Role Overview

The GRC & Incident Manager is responsible for leading and maturing the organization's governance, risk, compliance, and data privacy programs across IT systems, cloud environments, and third-party vendors. This role partners with Security, Engineering, and Compliance to ensure regulatory requirements and privacy obligations are translated into practical controls that protect sensitive data while supporting business operations.

What You Will Do

Incident Command & Crisis Leadership, Physical Security Operations, Coordination & Stakeholder Communication, Metrics, Analysis & Continuous Improvement, Governance, Risk & Compliance, Third-Party & Vendor Risk, Data Privacy & Protection, Cross-Functional Collaboration

Why It Might Be a Fit

3–5 years of experience in Governance, Risk, and Compliance (GRC), data privacy, risk management, or a related field, preferably within a regulated environment such as fintech or financial services.

Requirements

3–5 years of experience in Governance, Risk, and Compliance (GRC), data privacy, risk management, or a related field
Hands-on experience supporting regulatory and compliance programs, including SOC 2 and GLBA Safeguards Rule
Familiarity with U.S. state privacy laws and global privacy frameworks
Experience implementing and administering GRC platforms
Demonstrated ability to perform privacy and security risk assessments
Technical literacy in modern enterprise environments
Professional certifications such as CIPT or CDPSE required; CIPM and CISSP preferred
Bachelor’s degree in Computer Science, Information Security, or a related field, or an equivalent combination of professional experience, certifications, and alternative education

Benefits

Comprehensive Medical, Dental, and Vision Insurance
Generous Paid Time Off
Birthday Day Off
12 Paid Company Holidays
401(k) Match
FSA and HSA
Paid Life Insurance
Paid Disability Insurance
Pet Insurance
Employee Assistance Program (EAP)
Professional Development Courses
In Office Provided Snacks and Drinks
Gym Facilities (LA & Tustin/CEC Offices)
In Office Engagement Activities

Role Overview

What You Will Do

Why It Might Be a Fit

Requirements

3–5 years of experience in Governance, Risk, and Compliance (GRC), data privacy, risk management, or a related field
Hands-on experience supporting regulatory and compliance programs, including SOC 2 and GLBA Safeguards Rule
Familiarity with U.S. state privacy laws and global privacy frameworks
Experience implementing and administering GRC platforms
Demonstrated ability to perform privacy and security risk assessments
Technical literacy in modern enterprise environments
Professional certifications such as CIPT or CDPSE required; CIPM and CISSP preferred
Bachelor’s degree in Computer Science, Information Security, or a related field, or an equivalent combination of professional experience, certifications, and alternative education

Benefits

Comprehensive Medical, Dental, and Vision Insurance
Generous Paid Time Off
Birthday Day Off
12 Paid Company Holidays
401(k) Match
FSA and HSA
Paid Life Insurance
Paid Disability Insurance
Pet Insurance
Employee Assistance Program (EAP)
Professional Development Courses
In Office Provided Snacks and Drinks
Gym Facilities (LA & Tustin/CEC Offices)
In Office Engagement Activities

GRC & Incident Manager

About the role

Role Overview

What You Will Do

Why It Might Be a Fit

Requirements

Benefits

Similar jobs

Products

Use Cases

Insights

Resources

Browse Jobs

Company

GRC & Incident Manager

About the role

Role Overview

What You Will Do

Why It Might Be a Fit

Requirements

Benefits

Similar jobs

About Lendistry

Lendistry