Sigma Computing

Governance,Risk&Compliance(GRC)Manager

$190–215k San Francisco, California, United States; New York, New York, United States

The Brief

“Governance, Risk & Compliance (GRC) Manager at Sigma Computing. Skills: Governance, Risk management, Compliance. Design and implement governance frameworks. Establish and maintain enterprise policies”

What You'll Achieve.

Enable business growth while managing organizational risk; Protect Sigma's interests; Support strategic objectives; Build stakeholder trust; Mature governance structures; Implement scalable risk management processes; Ensure compliance with applicable regulatory requirements; Enable the business to move quickly and confidently; Provide visibility into program maturity and effectiveness; Align governance activities with business strategy and risk appetite; Facilitate risk-informed decision-making; Ensure risks across all business areas are identified and managed appropriately; Enable efficient deal cycles

What They're Looking For.

Must Have

4+ years of experience in governance, risk management, and/or compliance roles, Demonstrated experience building or significantly maturing a GRC program from the ground up, Track record of successfully leading certification audits (SOC 2, ISO 27001, HIPAA, or similar), Experience implementing risk management frameworks (COSO, ISO 31000, NIST RMF, or similar), knowledge of data privacy regulations and their practical application (GDPR, CCPA, etc. ), Experience developing and maintaining information security and privacy policies, procedures, and control frameworks, business acumen with ability to translate risk and compliance requirements into business value, Excellent communication skills with ability to influence stakeholders at all levels, including leadership, Proven ability to manage multiple priorities and stakeholders in a fast-paced, high-growth environment, Collaborative mindset and commitment to enabling business success while managing risk

Nice to Have

Experience with GRC platforms (ServiceNow GRC, Archer, LogicGate, or similar), Hands-on experience with cloud environments (GCP, AWS, Azure) from a compliance and security perspective, Experience with labor & employment compliance or cross-functional collaboration with HR on regulatory matters, Familiarity with multi-state or international employment regulations, Experience with continuous compliance automation tools (Vanta, Drata, Secureframe, Tugboat, or similar), Professional certifications such as CRISC, CISA, CISM, CGEIT, CISSP, or CIPP, Experience in high-growth SaaS or technology companies, Background in both technical and operational risk management, Experience working in organizations with distributed or remote teams, Familiarity with security frameworks such as NIST CSF, CIS Controls, or OWASP

What You'll Do.

Design and implement governance frameworks

Establish and maintain enterprise policies

Build and lead a governance committee structure

Create governance dashboards and metrics

Develop and operate an Enterprise Risk Management (ERM) program

Conduct enterprise-wide risk assessments

Build and maintain business continuity and disaster recovery programs

Implement third-party risk management processes

Create risk treatment plans

Own audit and certification programs

Develop and maintain compliance monitoring programs

Partner with HR and Legal to support labor & employment compliance programs

Monitor and ensure adherence to industry-specific regulatory requirements

Manage security awareness training programs

Conduct internal audits and assessments

Coordinate external audits and assessments

Support sales and customer success teams with compliance documentation

Develop customer-facing materials

Manage responses to customer security questionnaires

Enable efficient deal cycles

Address prospect security and compliance requirements

How You'll Work.

Team & Collaboration

Partner with Legal, Engineering, Product, Sales, Operations, and leadership; Coordinate with functional leaders; Partner with HR and Legal; Collaborate with Sales Engineering and Solutions teams

Communication Scope

Excellent communication skills with ability to influence stakeholders at all levels, including leadership

Process & Methodology

Manage multiple priorities and stakeholders, Manage responses to customer security questionnaires, Manage security awareness training programs

Free ATS check

Applying for this Governance, Risk & Compliance (GRC) Manager role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 54 detected

Required

Governance ×3

Risk management ×3

Compliance ×3

Policy governance ×3

Control oversight ×3

Risk assessments ×3

Risk register ×3

Vendor risk assessments ×3

Contract reviews ×3

Remediation activities ×3

Nice to have

Enterprise Risk Management

Third-party risk management

Business continuity

Disaster recovery

Audit

Certification programs

Compliance monitoring

Labor & employment compliance

Security awareness training

Internal audits

Role Details

Experience

4–5 yrs

Salary Band

150k-200k

How to Apply on Greenhouse

Create a Greenhouse profile before applying — it saves time across multiple applications.
Upload your resume as a PDF; the parser handles it better than Word.
Answer all knockout questions carefully — wrong answers auto-reject before a human sees you.
Enable email notifications to track application status in real time.

ANONYMOUS · UNFILTERED

What do employees actually say about Sigma Computing?

Real rants from real employees. Read before you apply.

Read Company Rants →