Position: Sr Manager of Risk & Compliance
Location: Salt Lake City, Utah
Duration: Perm Placement
Job ID: 174073
Job Overview: The Senior Manager of Risk and Compliance is a hands-on leadership role responsible for the execution and operational delivery of security compliance, risk management, and audit functions. This position oversees a team of compliance analysts and collaborates cross-functionally with stakeholders to ensure security controls and compliance objectives are met. The role involves managing day-to-day security risk activities, responding to client audit and assessment requests, overseeing third-party vendor reviews, and leading internal assessments and risk treatment tracking. The ideal candidate combines deep operational knowledge with the ability to mentor and guide a growing team.
Responsibilities: - Design and lead the information security risk assessment strategy, methodology, and process.
- Coordinate enterprise-wide information security risk assessments and oversee risk treatment plans.
- Perform internal control reviews, gap assessments, and compliance documentation for regulations such as HIPAA, SOC 2, NIST, and ISO 27001.
- Manage risk and compliance resources for team execution.
- Develop and maintain security policies, standards, and procedures aligned with leading frameworks.
- Assess third-party risk and advise on risk acceptance/treatment in conjunction with vendor management processes.
- Deliver regular reporting on metrics, KPIs, risk posture, exceptions, remediation, and audit status.
- Provide approved responses to client inquiries and maintain a library of records, documentation, and responses.
- Ensure key security controls are identified, implemented, tested, and remediated as required.
- Evaluate and advise on security control recommendations to mitigate information security risks.
- Respond to security assessments, questionnaires, and audits from regulators, clients, and third-party business partners.
- Work directly with clients to provide advisory services and guidance to reduce organizational risk and improve security posture.
- Prepare reports and deliverables containing strategy, technical analysis, findings, and recommendations.
- Other duties as assigned.
Qualifications: - Bachelor's degree in Information Security, Information Systems, or a related field.
- Minimum 5+ years of management experience in Information Security, including operational security, risk management, IT, compliance, and audit.
- 5+ years of experience specific to security risk management and compliance programs, processes, and execution.
- Certifications such as CISA (required), CISSP, CRISC, CISM, or other equivalents (preferred).
- Strong analytical skills and excellent written and verbal communication skills, including presentation abilities.
- Understanding of industry and regulatory standards such as NIST 800-53, HIPAA Security Rule, ISO 2700x, AICPA SOC 2, PCI DSS, GDPR, and CCPA.
- Hands-on experience with GRC platforms and work management tools (e.g., Jira, Confluence).
- Proven ability to operate independently, manage multiple priorities, and drive results in a deadline-driven environment.
- Expertise in areas such as cyber risk program management, security architecture, security technologies, data protection, third-party risk management, and cloud security.
About PTR Global: PTR Global is a leading provider of information technology and workforce solutions. PTR Global has become one of the largest providers in its industry, with over 5000 professionals providing services across the U.S. and Canada. For more information visit ;br>
At PTR Global, we understand the importance of your privacy and security. We NEVER ASK job applicants to:
- Pay any fee to be considered for, submitted to, or selected for any opportunity.
- Purchase any product, service, or gift cards from us or for us as part of an application, interview, or selection process.
- Provide sensitive financial information such as credit card numbers or banking information. Successfully placed or hired candidates would only be asked for banking details after accepting an offer from us during our official onboarding processes as part of payroll setup.
Pay Range: $150000- $160000
The specific compensation for this position will be determined by several factors, including the scope, complexity, and location of the role, as well as the cost of labor in the market; the skills, education, training, credentials, and experience of the candidate; and other conditions of employment. Our full-time consultants have access to benefits, including medical, dental, vision, and 401K contributions, as well as PTO, sick leave, and other benefits mandated by applicable state or localities where you reside or work.
If you receive a suspicious message, email, or phone call claiming to be from PTR Global do not respond or click on any links. Instead, contact us directly at +1 . To report any concerns, please email us at
#LI-VB1
Never miss an opportunity! Create an alert based on the job you applied for.
