Technical Product Owner (GRC - Governance Risk Compliance)

STAND 8 provides end to end IT solutions to enterprise partners across the United States and with offices in Los Angeles, New York, New Jersey, Atlanta, and more including internationally in Mexico and India.

Our Solutions team is seeking a technical and detail-oriented and strategic Technical Product Owner (GRC - Governance Risk Compliance) to lead the development and management of GRC systems for our global Media & Entertainment client as they set up a new environment. This project will focus on replicating and mirroring the GRC systems from one environment to another, and ensure that all required Compliance and Risk systems are properly set up in place. This will include SOX (Sarbanes Oxley) compliance, COSO, ISO 31000, Data Privacy, IP protection, and other risk and controls frameworks that must be scalable, secure, and auditable using modern technology solutions.

As the GRC Product Owner, you will collaborate with internal audit, security, IT, and business stakeholders to define requirements, manage product roadmaps, and deliver tools that support regulatory compliance and enterprise risk management. You'll be a master with GRC subject matter and be able to work seamlessly with technical engineering teams and vendors to drive solutions over the finish line. Your technical acumen will help you support the engineers with any of the audit frameworks and IT systems that leverage API integrations and data platforms across a broad portfolio of systems. Our team works within an Agile SDLC and uses Jira for all user stories and product work and this will be second-nature for you.

We have a direct connection with our stakeholder and are setting up interviews immediately. The consultant must be able to commute to an office location, once a month or quarter, for key meetings but will primarily work remote within commutable distance to once the following offices: New York Tri-State (NY, NJ, CT) , Orlando, or Los Angeles. If you're looking to shine and make an immediate impact and grow within a global media & entertainment company with your amazing GRC Product experience, we look forward to hearing from you!

Key Responsibilities:

• Define and manage the product roadmap for GRC systems with a focus on SOX, COSO, ISO 31000 compliance and internal controls.


• Translate compliance and audit requirements into clear, actionable user stories and technical specifications.


• Collaborate with cross-functional teams including internal audit, IT security, engineering, and business units.


• Own the product backlog and prioritize features based on risk, compliance deadlines, and business impact.


• Ensure systems support audit trails, access controls, segregation of duties (SoD), and reporting requirements.


• Monitor and respond to regulatory changes and internal policy updates to ensure system alignment and readiness within industry specific areas.


• Familiarity with Effective Data Transfer Mechanisms, Intellectual Property (IP) Protection, Global Data Privacy Compliance, Content Guidelines and Rating Systems, Advertising Standards and Regulations, Ethical Content Creation and Localization, Supply Chain Resilience and Global Trade Compliance


• Lead sprint planning, backlog grooming, and Agile ceremonies to drive timely delivery of GRC features.


• Monitor system performance, user feedback, and regulatory changes to inform continuous improvement.


• Support integration of GRC tools with enterprise platforms such as SAP, identity management systems, and data warehouses.


• Facilitate UAT, documentation, and training to ensure successful adoption and audit readiness.


• Stay up to date with the latest GRC framework and system changes that may impact the business.

Requirements:

• 5+ years of experience as a Product Owner or Product Manager in enterprise systems, focused in GRC, audit, or compliance domains.


• Strong understanding of SOX (Sarbanes-Oxley Act), COSO, ISO 31000 requirements and/or other internal control frameworks.


• Strong understanding of EU-US Data Privacy Framework, GDPR, CCPA and other data privacy frameworks


• Knowledge of IT general controls (ITGC), risk assessments, and audit workflows.


• Experience working with or integrating GRC platforms (e.g., SAP GRC, ServiceNow GRC, Archer, or similar).


• Familiarity with enterprise systems such as SAP, including user access and role management.


• Ability to write technical user stories and proficiency with Agile methodologies and tools (e.g., Jira, Confluence).


• Strong analytical, documentation, and stakeholder management skills.


• Excellent communication skills and ability to work across technical and non-technical teams.


• (Preferred) Experience in the media & entertainment industry or similarly regulated, fast-paced environments.


• (Preferred) Familiarity with identity and access management (IAM), SSO, and compliance reporting tools.


• (Preferred) Background in supporting external audits or working with internal audit teams.

Additional Details
The base range for this contract position is $105,000 - 125,000 / per year depending on experience. Our pay ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hires of this position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Qualified applicants with arrest or conviction records will be considered.

Benefits

• Medical coverage and Health Savings Account (HSA) through Anthem


• Dental/Vision/Various Ancillary coverages through Unum


• 401(k) retirement savings plan


• Available paid-time-off (PTO) options


• Company-paid Employee Assistance Program (EAP)


• Discount programs through ADP WorkforceNow

About Us
STAND 8 provides end-to-end IT solutions to enterprise partners across the United States and globally with offices in Los Angeles, Atlanta, New York, Mexico, Japan, India, and more. STAND 8 focuses on the "bleeding edge" of technology and leverages automation, process, marketing, and over fifteen years of success and growth to provide a world-class experience for our customers, partners, and employees. Our mission is to impact the world positively by creating success through PEOPLE, PROCESS, and TECHNOLOGY. Check out more at ; and reach out today to explore opportunities to grow together!