dbt Labs

Associate Manager, Security Compliance (GRC)

United States

Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Data & Analytics, Software Development, Cloud ComputingIndustries

Requirements

The Associate Manager of Security Compliance (GRC) should have experience in developing, implementing, and maintaining GRC frameworks, conducting risk assessments, compliance audits, and customer trust activities. A strategic mindset and practical experience in navigating complex customer regulatory environments are essential. Experience with GRC tooling, including third-party platforms and custom-built solutions, is required. Familiarity with embedding GRC controls in the software development lifecycle and aligning the GRC technology stack with enterprise architecture standards, data governance policies, and security best practices is necessary. Experience in producing documentation and answering customer questions efficiently to drive sales cycles is also required.

Responsibilities

The Associate Manager of Security Compliance (GRC) will contribute to the strategy, roadmap, and lifecycle management of GRC tooling. They will partner with teams to embed GRC controls early in the software development lifecycle and identify opportunities for automating risk and compliance activities. This role involves setting performance expectations, providing coaching, and fostering a culture of innovation. Responsibilities include driving sales cycles by producing documentation and answering customer questions, owning and maintaining continuous monitoring activities, reviewing control language and policy updates, and implementing key controls. The role also includes developing, maintaining, and tracking remediation of items on the risk register, documenting and following up on security-related findings, and coordinating external audits and evidence collection for frameworks like SOC2, ISO27001, and ISO27701. Assisting with customer assurance activities is also part of the role.

Skills

Security Compliance
GRC
Risk Management
Data Security
Software Development Security
Security Guidance
Pragmatic Risk Decisions

dbt Labs

Cloud-based data management platform for analytics

About dbt Labs

GetDBT.com is a cloud-based data management platform that helps companies streamline their data development processes. It allows users to write business logic more efficiently, enhances code reusability, and ensures data quality through testing and governance features. Unlike its competitors, GetDBT.com focuses on scalability and complexity, making it suitable for businesses at various stages of data maturity. The company's goal is to empower organizations to manage their data effectively while providing reliable service through a subscription model.

Philadelphia, PennsylvaniaHeadquarters
2016Year Founded
$403.1MTotal Funding
SERIES_DCompany Stage
Data & Analytics, Enterprise SoftwareIndustries
501-1,000Employees

Benefits

Unlimited Paid Time Off
401(k) Company Match
401(k) Retirement Plan
Health Insurance
Paid Parental Leave
Wellness Program
Home Office Stipend

Risks

Increased competition from Fivetran's integration may lead to customer attrition.
Dbt Mesh's complexity could cause integration challenges for existing users.
New executive appointments may lead to strategic shifts misaligned with customer expectations.

Differentiation

Dbt Labs offers a unique open-source analytics engineering tool for data transformation workflows.
The platform supports SQL-based data modeling, appealing to data analysts and engineers.
Dbt Mesh architecture allows cross-project model referencing, enhancing scalability for complex data needs.

Upsides

Collaboration with Fivetran enhances platform capabilities, attracting more enterprise clients.
Mark Porter's appointment as CTO could drive technological advancements and innovation.
Recent dbt Cloud enhancements improve collaboration, appealing to large teams and enterprises.

Land your dream remote job 3x faster with AI