Accela9h ago
New
New
$150,000 – $170,000/yr
Manager, Governance, Risk & Compliance
Based - UsRemotemid
Legal & ComplianceCompliance
0 views0 saves0 applied
Quick Summary
Overview
ABOUT THE ROLE The Manager, Governance, Risk, and Compliance leads Accela security governance, risk, compliance, audit, and customer trust programs. This role owns security policies, standards,
Technical Tools
Legal & ComplianceCompliance
About the Role
~1 min readResponsibilities
~2 min read- →Lead the governance, risk, and compliance function across security policies, standards, risk management, audits, third-party risk, and control operations.
- →Develop, maintain, and operationalize global security policies, standards, procedures, control documentation, and exception processes.
- →Own audit readiness and ongoing compliance programs across frameworks such as SOC 2, ISO 27001, GovRAMP, PCI DSS, HIPAA, NIST CSF, NIST 800-53, CCPA/GDPR, and other customer or regulatory requirements.
- →Lead GovRAMP and PCI DSS readiness, including control mapping, evidence collection, remediation tracking, stakeholder coordination, audit preparation, and audit support.
- →Coordinate audit evidence collection, control testing, remediation tracking, auditor communication, and management responses.
- →Maintain the security risk register, including identification, assessment, ownership, remediation, acceptance, exception tracking, and executive reporting of security risks.
- →Partner with control owners across Security, IT, Engineering, Legal, HR, Finance, Product, and Operations to ensure control effectiveness and accountability.
- →Manage third-party and supply chain risk management, including vendor security reviews, due diligence, risk assessments, contract security input, and remediation tracking.
- →Support customer security reviews, questionnaires, trust center content, security documentation, and customer-facing compliance responses.
- →Develop metrics and dashboards for audit status, control health, risk posture, vendor risk, policy exceptions, compliance readiness, and remediation progress.
- →Support incident response and privacy incident processes by ensuring regulatory, contractual, audit, and customer notification obligations are understood and tracked.
- →Partner with the CISO to communicate security posture, compliance progress, key risks, control gaps, and trade-offs to executives, customers, auditors, and regulators.
- →Drive continuous improvement of the GRC operating model, including automation, evidence reuse, control rationalization, risk prioritization, and policy lifecycle management.
Requirements
~1 min read- 6+ years of experience in security governance, risk management, compliance, audit, third-party risk, or related cybersecurity roles.
- Experience managing or supporting audits and compliance programs for SOC 2, ISO 27001, GovRAMP, PCI DSS, HIPAA, NIST 800-53, or similar frameworks.
- Strong understanding of security controls, policy management, risk assessment, control testing, evidence collection, and audit readiness practices.
- Experience working with auditors, customers, internal stakeholders, and executive leadership.
- Experience managing third-party risk or vendor security review programs.
- Ability to translate complex compliance obligations into practical business and technical requirements.
- Strong project management skills with the ability to manage multiple audits, risks, remediation efforts, and stakeholder workstreams simultaneously.
- Excellent written and verbal communication skills.
- Experience in SaaS, cloud, public-sector technology, government technology, or regulated environments.
- Experience with GovRAMP, FedRAMP Moderate or High, PCI DSS, NIST 800-53, or other public-sector and payment security compliance frameworks.
- Experience with GRC platforms, trust centers, vendor risk platforms, policy management platforms, or control automation tools.
- Experience supporting privacy programs involving CCPA, GDPR, HIPAA, or similar requirements.
- Experience developing executive-level risk and compliance reporting.
- Relevant certifications such as CISSP, CISM, CISA, CRISC, ISO 27001 Lead Implementer, or ISO 27001 Lead Auditor.
- May support incident response activities related to evidence preservation, notification obligations, contractual obligations, and control impact analysis.
- Very light travel may be expected for team or company offsites and industry conferences.
What We Offer
~1 min read#LI-Remote
Location & Eligibility
Where is the job
Worldwide
Fully remote, anywhere in the world
Who can apply
Same as job location
Listing Details
- Posted
- July 14, 2026
- First seen
- July 14, 2026
- Last seen
- July 14, 2026
Posting Health
- Days active
- 0
- Repost count
- 0
- Trust Level
- 76%
- Scored at
- July 14, 2026
Signal breakdown
freshnesssource trustcontent trustemployer trust

Accela
greenhouse
Accela provides a cloud-based platform of software solutions for government agencies, specializing in permitting, licensing, code enforcement, and citizen engagement.
View company profileSalary
$150,000 – $170,000
per year
External application · ~5 min on Accela's site
Please let Accela know you found this job on Jobera.
3 other jobs at Accela
View all →Explore open roles at Accela.
Similar Compliance jobs
View all →Director of Lending Compliance
Japan Broker-Dealer Compliance Associate (Japan Based / Japanese Language Required)
From $0k/yr
Remote
Compliance & KYC Officer
Associate, Legal and Compliance Technology
Staff Security Risk & Compliance Program Manager - Access Management
$222.1K – $261K • Offers Equity
full-timeRemote
Paralegal, Compliance
Browse Similar Jobs
Attorney646Paralegal562Compliance Specialist425Corporate Lawyer349Regulatory178Corporate Counsel116Commercial Counsel93Legal Counsel61Contracts60Lawyer57Claims Specialist55Assistant General Counsel54Regulatory Affairs Specialist37Employment Specialist36Risk Specialist27Company Secretary25Contract Manager23Data Protection Officer22Regulatory Counsel21Governance Specialist19
Newsletter
Stay ahead of the market
Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.
A
B
C
D
No spam. Unsubscribe at any time.