Hiring.Camp

Manager, Governance, Risk & Compliance

Accela

·

5 days ago

Salary
$150k – $170k
Location
Remote Based - US
Workplace
Remote
Department
Engineering
Seniority
Manager
Experience
6+ years
Source
Greenhouse

Description

ABOUT THE ROLE

 The Manager, Governance, Risk, and Compliance leads Accela security governance, risk, compliance, audit, and customer trust programs. This role owns security policies, standards, risk management processes, control evidence, audit readiness, and third-party risk management.

The Manager, GRC partners with Security, Legal, IT, Engineering, Product, Finance, People, and customer-facing teams to ensure Accela meets regulatory, contractual, audit, and customer trust obligations.

This role is the primary owner for compliance programs and audit readiness across SOC 2, ISO 27001, GovRAMP, PCI DSS, HIPAA, NIST CSF, NIST 800-53, CCPA/GDPR, and other customer or regulatory requirements.

SPECIFIC RESPONSIBILITIES

  • Lead the governance, risk, and compliance function across security policies, standards, risk management, audits, third-party risk, and control operations.
  • Develop, maintain, and operationalize global security policies, standards, procedures, control documentation, and exception processes.
  • Own audit readiness and ongoing compliance programs across frameworks such as SOC 2, ISO 27001, GovRAMP, PCI DSS, HIPAA, NIST CSF, NIST 800-53, CCPA/GDPR, and other customer or regulatory requirements.
  • Lead GovRAMP and PCI DSS readiness, including control mapping, evidence collection, remediation tracking, stakeholder coordination, audit preparation, and audit support.
  • Coordinate audit evidence collection, control testing, remediation tracking, auditor communication, and management responses.
  • Maintain the security risk register, including identification, assessment, ownership, remediation, acceptance, exception tracking, and executive reporting of security risks.
  • Partner with control owners across Security, IT, Engineering, Legal, HR, Finance, Product, and Operations to ensure control effectiveness and accountability.
  • Manage third-party and supply chain risk management, including vendor security reviews, due diligence, risk assessments, contract security input, and remediation tracking.
  • Support customer security reviews, questionnaires, trust center content, security documentation, and customer-facing compliance responses.
  • Develop metrics and dashboards for audit status, control health, risk posture, vendor risk, policy exceptions, compliance readiness, and remediation progress.
  • Support incident response and privacy incident processes by ensuring regulatory, contractual, audit, and customer notification obligations are understood and tracked.
  • Partner with the CISO to communicate security posture, compliance progress, key risks, control gaps, and trade-offs to executives, customers, auditors, and regulators.
  • Drive continuous improvement of the GRC operating model, including automation, evidence reuse, control rationalization, risk prioritization, and policy lifecycle management.

REQUIRED QUALIFICATIONS

  • 6+ years of experience in security governance, risk management, compliance, audit, third-party risk, or related cybersecurity roles.
  • Experience managing or supporting audits and compliance programs for SOC 2, ISO 27001, GovRAMP, PCI DSS, HIPAA, NIST 800-53, or similar frameworks.
  • Strong understanding of security controls, policy management, risk assessment, control testing, evidence collection, and audit readiness practices.
  • Experience working with auditors, customers, internal stakeholders, and executive leadership.
  • Experience managing third-party risk or vendor security review programs.
  • Ability to translate complex compliance obligations into practical business and technical requirements.
  • Strong project management skills with the ability to manage multiple audits, risks, remediation efforts, and stakeholder workstreams simultaneously.
  • Excellent written and verbal communication skills.

DESIRED QUALIFICATIONS

  • Experience in SaaS, cloud, public-sector technology, government technology, or regulated environments.
  • Experience with GovRAMP, FedRAMP Moderate or High, PCI DSS, NIST 800-53, or other public-sector and payment security compliance frameworks.
  • Experience with GRC platforms, trust centers, vendor risk platforms, policy management platforms, or control automation tools.
  • Experience supporting privacy programs involving CCPA, GDPR, HIPAA, or similar requirements.
  • Experience developing executive-level risk and compliance reporting.
  • Relevant certifications such as CISSP, CISM, CISA, CRISC, ISO 27001 Lead Implementer, or ISO 27001 Lead Auditor.

Other

  • May support incident response activities related to evidence preservation, notification obligations, contractual obligations, and control impact analysis.
  • Very light travel may be expected for team or company offsites and industry conferences.

ABOUT ACCELA
For nearly 20 years, Accela has been an industry leader in designing and delivering government software to improve efficiency, increase citizen engagement and enable the development of thriving communities. Today, citizens are savvy to how services should be delivered, and expect a consistently convenient, openly transparent view into their local government. While government agencies struggle to do more with less, our mission has never been more critical. Accela provides a robust, cloud-based platform of government software solutions that accelerate growth, efficiency, and transparency in communities of all sizes. From planning, to building, to service request management and more, Accela’s SaaS offerings level the playing field for small and medium governments and enable smaller agencies to leverage larger city technologies. Our open and flexible technology helps agencies address specific needs today, while ensuring they are well prepared for the emerging challenges of the future.

