Emburse1mo ago

Lead GRC Analyst

DallasFull-Timelead

OtherGrc AnalystCybersecurity

0 views0 saves0 applied

Apply Now

Quick Summary

Overview

Who We Are: At Emburse, you’ll not just imagine the future – you’ll build it. As a leader in travel and expense solutions,

Technical Tools

OtherGrc AnalystCybersecurity

Who We Are:

At Emburse, you’ll not just imagine the future – you’ll build it. As a leader in travel and expense solutions, we are creating a future where technology drives business value and inspires extraordinary results. Our AI-powered platform helps organizations modernize financial operations, increase visibility, and optimize spend across the enterprise.

The security and privacy-focused Governance, Risk, and Compliance (GRC) Lead will lead the efforts for strengthening our security and privacy posture and ensuring adherence to critical regulatory and industry standards. This role will be responsible for building and managing a comprehensive security GRC framework that protects our organization from cyber risks, ensures compliance with security regulations, and enables business resilience. The ideal candidate has expertise in security governance, risk management, and compliance, with the ability to partner with both technical and business teams.

Essential Functions

Establish and maintain security policies, standards, and controls aligned with industry frameworks (NIST, ISO 27001, PCI, SOC 2).

Develop a metrics and reporting framework to assess the effectiveness of the security and privacy programs.

Organize information security risk assessment process, including the reporting and oversight of treatment efforts to address negative findings.

Assist with compliance audits and projects (SOC 1, SOC 2, ISO 27001, ISO 27701, PCI-DSS, Tx-RAMP, and other projects).

Manage privacy program to ensure that it is in compliance with legal and regulatory requirements (GDPR, PIPEDA, CCPA, CPRA)

Execute Privacy Impact Assessments (PIAs)

Support in the development and implementation of a continuous controls monitoring program for security compliance and automation of manual processes.

Monitor regulatory and industry trends to ensure required changes in compliance policies, procedures, and testing are integrated in a timely manner.

Assist with enterprise-wide targeted training for employee compliance with regulatory requirements

Coordinate security incident response and resiliency activities from a compliance and governance perspective, ensuring lessons learned feed back into governance processes.

Manage Third Party Risk Management oversight for new and existing vendors

Support and help grow the AI Governace initiatives within the organization

Education:

Required: Bachelor’s Degree; Minimum 5+ years of technology project/program management.

Experience:

Ability to effectively work as part of a cohesive and agile team.

Ability to manage security audits and frameworks (e.g., PCI, ISO, SOC 1, SOC2, NIST)

Ability to manage privacy audits and frameworks (e.g., GDPR, CPRA, CCPA, PIPEDA)

Ability to manage AI audits and frameworks (e.g., ISO 42001)

Ability to remain organized and to elicit cooperation from a wide variety of sources, including team members, other internal departments, and external parties.

Ability to effectively prioritize and execute tasks in a high-pressure environment and react to project adjustments and alterations promptly and efficiently.

Ability to exercise good judgment and discretion in confidential matters.

Demonstrable experience interacting with auditors and strategic partners in cloud-based environments similar to Emburse, relating to assurance frameworks such as SOX, PCI DSS, ISO27001, SOC 2 Trust Principles, Business Continuity and Disaster Recovery and Third-Party Risk Management.

Implemented or maintained Drata (or other GRC tools)

Certifications:

Preferred: CISSP, CIPP/EU, CIPM, Security+, CISA, PMP

Excellent analytical skills.

Self-starter with the ability to work with minimal supervision.

Experience working on large cross-functional teams, representing GRC on initiatives such as change management, identity and access management, policy management, and data retention.

Strong writing skills and the ability to communicate information about complex issues to stakeholders in a clear and easy to understand way

Ability to develop creative and adaptive solutions to unique and complex inquiries

Unwavered by a rapid-paced working environment and meeting deadlines

Team-focused, positive attitude, and good sense of humor

Listing Details

Posted: February 27, 2026
First seen: March 26, 2026
Last seen: April 21, 2026

Posting Health

Days active: 26
Repost count: 0
Trust Level: 33%
Scored at: April 21, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust

Apply for this position

Emburse

lever

Emburse humanizes work by empowering business travelers, finance professionals and CFOs to eliminate manual, time-consuming tasks so they can focus on what matters most.

Employees

750

Founded

2020

Domain

Jobs

External application · ~5 min on Emburse's site

Please let Emburse know you found this job on Jobera.