CrawlJobs Logo

Governance Risk & Compliance Lead

Costa Rica, Heredia · Job Posted February 10, 2026
Apply Position
Job Link Share

Job Description

The Governance Compliance and Risk Lead sits within the Client – US Consumer Card – Marketing Business Control Governance Organization. The Governance team is responsible for optimizing governance to streamline processes for impactful risk management and empower data-driven decisions through actionable insights. The team fosters a risk-aware culture, proactively mitigating emerging threats through expert analysis and rigorous change management. Furthermore, they provide strategic foresight by delivering clear analytics and recommendations to ensure audit readiness and build a resilient future for the organization. The Governance Compliance and Risk Lead is a pivotal role to strengthen Citi's control environment, requiring a highly analytical and detail-oriented professional with a strong background in operational risk, compliance risk, regulatory risk, and control functions. The individual will be responsible for driving results with a high sense of urgency, applying critical thinking to complex control challenges, and supporting the continuous improvement of risk management practices across various business areas within the organization Client Organization USCC - Marketing sector.

Job Responsibility

  • Oversee and manage the Marketing Criteria Approval Council, including activities related to segmentation, targeting, and suppressions
  • Facilitate MCRA meetings, managing logistics, materials, minutes, and follow-up actions to ensure efficient operations
  • Guide campaign sponsors through the end-to-end approval process, securing necessary Fair Lending, Legal, and Product Compliance approvals
  • Coordinate annual campaign renewals to ensure ongoing compliance for all active marketing campaigns
  • Manage and enhance fair lending workflow tools, driving improvements and operational efficiency
  • Navigate a large organization to streamline and summarize multiple information points, creating repeatable processes to build consistency in presenting information
  • Utilize strong technical problem-solving skills to identify conflicts, discrepancies, and other issues, bringing together the right teams to develop effective solutions
  • Effectively manage competing priorities and tasks in a complex and dynamic environment, working well as part of a team
  • Support ad-hoc risk and control initiatives and projects, demonstrating flexibility and responsiveness to evolving organizational needs
  • Possess exceptional oral and written communication skills, with the ability to synthesize complex concepts and influence change across various levels of the organization
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of teams and create accountability with those who fail to maintain these standards

Requirements

  • Minimum of 6-10 years of experience in the financial services industry, with a focus on governance, regulatory affairs, operational oversight, or similar functions
  • Experience in the US marketing sector is a plus
  • Familiarity with AI/ML concepts and their application in risk management, compliance, or operational efficiency is highly desirable
  • Strong knowledge of US compliance laws, regulations, and best practices, with proven experience in control-related functions
  • Critical, quick, and detail-oriented thinker with strong analytical skills to identify, measure, and manage key risks and controls
  • Ability to identify operational gaps and problems, generate sustainable solutions, and make sound decisions, often leveraging root cause analysis
  • Proven experience in implementing sustainable solutions and improving processes within control functions
  • Exceptional oral and written communication skills, with the ability to synthesize complex concepts and influence change across various stakeholders
  • Ability to work autonomously, take initiative, prioritize effectively, create support and buy-in across stakeholders, and cooperate effectively in achieving group and business objectives
  • Proficient in Microsoft Office Suite, Workflow Management tools, JIRA, Confluence, CRISP and/or Gen AI
  • Bachelor's/University degree, Master's degree preferred

Nice to have

  • Familiarity with AI/ML concepts and their application in risk management, compliance, or operational efficiency is highly desirable
  • Experience in the US marketing sector is a plus

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Governance Risk & Compliance Lead

