Cyber Security GRC Manager

"Candidates must be authorized to work in the United States without the need for current or future visa sponsorship."

Summary of Position (Job Purpose)

The Cyber Security GRC Manager will oversee compliance programs across IT and retail operations, ensuring policies, controls, and vendor integration comply with regulatory requirements (e.g., PCI DSS, SOC 2,NISTCSF, ISO 27001). The role partners with legal, finance, and risk teams to mitigate compliance risks and support audit preparedness.​

Principal Duties and Responsibilities

• Develop, document, and maintain IT compliance policies and standards.​
• Coordinate internal reviews and external audits; respond to findings.​
• Perform and complete different compliance tests to continue adherence with certification requirements.​
• Conduct risk assessments and recommend remediation strategies.​
• Manage vendor compliance and third-party risk programs.​
• Provide training and awareness for key stakeholders.​
• Track compliance metrics and report status to senior leadership.​
• Engage in ad hoc projects assigned by supervisor, which may include re-engineering projects, system implementation reviews, cross-divisional coordination around technology controls and activities related to the implementation of GRC tools.

Minimum Requirements/Qualifications​

• Bachelor’s degree in Business, IT, Finance, or related field.​
• 5+ years in IT/compliance, preferably in retail.​
• Strong knowledge of PCI DSS, SOX, NIST 2.0 & CSF and other relevant regulations.​
• Knowledgeable on Data Privacy Regulation's & Data Subject Access Request processes & tools.​
• Experience with audit tools, risk assessment tools & frameworks.​
• Experience with Vulnerability Management tools & reporting.​
• Experience with Security Awareness Training Program Management.​
• Direct Report leadership experience.​
• Certified in Project Management is a plus.​
• CISA, CISM or CCSP certifications is a plus.​
• Experience working with third party vendors.​
• Interpersonal and collaborative skills and the ability to articulate security and compliance related concepts to both technical and nontechnical audiences.​
• Excellent problem-solving skills and attention to detail.​

Desired Qualifications​

Bachelor’s in Information Technology or other four-year related degree

Family Dollar is an equal opportunity employer and committed to recruiting, hiring, training, and promoting qualified people of all backgrounds, and make all employment decisions without regard to any protected status. We are committed to complying with the Americans with Disabilities Act (ADA) and providing reasonable accommodations to qualified individuals with disabilities.