OUR COMMITMENT TO DIVERSITY, EQUITY, AND INCLUSION
Accela believes in developing and nurturing a workplace community where our differences are celebrated, and everyone feels a sense of psychological safety and belonging. Accela is committed to putting resources and attention towards evolving our practices, policies, and philosophies to enable diversity to thrive and to support equity in opportunity for everyone.

COMPENSATION AND WELL-BEING
The annual base salary range for this full-time position is $150,000-$170,000(less applicable taxes). The actual annual base salary offered may be adjusted based on a variety of factors, including but not limited to, location, education, skills, training, and experience. In addition to an annual base salary, this position is eligible for an annual bonus target. This is a discretionary bonus awarded based on company and individual goal achievement.
 
Accela’s U.S. team members will receive a generous benefits package consisting of options including flexible time off, comprehensive medical, dental, and vision plans, family planning benefits, 401(k) retirement savings plan with company match, health savings account with company contributions, flexible spending account, life, accident, and disability coverage, business travel insurance, employee assistance programs, and other well-being benefits.

Accela is an Equal Opportunity Employer/Affirmative Action Employer and will respond to requests for job accommodations.

All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, national origin, protected veteran status, or based on disability, gender identity, and sexual orientation

#LI-Remote

Skills

CybersecuritySOCRisk ManagementComplianceProject ManagementSOC 2HIPAAGDPRISO 27001CISSP

Similar Jobs

30

Manager, Risk & Governance

Careers @ MUFG Pension & Market Services · Australia

2 weeks ago

Manager Risk Governance

Westpacnz · Westpac on Takutai Square, New Zealand +1

3 weeks ago

Manager, Risk & Governance

Standard Bank Group · Roodepoort, GP, South Africa · onsite

1 month ago

Manager and Senior Manager: Governance, Risk, & Compliance (GRC)

Whoop · Boston, MA · Onsite

Yesterday

Product Manager - Governance, Risk Management and Compliance (GRC)

Chevron Corporation is one of · Houston 1400 Smith Street, United States of America

2 days ago

Operational Risk Governance Manager (VP)

Morgan Stanley · Budapest, HU · Hybrid

3 days ago

Operational Risk Governance Manager (VP)

Ms · Budapest Millennium Tower I, Hungary · Hybrid

3 days ago

Senior Manager, Governance Risk & Compliance

Sound Physicians · Remote · Remote

4 days ago

Manager - Governance Risk and Compliance

AD Ports Group · Abu Dhabi, United Arab Emirates, AE

4 days ago

Senior Manager, Governance, Risk & Compliance

Circular Materials

4 days ago

Manager, Governance, Risk and Compliance

Thomson Reuters · Australia, Melbourne, Victoria · Hybrid

6 days ago

Security Manager - Governance, Risk and Compliance

BIP · Italy

1 week ago

Manager - Governance, Risk and Compliance Security Automation

Salesforce · Washington - Bellevue, United States of America +2 · Onsite

3 weeks ago

Compliance, Governance & Risk Manager

Edenpeople · Italy - Milano - Sede Milano

3 weeks ago

Senior Manager, Risk Governance & Reporting

Jj · US063 NJ Raritan - 920 US Hwy 202, United States of America +4 · Hybrid

3 weeks ago

Senior Manager, Risk Governance & Reporting

Jj · US063 NJ Raritan - 920 US Hwy 202, United States of America +4 · Hybrid

3 weeks ago

HCUK Enterprise Risk & Governance Manager

Santander Effect Our work touches · Redhill Consumer Finance, United Kingdom

3 weeks ago

Manager, Governance, Risk & Compliance

Plains · Houston, TX, United States of America

3 weeks ago

HCUK Enterprise Risk & Governance Manager

Santander · Redhill Consumer Finance, United Kingdom

3 weeks ago

Senior Manager: Governance, Risk and Control (GRC)

Absa · Absa Towers West, South Africa · Hybrid

1 month ago

Manager, Governance, Risk, & Compliance

Arcticwolf · Remote - IND - Karnataka, India · Remote

1 month ago

Model Risk Governance Manager

SECU Careers · Raleigh - Salisbury St, United States of America

1 month ago

Pensions Manager - Governance & Risk

M&G · Reading, United Kingdom +6

1 month ago

Senior Manager, Risk Governance

Rbc · YORK MILLS CENTRE, 10 YORK MILLS RD:TORONTO, Canada

1 month ago

Senior Manager, Risk Governance and Reporting

Standard Bank Group · Saint-Helier, St Helier, Jersey

1 month ago

Senior Risk Governance Manager

Career Schwab · Austin, TX, US +1 · Onsite

1 month ago

Information Security Manager- Governance, Risk, & Compliance

Sinclair, Inc. · Hunt Valley, MD, United States, US · Hybrid

1 month ago

Manager | Governance & Risk Consulting | Perth

KPMG Australia · Perth, WA, Australia · Hybrid

1 month ago

Manager, Governance, Risk and Compliance

Cnx · PHL Cebu City - 17th and 19th floors, Central Bloc Corporate Center 1, Philippines

1 month ago

Senior Manager, Risk Governance and Reporting

Standard Bank Group · Douglas, Douglas, Isle of Man

1 month ago