8 matching positions

Governance Risk & Compliance Lead

The Governance Compliance and Risk Lead sits within the Client – US Consumer Car...
Location
Location
Costa Rica , Heredia
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 6-10 years of experience in the financial services industry, with a focus on governance, regulatory affairs, operational oversight, or similar functions
  • Experience in the US marketing sector is a plus
  • Familiarity with AI/ML concepts and their application in risk management, compliance, or operational efficiency is highly desirable
  • Strong knowledge of US compliance laws, regulations, and best practices, with proven experience in control-related functions
  • Critical, quick, and detail-oriented thinker with strong analytical skills to identify, measure, and manage key risks and controls
  • Ability to identify operational gaps and problems, generate sustainable solutions, and make sound decisions, often leveraging root cause analysis
  • Proven experience in implementing sustainable solutions and improving processes within control functions
  • Exceptional oral and written communication skills, with the ability to synthesize complex concepts and influence change across various stakeholders
  • Ability to work autonomously, take initiative, prioritize effectively, create support and buy-in across stakeholders, and cooperate effectively in achieving group and business objectives
  • Proficient in Microsoft Office Suite, Workflow Management tools, JIRA, Confluence, CRISP and/or Gen AI
Job Responsibility
Job Responsibility
  • Oversee and manage the Marketing Criteria Approval Council, including activities related to segmentation, targeting, and suppressions
  • Facilitate MCRA meetings, managing logistics, materials, minutes, and follow-up actions to ensure efficient operations
  • Guide campaign sponsors through the end-to-end approval process, securing necessary Fair Lending, Legal, and Product Compliance approvals
  • Coordinate annual campaign renewals to ensure ongoing compliance for all active marketing campaigns
  • Manage and enhance fair lending workflow tools, driving improvements and operational efficiency
  • Navigate a large organization to streamline and summarize multiple information points, creating repeatable processes to build consistency in presenting information
  • Utilize strong technical problem-solving skills to identify conflicts, discrepancies, and other issues, bringing together the right teams to develop effective solutions
  • Effectively manage competing priorities and tasks in a complex and dynamic environment, working well as part of a team
  • Support ad-hoc risk and control initiatives and projects, demonstrating flexibility and responsiveness to evolving organizational needs
  • Possess exceptional oral and written communication skills, with the ability to synthesize complex concepts and influence change across various levels of the organization
  • Fulltime
Read More
Arrow Right

Senior Governance, Risk & Compliance Lead

OnePlan is looking for a Senior Governance, Risk & Compliance Lead to own and op...
Location
Location
United States
Salary
Salary:
Not provided
oneplan.ai Logo
OnePlan Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience in governance, risk and compliance, information security, or security compliance roles
  • Direct experience managing SOC 2 Type II and ISO 27001 audits and maintaining ongoing compliance programs
  • Strong understanding of NIST 800-53 and FedRAMP security requirements
  • Experience using compliance automation platforms such as Vanta or similar tools
  • Experience working in a cloud native SaaS environment, ideally within Azure
  • Strong documentation, audit management, and cross functional coordination skills
  • Ability to translate security and compliance requirements into practical operational processes
  • Experience leading or supporting FedRAMP readiness or authorization programs
Job Responsibility
Job Responsibility
  • Own and manage OnePlan’s governance, risk, and compliance program across security and privacy frameworks
  • Maintain the company’s compliance certifications including SOC 2 Type II, ISO 27001, and ISO 27701, ensuring ongoing audit readiness and successful surveillance audits and recertifications
  • Coordinate with external auditors and manage evidence collection, control validation, and supporting documentation
  • Maintain and update security policies, procedures, and internal documentation supporting compliance frameworks
  • Maintain the company risk register and drive risk identification, assessment, and remediation activities across the organization
  • Partner closely with Engineering and IT teams to implement and document security controls across the platform
  • Lead OnePlan’s FedRAMP Moderate readiness initiative, including NIST 800-53 gap assessments and remediation planning
  • Develop and maintain the System Security Plan (SSP) and associated FedRAMP documentation
  • Prepare the organization for 3PAO assessment and establish processes for ongoing continuous monitoring
  • Manage vendor risk assessments and third party security reviews
What we offer
What we offer
  • We offer comprehensive health, dental, and vision benefits, with additional insurance options
  • Employer RRSP and 401K matching programs
  • A fun, collaborative, and diverse environment with regular health and team challenges to keep things light and enjoyable
  • Fulltime
Read More
Arrow Right

