×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Business Analyst Information Security IT Consultant

GRC Manager - Associate

Job in Charlotte, Mecklenburg County, North Carolina, 28245, USA
Listing for: SMBC
Full Time position
Listed on 2026-06-26
Job specializations:
  • IT/Tech
    Cybersecurity, IT Business Analyst, Information Security, IT Consultant
Job Description & How to Apply Below

Role Description

This role serves as SMBC Americas Division Information Security’s Product Specialist for the organizational GRC platform (SAI
360), responsible for the design, configuration, and continuous improvement of integrated governance, risk, and compliance capabilities.

The SAI
360 platform supports core GRC functions including risk management, controls management, assessments, issue management, and regulatory compliance. This role will partner with business, risk, and technology stakeholders to translate regulatory and operational requirements into scalable system configurations and workflows. It also contributes to the standardization of control frameworks, risk taxonomies, and regulatory mappings to support consistent reporting and regulatory alignment across regions.

The Product Specialist is responsible for ensuring Information Security modules are effectively configured, integrated with upstream and downstream systems, and support efficient, audit‑ready processes.

Role Objectives

The Product Specialist delivers configuration, design, and support services for SAI
360 users across Information Security and broader control functions.

Key responsibilities include:

  • Lead and facilitate configuration design workshops with business, risk, and technology stakeholders
  • Translate business, regulatory, and control requirements into functional design specifications
  • Collaborate with the GRC Technology team to identify, configure, and enhance Information Security’s modules within SAI
    360 to improve functionality and user experience of GRC processes
  • Ensure the configurations and workflows within Information Security’s modules align with SMBC control standards, regulatory obligations, audit expectations and optimize end‑to‑end GRC workflows (risk assessments, control testing, issue management, regulatory mapping)
  • Support platform governance, including documentation, standards, and controls over system changes (e.g., JIRA) in collaboration with the GRC Technology team.

Reporting:

  • Design and configure dashboards and reports using SAI
    360‑integrated PowerBI capabilities to support risk, compliance, and management reporting
  • Ensure data integrity, completeness, and auditability within Information Security’s modules

Testing and Deployment:

  • Support user acceptance testing (UAT) and defect resolution
  • Coordinate releases and enhancements in alignment with GRC Technology’s change management processes
  • Ensure proper documentation and traceability of changes to support audit and regulatory review

Stakeholder Engagement and Training:

  • Serve as the primary point of contact for Information Security stakeholders interacting with SAI
    360 across business and control functions
  • Support Information Security module owners with the development and provision of training and guidance to end users, control owners, and administrators
Qualifications and Skills
  • 2+ years of experience configuring or maintaining enterprise GRC platforms (e.g., SAI
    360, Service Now, Archer)
  • Hands‑on experience working with web technologies used in GRC platforms with the ability to configure, troubleshoot, and implement changes directly within the platform (JavaScript, JSON, HTML, XML, and SQL; experience with Vue.js a plus)
  • Experience with data visualization tools (e.g., Power BI, Tableau) for risk and compliance reporting
  • Working experience with a change ticketing system (e.g., JIRA, Service Now)
  • Understanding of information/cyber security governance, risk management, and compliance (GRC) processes
  • Strong stakeholder engagement and communication skills across technical and non‑technical audiences
  • Strong attention to detail with focus on data integrity and audit readiness
Preferred Qualifications
  • Experience supporting information security / cybersecurity GRC, risk management, internal audit, or regulatory compliance
  • Experience working in financial services or a highly regulated environment
  • Exposure to control libraries, risk taxonomies, and regulatory mapping
  • Experience with workflow automation and integration (e.g., APIs, Power Platform)
  • Familiarity with regulatory expectations for information security in financial services (e.g., NYDFS Part 500, SEC, FFIEC Handbooks)
  • Working…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search