Ekata provides global identity verification via enterprise-grade APIs and a SaaS solution. Our product suite is powered by Ekata Identity Engine, the first and only cross-border identity engine of its kind. It uses complex machine learning algorithms across the five consumer attributes of email, phone, name, physical address, and IP to derive unique data links and features from billions of real-time transactions within our customer network and the globally sourced data of our graph. Businesses around the world including Alipay, Stripe, Airbnb, and Microsoft leverage our solutions to approve more good transactions, reduce friction, and find fraud.

The Security team is a growing cornerstone of the Ekata mission. A small group with a wide-ranging charter, members of the Security team work cross-functionally with all other parts of the organization. From Customer Data Protection and Engineering Best Practices to IT Security and Organizational Governance, team members are expected to leverage their expertise to continuously improve our high standards for Information Security. Codified as a company Operating Imperative, “Elevate Security and Privacy at Every Turn”, the need for good security practices is coded in the DNA of all Ekata employees. Individuals who enjoy tackling challenges across a variety of disciplines will find success in the Ekata Security team.

The GRC Manager will lead governance efforts in support of risk and compliance activities, involving internal policy set maintenance, training, communications, GRC tooling implementation, inform internal stakeholders of their governance requirements, and assist in customer requests for compliance and security information. You should be experienced in developing/maintaining policies, procedures, and training programs in support of audits mapped to several Information Security related frameworks (i.e. ISO27001 and SOC2). In addition, experience in process and product development in a Cloud environment is preferred.

As a GRC Manager, you will:

• Supervise the Ekata Information Security GRC team and own execution of the GRC mission at Ekata
• Interface with Ekata product managers to drive compliance requirements
• Lead engagements with external auditors, including SOC 2 Type 2, PCI, and future ISO 27001.
• Develop and deliver Security Compliance Training
• Develop and document policies and procedures, as needed
• Manage Security Risk Management activities, including the assessment, tracking, and mitigation of risks.
• Create and manage GRC tooling roadmap, ensure timely and efficient delivery in line with end user requirements
• Own and respond to customer compliance and security information requests as they relate to Information Security controls
• Develop metrics to measure the GRC Program
• Define roadmaps and necessary capabilities for future GRC needs

Our ideal GRC Manager will have:

• Hands-on experience working with policy, process, and product development in a Cloud environment.
• Solid understanding of Information Security Controls; experience with GRC, audit, or consulting is beneficial
• Previous experience with SOC 2 is a must. Experience/Familiarity with ISO27001 or other frameworks is preferred.
• The ability to work in a fast-paced tech environment, managing multiple large scale projects simultaneously
• Ability to communicate clearly to various levels of management (including executive management), and ability to present and train workforce on GRC related topics.
• Minimum 5 years experience of performing or leading GRC activities or programs to support compliance efforts
• Bachelor's degree or higher
• A good understanding of the audit process, methodology, standards, and terminology
• A good understanding of Cloud Environments, Linux, and Windows systems
• CISSP, CISM, CRISC, ISO27001 Lead Auditor or Implementor certifications welcome but not required
• An entrepreneurial spirit - you enjoy challenges across a broad range of disciplines
• Experience interfacing with technical and non-technical persons on Compliance and Security topics

This position is located at our headquarters in Seattle, WA.

Unwavering in our pursuit of standardizing global identity data, we are approachable, real people that genuinely care about the success of those we partner with. With a commitment to service, innovation, and ownership, Ekata is a dynamic place to work for folks who want to make an impact on a global scale. We provide learning & development opportunities for each employee and promote work-life flexibility through self-managed time off. Headquartered in downtown Seattle, Ekata is growing internationally with offices in Budapest, Amsterdam, and Singapore.

To learn more about the experience of working at Ekata, visit: https://ekata.com/careers/.

Ekata prides itself on celebrating diversity, inclusivity, and being an equal-opportunity employer.