You will own our application inventory & risk assessments, and third party vendor inventory & risk assessments. You’ll evolve our framework for evaluating application and third party risk, and work with our engineering, data science and business teams to ensure we are have the appropriate security controls in place. Where we have security gaps, you will innovate to define solutions that mitigate the risk without impeding the business. You will also take the lead on many internal and external security audits, such as SOC-2, HIPAA, and PCI-DSS.