MQ Referrals Only - Director, Governance, Risk & Compliance
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• Proven experience (6+ years) in a security leadership role with deep expertise in cybersecurity governance, risk management, and compliance • Proven experience with regulatory frameworks (PCI DSS, SOC 2, ISO 27001, NIST, SOX) • Experience in financial services, fintech, or highly regulated industries • Demonstrated success in audit management and customer-facing security assessments • Strong analytical and problem-solving capabilities with attention to detail • Excellent written and verbal communication skills for technical and executive audiences • Experience with GRC tools (OneTrust, ServiceNow, or similar platforms) • Strong business acumen and ability to align security initiatives with business objectives • Track record of cultivating relationships across teams, influencing decision making, and collaborating with stakeholders at all levels of the organization • Proven ability to develop structure, advance execution, and measure performance within various and complex projects, teams, and environment • Proactive and strategic mindset, with the ability to anticipate business needs of the cybersecurity organization and stakeholders • A strong bias toward action and ability to operate proactively and effectively in a dynamic, fast-paced environment • High ethical standards and a commitment to promoting a strong security culture • One or more industry certifications: CISM, CRISC, CISSP, ISO 27001 Lead Auditor, or equivalent • Nice-To-Haves: • Bachelor's or Master's degree in Computer Science, Information Security, or related field • Experience with cloud security frameworks and third-party risk management • Knowledge of M&A cybersecurity due diligence processes • Experience in customer trust and sales enablement functions • Your Manager: • Heather Gantt-Evans • Recruiter For This Role: • Typical Process: • Typical Process: • Application submission • Recruiter phone call • Hiring manager video call • Virtual “Onsite” (Round 1) consisting of 4-5, 45 min interviews • Virtual “Onsite” (Round 2 - Post down selection) 3 - 45 minute interviews (2) E-Team + (1) BOD Member
Responsibilities
• Develop cybersecurity policies, standards, and control frameworks aligned with industry regulations. • Establish and operate governance models, steering committees, and approval processes for security initiatives. • Maintain a unified inventory of controls and oversee validation activities with internal and external assessors. • Design and execute comprehensive cybersecurity risk assessment frameworks and methodologies. • Manage risk treatment plans, remediation tracking, and escalation processes in alignment with enterprise risk management. • Provide risk advisory services to integrate findings into strategic planning for security initiatives. • Lead compliance readiness assessments and coordinate audit activities across multiple frameworks (PCI DSS, SOC 2, ISO 27001). • Manage the remediation of audit findings and maintain compliance reporting for internal and external stakeholders. • Oversee third-party cybersecurity risk assessments and vendor management processes. • Lead customer due diligence, security questionnaire responses, and Trust Center operations to support sales enablement through security documentation facilitation of audits.
Benefits
• Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. Compensation is aligned according to three tiers within the United States: • National: A baseline tier that applies to most of the geographic territory of the United States. • National • Premium: Slightly elevated from the National tier, and oriented toward a narrower set of higher cost-of-living areas, such as Los Angeles CA and Seattle WA • Premium • Premium Plus: A tier for the most expensive working areas, like the San Francisco Bay area and New York City. • Premium Plus • Visit this page or consult with a Recruiter to determine which tier would be applicable to you. • When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position is: • National: $175,800 - $219,700 • Premium: $190,200 - $237,000 • We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company. • Along with monetary compensation, Marqeta offers • Multiple health insurance options • Flexible time off – take what you need • Retirement savings program with company contribution and after tax contributions • Equity in a publicly-traded company and an Employee Stock Purchase Program • Family-forming benefits, fertility support, and up to 20 weeks of Parental Leave • Free therapy sessions, financial and professional coaching, and legal advice • Monthly stipend to support our remote work model • Annual “development dollars” to support our people growth and development • Through Flex First, the freedom to live and work wherever you and your family thrive
No credit card. Takes 10 seconds.