Governance, Risk & Compliance Lead

Perplexity is seeking a highly experienced Governance, Risk & Compliance Analyst...
Location
Location
United States , San Francisco
Salary
Salary:
200000.00 - 220000.00 USD / Year
perplexity.ai Logo
Perplexity
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience leading engagements in audit and compliance
  • Experience leading compliance teams
  • Worked in high tech companies in cloud-native environments
  • Able to translate complex compliance requirements into clear and actionable work-streams
  • Strong commitment to cross-functional collaboration with IT, Security, GTM, and Engineering
  • Self-motivated, detailed and organized, with a diligent approach to project completion
  • Excellent written, verbal, and interpersonal communication skills
Job Responsibility
Job Responsibility
  • Implement and lead frameworks such as SOC2, ISO 27001 and HIPAA. Ensuring compliance with certification requirements
  • Ensure and maintain compliance with GDPR, CCPA, CPRA and other privacy regulations
  • Design and build scalable audit management processes and documentation systems that will support future expansion to additional compliance frameworks
  • Conduct risk assessments and mitigate data security and compliance risks
  • Write, update and enact policies capturing security, privacy, and AI safety requirements
  • Follow and help shape the AI regulatory and standards landscape to keep the company at the forefront of industry developments and best practices
What we offer
What we offer
  • equity
  • health
  • dental
  • vision
  • retirement
  • fitness
  • commuter and dependent care accounts
  • Fulltime
Read More
Arrow Right

Governance Risk and Compliance Lead

Location
Location
United Kingdom , London
Salary
Salary:
95000.00 GBP / Year
hunterbond.com Logo
Hunter Bond
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong GRC background
  • Governance, Risk and Compliance background
  • Experience in conducting risk assessments
  • PCI DSS, ISO 27001, NIS 2 and the UK telecom Security Act
  • Good understanding of Telecom security threats
  • Excellent communication skills
What we offer
What we offer
  • bonus
  • Fulltime
Read More
Arrow Right

Lead Analyst, Business Continuity & Disaster Recovery (Governance, Risk and Compliance)

Own and drive Burlington’s enterprise Business Continuity and Disaster Recovery ...
Location
Location
United States , Edgewater Park
Salary
Salary:
95000.00 - 150000.00 USD / Year
Burlington
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Technology, or related field
  • 7+ years of experience in Business Continuity and Disaster Recovery (BCDR)
  • Experience supporting or governing an enterprise-scale BCDR program
  • Strong experience with BIA, RTO/RPO definition, and application tiering
  • Experience leading disaster recovery testing (tabletop and failover)
  • Experience working across business, infrastructure, and application teams
  • Experience in hybrid (on-prem and cloud) environments
  • Experience with BCDR/GRC tools (e.g., SharePoint, Power Automate, ServiceNow, Archer)
  • Experience developing executive-level reporting and communicating risk and resilience topics to leadership
Job Responsibility
Job Responsibility
  • Lead enterprise-wide BIA to identify and prioritize critical business processes
  • Define recovery priorities and RTO/RPO targets based on operational and financial impact
  • Maintain enterprise application inventory and ensure alignment with BCDR scope
  • Define and enforce application tiering, including required RTO, RPO, and testing expectations
  • Assess and tier new applications as part of onboarding and change processes
  • Define and enforce BCDR standards, templates, and requirements for Business Continuity Plans (BCPs) and Disaster Recovery Plans (DRPs)
  • Guide business and IT teams in developing and maintaining their plans
  • Review plans for completeness, accuracy, and executability
  • Provide input on disaster recovery design (e.g., failover approaches, redundancy, dependencies) to ensure alignment with recovery requirements
  • Validate through testing that recovery capabilities meet defined RTO/RPO targets
What we offer
What we offer
  • Competitive wages
  • Flexible hours
  • Associate discount
  • Medical, dental and vision coverage including life and disability insurance
  • Paid time off
  • Paid holidays
  • 401(k) plan
  • Training and development opportunities
  • Fulltime
Read More
Arrow Right

