Governance,Risk&Compliance(GRC)Manager

Governance, Risk & Compliance (GRC) Manager Sigma is seeking an experienced GRC Manager to lead and scale our governance, risk, and compliance programs. This role is based in our San Francisco office or upcoming New York office and reports to the General Counsel. You'll have the opportunity to build a strategic, enterprise-wide GRC function that enables business growth while managing organizational risk. As our GRC Manager, you'll partner with Legal, Engineering, Product, Sales, Operations, and leadership to develop a comprehensive GRC framework that protects Sigma's interests, supports our strategic objectives, and builds stakeholder trust. You'll mature our governance structures, implement scalable risk management processes, and ensure compliance with applicable regulatory requirements—all while enabling the business to move quickly and confidently. What You'll Do Governance Design and implement governance frameworks, including reporting, policy governance, and control oversight Establish and maintain enterprise policies, standards, and procedures across technology, security, privacy, and operational functions Build and lead a governance committee structure that provides appropriate oversight and decision-making Create governance dashboards and metrics to provide visibility into program maturity and effectiveness Partner with leadership to align governance activities with business strategy and risk appetite Risk Management Develop and operate a comprehensive Enterprise Risk Management (ERM) program Conduct regular enterprise-wide risk assessments and maintain a dynamic risk register Build and maintain business continuity and disaster recovery programs, including regular testing and tabletop exercises Implement third-party risk management processes, including vendor risk assessments, contract reviews, and ongoing monitoring Create risk treatment plans and track remediation activities across the organization Facilitate risk-informed decision-making at all levels of