AlayaCare

SaaS

GRCManager

Montréal, Quebec, Canada

The Brief

“GRC Manager at AlayaCare. Skills: GRC programs, Security certifications, Risk management, Cloud environments. Lead compliance programs and certifications. Define and execute GRC strategy”

What You'll Achieve.

Ensure continuous readiness for security certifications and audits; Improve risk visibility; Enhance vendor assurance practices; Build scalable control processes; Enable organization to grow confidently; Meet customer and regulatory requirements; Measure security posture, compliance health, and risk trends

Industry & Context.

SaaS

Problems you'll solve

Translate technical risk into business impact

What They're Looking For.

Must Have

Bachelor's or advanced degree in cybersecurity, computer science, or related fields, 8-10+ years of hands-on experience leading and scaling GRC or compliance programs in a SaaS or cloud-first environment, Experience owning external audits and certifications end-to-end, Solid understanding of modern cloud and DevOps environments, knowledge of risk management methodologies, Demonstrated ability to influence cross-functional stakeholders, program management skills, Excellent written and verbal communication skills, Hands-on mindset

Nice to Have

Experience working in healthcare or other highly regulated industries, Experience with HITRUST (i1 or r2) or similar healthcare-focused compliance frameworks, Experience integrating privacy regulations into technical and operational controls, Experience building or operating Trust Centers or customer-facing security assurance programs, Background working in fast-growing SaaS startups or scale-ups, Bilingual in French and English

What You'll Do.

Lead compliance programs and certifications

Define and execute GRC strategy

Coordinate external auditors and assessors

Partner with Engineering and IT leadership

Design scalable control frameworks

Establish risk management program

Lead vendor risk management

Oversee policy governance

Develop policies and procedures

Define and track KPIs and metrics

Support Sales and Customer Success

Encourage shared ownership

Identify simplification opportunities

How You'll Work.

Team & Collaboration

Collaborate with colleagues across Engineering, IT, Legal, Privacy; Partner with Engineering and IT leadership; Influence cross-functional stakeholders; Support and guide control owners and stakeholders

Communication Scope

Excellent written and verbal communication skills; Ability to simplify complex security and compliance topics; Comfortable participating in customer-facing security and compliance discussions

Process & Methodology

Manage multiple initiatives in parallel

Free ATS check

Applying for this GRC Manager role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

Skill Signal 46 detected

Core

GRC programs ×5

Security certifications ×5

Cloud environments ×5

Vanta ×4

Drata ×4

Required

Risk management ×3

Audits ×3

HITRUST ×3

HIPAA ×3

ISO 27001 ×3

ISO 27701 ×3

SOC 1 ×3

SOC 2 ×3

DevOps workflows ×3

Control frameworks ×3

Nice to have

Cloud

DevOps

GRC engineering

AI-assisted compliance

Governance

Privacy

Regulatory compliance

Vendor assurance

Control processes

Policy governance

Role Details

Work Mode

Hybrid: 2 days in office

Experience

8–10 yrs

Education

Bachelor's or advanced degree in cyberse

What do employees actually say about AlayaCare?

Real rants from real employees. Read before you apply.

Read Company Rants →