
Governance, Risk, and Compliance Program Manager
Posted 1 day ago

Posted 1 day ago
This is a fully remote position, open to applicants in Canada.
• Cultivate and promote a culture of trust both within Dropbox and externally.
• Collaborate with teams to execute cross-team and/or multi-phase projects from design to implementation, adhering to a diverse array of regulatory and compliance frameworks, particularly those specific to AI.
• Determine effective solutions to clarify and address ambiguous, open-ended challenges across various compliance programs.
• Enhance our overall compliance program by improving and implementing controls for internal systems, processes, and policies through innovative approaches, utilizing automation and AI-driven processes.
• Facilitate ongoing initiatives in AI Governance, Risk, and Compliance, while monitoring the effectiveness of controls.
• Work together with internal teams and external auditors during compliance assessments.
• Actively engage in responding to and mitigating compliance challenges across different time zones and jurisdictions.
• Propel automation initiatives within the Compliance function using AI-enabled GRC automation tools.
• Identify opportunities that affect the Compliance function and develop strategies for cross-functional alignment to achieve these goals.
• Conduct gap assessments to pinpoint areas of non-compliance or opportunities for improvement, and formulate action plans to address these issues.
• Advise management on the implications of new laws and regulations, recommending changes in business practices as needed.
• Over 7 years of experience in building or maintaining programs aimed at mitigating security risks.
• Capable of independently leading cross-team and/or multi-phase projects from design through to implementation.
• Skilled in identifying effective solutions to clarify and resolve ambiguous, open-ended challenges.
• Regularly utilize AI tools to enhance workflows, critically evaluate outputs, and assist others in adopting these tools when appropriate.
• Familiar with facilitating or being subject to SOC, ISO, HIPAA, and/or PCI audits in a dynamic technology company, public accounting firm, or similar setting.
• Experience in collaborating with Engineering, Product, and Development teams to establish compliance needs in a multi-product environment.
• Strong knowledge of a wide range of technical concepts pertinent to cloud computing environments, including logical access control, agile development processes, secure coding principles, security architecture, information security, network security, and privacy.
• Experience implementing compliance programs for new and emerging products, including those powered by AI.
• Solid understanding of cloud-based technologies and their implications for governance, risk, and compliance, with a focus on AI compliance requirements.
• Excellent project management and organizational skills—capable of driving projects to completion with high-level direction from a manager.
• Strong interpersonal skills and the ability to thrive in a fast-paced team environment with diverse technical and non-technical teams.
• Exceptional writing, communication, and organizational skills, with a keen attention to detail.
• A passion for aiming higher and acquiring new skills.
• Professional certifications/associations such as CISA, CISSP, CCSK, CIPP, or equivalent are required.
• Moderate technical fluency to effectively collaborate with engineering and product teams.
• Health insurance
• 401(k) matching
• Flexible work hours
• Paid time off
• Remote work options
Willdan
Avalon Consulting Group
RTX
AECOM
Get handpicked remote jobs straight to your inbox weekly.