Governance, Risk, and Compliance Lead at Emburse

Toronto, Ontario, Canada

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level

Full TimeJob Type

UnknownVisa

TechnologyIndustries

Requirements

Bachelor’s Degree
Minimum 5+ years of technology project/program management
Ability to effectively work as part of a cohesive and agile team
Ability to manage security audits and frameworks (e.g., PCI, ISO, SOC 1, SOC2, NIST)
Ability to manage privacy audits and frameworks (e.g., GDPR, CPRA, CCPA, PIPEDA)
Ability to remain organized and elicit cooperation from a wide variety of sources, including team members, other internal departments, and external parties
Ability to effectively prioritize and execute tasks in a high-pressure environment and react to project adjustments promptly and efficiently
Ability to exercise good judgment and discretion in confidential matters
Demonstrable experience interacting with auditors and strategic partners in cloud-based environments, relating to assurance frameworks such as SOX, PCI DSS, ISO27001, SOC 2 Trust Principles, Business Continuity and Disaster Recovery, and Third-Party Risk Management
Implemented or maintained Drata (or other GRC tools)
Excellent analytical skills
Self-starter with the ability to work with minimal supervision
Experience working on large cross-functional teams, representing GRC on initiatives such as change management, identity and access management, policy management, and data retention
Strong writing skills and the ability to communicate complex issues clearly to stakeholders
Ability to develop creative and adaptive solutions to unique and complex inquiries
Unwavered by a rapid-paced working environment and meeting deadlines
Team-focused, positive attitude, and good sense of humor
Preferred Certifications: CISSP, CIPP/EU, CIPM, Security+, CISA, PMP

Responsibilities

Establish and maintain security policies, standards, and controls aligned with industry frameworks (NIST, ISO 27001, PCI, SOC 2)
Develop a metrics and reporting framework to assess the effectiveness of the security framework
Organize information security risk assessment process, including reporting and oversight of treatment efforts to address negative findings
Assist with compliance audits and projects (SOC 1, SOC 2, ISO 27001, ISO 27701, PCI-DSS, Tx-RAMP, and other projects)
Manage privacy program to ensure compliance with legal and regulatory requirements (GDPR, PIPEDA, CCPA, CPRA)
Execute Privacy Impact Assessments (PIAs)
Support development and implementation of a continuous controls monitoring program for security compliance and automation of manual processes
Monitor regulatory and industry trends to integrate required changes in compliance policies, procedures, and testing in a timely manner
Assist with enterprise-wide targeted training for employee compliance with regulatory requirements
Coordinate security incident response and resiliency activities from a compliance and governance perspective, ensuring lessons learned feed back into governance processes
Manage Third Party Risk Management oversight for new and existing vendors

Skills

Key technologies and capabilities for this role

NISTISO 27001PCI DSSSOC 2SOC 1ISO 27701Tx-RAMPGDPRPIPEDACCPACPRAPrivacy Impact AssessmentsRisk AssessmentCompliance AuditsSecurity GovernanceContinuous Controls Monitoring

Questions & Answers

Common questions about this position

What experience is required for the Governance, Risk, and Compliance Lead role?

A Bachelor’s Degree and minimum 5+ years of technology project/program management are required, along with expertise in managing security audits and frameworks like PCI, ISO, SOC 1, SOC 2, NIST, and privacy frameworks like GDPR, CPRA, CCPA, PIPEDA.

What is the salary or compensation for this position?

This information is not specified in the job description.

Is this a remote position or what is the location policy?

This information is not specified in the job description.

What does the team environment look like at Emburse?

The role requires the ability to effectively work as part of a cohesive and agile team.

What makes a strong candidate for this GRC Lead role?

Strong candidates demonstrate the ability to remain organized, elicit cooperation from diverse sources, prioritize tasks in high-pressure environments, exercise good judgment in confidential matters, and have experience interacting with auditors and strategic partners in cloud-based environments.

Emburse

Automates accounts payable and expense management

About Emburse

Emburse automates accounts payable processes and expense management for businesses. Its software solutions help organizations manage invoices and expenses more efficiently by providing tools for invoice capture, approval routing, and faster payments. This automation reduces the need for additional staff in accounts payable and helps prevent cash flow issues. Emburse differentiates itself from competitors by offering personalized support and seamless integration with various technology solutions and travel providers, ensuring smooth data flow. The company's goal is to simplify financial workflows, allowing businesses to save time and money while improving spend visibility and control.

Los Angeles, CaliforniaHeadquarters

2015Year Founded

$4.2MTotal Funding

SEEDCompany Stage

Fintech, Financial ServicesIndustries

501-1,000Employees

Benefits

Remote Work Options

Risks

Legal issues with a former employee could harm Emburse's reputation and finances.

Emerging fintech startups pose competitive threats with lower-cost solutions.

Economic uncertainties may affect the adoption of travel and expense management tools.

Differentiation

Emburse offers AI-powered solutions for expense management and accounts payable automation.

The company provides integrated travel and expense management with tools like Emburse Book.

Emburse's SaaS model allows seamless integration with hundreds of technology solutions.

Upsides

Growing demand for AI-powered financial solutions boosts Emburse's market potential.

Partnership with Finexio enhances Emburse's digital ecosystem and service offerings.

Recognition in IDC MarketScapes highlights Emburse's leadership in AP automation.

Land your dream remote job 3x faster with AI

Try Jobo Free