Governance Risk and Compliance Risk Register Analyst

You will design and operationalise the governance layer around an enterprise ris...
Location
Location
United States , Remote
Salary
Salary:
70.00 - 80.00 USD / Hour
signifytechnology.com Logo
Signify Technology
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years designing enterprise risk registers and the frameworks around them
  • 8+ years building risk scoring and prioritisation models — likelihood and impact scales, scoring methodology, prioritisation logic
  • 8+ years designing and running governance processes and workflows
  • 8+ years leading stakeholder engagement and enablement across security, technology, and business
  • Demonstrated track record producing audit-ready documentation and handing over to internal teams
Job Responsibility
Job Responsibility
  • Define the end-to-end governance flow — how risks get raised, reviewed, accepted, mitigated, transferred, and reassessed over time
  • Set the accountability structure — who owns risks, who reviews them, which governance bodies hold which decisions
  • Build the escalation and reporting paths for high-risk and formally accepted items
  • Partner with stakeholders across business, technology, security, and governance functions to validate the framework in practice
  • Run working sessions to walk stakeholders through the register and the governance model
  • Help load the initial set of risks into the register
  • Produce audit-ready documentation covering register structure, scoring methodology, governance workflows, and decision rights
  • Run a structured knowledge transfer to the internal security team so the programme continues after the contract ends
  • Fulltime
Read More
Arrow Right
New

Senior Governance, Risk & Compliance Business Partner

Are you a seasoned GRC professional who thrives on moving beyond advisory to act...
Location
Location
Australia , Adelaide
Salary
Salary:
70.00 - 75.00 AUD / Hour
https://www.randstad.com Logo
Randstad
Expiration Date
July 23, 2026
Flip Icon
Requirements
Requirements
  • Proven Delivery Track Record: Deep, practical experience in governance, risk, and compliance within complex environments, with a proven history of personally leading or materially driving GRC uplift initiatives
  • Framework Expertise: Strong working knowledge of risk management principles aligned directly to ISO 31000
  • Executive Presence: Demonstrated ability to operate as a trusted advisor to executive leadership, with exceptional verbal and written communication skills
  • Execution & Analytical Capability: Strong analytical capability with the ability to interpret complex policy or legislation (including Freedom of Information processes) and translate them into actionable business solutions
  • Agility: The ability to determine priorities, bring structure to ambiguity, manage competing demands, and deliver high-quality outcomes to tight timeframes
  • 10 years experience
Job Responsibility
Job Responsibility
  • Drive GRC Maturity: Strengthen and uplift the organisation's GRC maturity, translating risk and compliance frameworks into practical, embedded business practices
  • Internal Audit & Assurance: Lead the development and formulation of a detailed, risk-based Internal Audit Plan for executive and board sub-committee approval
  • Strategic Business Partnering: Influence, consult, and partner with executives and senior leaders to embed clear accountability for risk, compliance, and internal controls
  • Policy & Framework Custodianship: Review, draft, and maintain robust corporate policies and procedures, ensuring strict alignment with legislative and government policy requirements (including protective security frameworks)
  • Reporting & Briefings: Prepare high-level briefings, reports, and papers for executive leadership and board-level review
Read More
Arrow Right

Head of Governance, Risk & Compliance

Lead the design and execution of the organization’s GRC strategy, ensuring it al...
Location
Location
Egypt , New Cairo
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Business Administration, Risk Management, Cybersecurity, Law, or a related field from a reputable university
  • Minimum of 10 years of experience in governance, risk management, compliance
  • Strong knowledge of GRC frameworks, industry standards, and regulatory requirements (e.g., ISO 27001, NIST, GDPR, SOX, HIPAA)
  • Relevant certifications such as CISM, CRISC, CISA, or similar GRC certifications are highly preferred
  • Proven track record of successful full leadership
  • Excellent command of English
Job Responsibility
Job Responsibility
  • Lead the design and execution of the organization’s GRC strategy, ensuring it aligns with corporate goals and objectives
  • Develop and implement governance frameworks, risk management processes, and compliance programs that adhere to regulatory requirements and industry standards
  • Oversee the risk management process, including risk identification, assessment, mitigation, and monitoring
  • Ensure compliance with relevant laws, regulations, and internal policies, including data protection, cybersecurity, financial, and operational regulations
  • Establish and maintain a strong risk management and compliance culture throughout the organization
  • Provide leadership and guidance to cross-functional teams to ensure effective implementation of GRC initiatives
  • Lead internal and external audits, managing the process and ensuring timely remediation of identified issues
  • Monitor and report on the organization’s risk posture and compliance status to executive leadership and the board
  • Develop, implement, and maintain policies and procedures to address risks and compliance obligations
  • Provide training and awareness programs to employees on GRC topics, fostering compliance and risk-conscious behavior
Read More
Arrow Right