As the GRC Manager at Moloco, you will play a crucial role in strengthening and operationalizing the governance, risk, and compliance (GRC) program. Working closely with the Director of GRC, you will be responsible for managing and executing critical compliance initiatives, with a focus on owning the SOC 2 process.
You will oversee the day-to-day execution of compliance controls, collaborate with cross-functional teams, and contribute to risk management strategies that align with business objectives
Own the SOC 2 compliance process, from readiness to execution, ensuring alignment with trust criteria and industry standards
Lead and coordinate internal efforts to maintain and enhance SOC 2 compliance, including working cross-functionally to implement and maintain necessary controls
Support the Director of GRC in developing and executing key GRC initiatives that ensure the company’s continued adherence to regulatory requirements
Assist with risk assessment processes and the identification of control gaps, working closely with the Director and the team to drive remediation efforts
Contribute to internal and external audit preparation, providing necessary documentation and supporting timely responses to audit inquiries
Support customer due diligence efforts, ensuring accurate and timely responses to security and compliance inquiries
Contribute to the automation of compliance activities and reporting, helping to streamline and improve processes across the organization
Support and contribute to the integration of SOX ITGC testing into the internal audit program, ensuring seamless execution across teams
Requirements:
5-7 years of experience in governance, risk, and compliance, information security, or a related field
Strong understanding of frameworks such as SOC 2, ISO 27001, SOX ITGC, and NIST
Experience with internal audit processes and control testing
Ability to collaborate with cross-functional teams to ensure compliance controls are implemented and maintained across the organization
Strong analytical skills, with the ability to support risk assessments and mitigation strategies
Experience with compliance tooling and automation, particularly for monitoring and reporting
Previous experience working in a regulated environment and ensuring compliance with industry-specific standards and regulations
Experience working in a fast-paced, dynamic environment and navigating ambiguity
Effective written and verbal communication skills, capable of reporting findings and discussing recommendations
Relevant certifications such as CISA, CISSP, CRISC, CISM, or similar (preferred but not required)
Benefits:
Comprehensive health and wellness: Competitive health (100% coverage for you), dental, vision and life insurance for you and your family. In addition, enjoy membership to Calm, Headspace, Spring Health, as well as fitness and health reimbursements
Professional development: $2,500 Learning and Development stipend annually to grow yourself professionally
Food and snacks: Enjoy lunch on us. We bring lunch in for employees everyday, In addition, our kitchens are filled with healthy snacks and beverages for you to enjoy
Paid parental leave: Our parental leave for primary and secondary caregivers have you covered when you welcome a new child into your family
Unlimited vacation: We encourage team members to take time off to relax and recharge with our flexible paid time off policy. We also offer leave time for various reasons
Financial benefits: We provide equity and generous retirement benefits that help you prepare for your future. In addition, home office setup and phone, internet and transportation reimbursements
