GRC Specialist

• Oversee the management and execution of customer-facing trust and compliance programs
• Ensure compliance with U.S. K-12 education regulatory requirements, including laws related to student data privacy
• Lead and manage SOC 2 compliance programs, including control implementation and audit processes
• Conduct due diligence and integration activities for mergers and acquisitions to mitigate compliance risks
• Translate complex regulatory requirements into actionable business processes and controls
• Identify and assess risks related to data privacy and governance within the education sector
• Collaborate with stakeholders across various levels to maintain compliance standards and address regulatory concerns
• Monitor compliance using appropriate platforms and tools, ensuring continuous adherence to frameworks
• Develop and implement strategies for readiness assessments and security audits
• Provide expertise in frameworks such as ISO 27001 and other relevant certifications

• Minimum of 5 years of experience in governance, regulatory compliance, or risk management roles
• Hands-on experience managing SOC 2 compliance programs, including readiness assessments and audits
• Strong knowledge of U.S. education regulatory requirements, including FERPA and state-level student data privacy laws
• Proven track record in compliance due diligence and integration activities for mergers and acquisitions
• Demonstrated project management experience with successful delivery of multiple projects
• Familiarity with compliance monitoring tools and platforms
• Excellent analytical and problem-solving skills to interpret regulatory language into actionable processes

Certifications such as CRISC or equivalent are preferred

• Medical, vision, dental, and life and disability insurance
• 401(k) plan
• Free online training