Associate Manager, Security Compliance (GRC) - Remote

Overview

The Associate Manager of Security Compliance (GRC) plays a crucial role in safeguarding dbt Labs' operations through effective risk management and regulatory compliance. This position is responsible for developing, implementing, and maintaining comprehensive GRC frameworks that align with industry standards and organizational objectives.

In Short

• Contribute to strategy, roadmap, and lifecycle management of GRC tooling.
• Partner with teams to embed GRC controls early in the software development lifecycle.
• Identify opportunities for automating and integrating risk and compliance activities.
• Set clear performance expectations and provide ongoing coaching.
• Ensure the GRC technology stack aligns with enterprise architecture standards.
• Drive the sales cycle by producing documentation and answering customer questions.
• Deliver key projects on time including continuous monitoring activities.
• Document, track, and follow up on security-related findings.
• Coordinate external audits and evidence collection.
• Manage vendor security evaluations.

Requirements

• Strong understanding of GRC frameworks such as NIST, ISO 27001, and SOC 2.
• 5+ years of experience leading technical teams.
• Experience managing a remote team.
• Strong understanding of GRC domains including IT risk and compliance.
• Excellent interpersonal and communication skills.

Benefits

• Unlimited vacation.
• 401k with a 3% guaranteed contribution.
• Excellent healthcare.
• Paid Parental Leave.
• Wellness stipend.
• Home office stipend.