Manager of Security Governance, Risk, and Compliance

CarGurusBoston, Massachusetts, United States

On-site Full-time $144K/yr - $180K/yr

Clicking Apply Now takes you to AutoApply where you can tailor your resume and apply.

Experience Level

Manager

Qualifications

Ideal candidates will possess a strong background in information security, risk management, and compliance frameworks. Proven experience in managing security governance, as well as familiarity with relevant standards such as ISO 27001 and SOC 2, will be critical. Candidates should demonstrate strategic leadership capabilities and a passion for fostering a culture of security awareness and compliance across the organization.

About the job

Who We Are

At CarGurus (NASDAQ: CARG), we empower people by simplifying their journey to car ownership. Our story began with a passionate team of developers dedicated to bringing trust and transparency to the automotive marketplace. Over the years, our innovative approach and rapid market growth have positioned us as the largest and fastest-growing automotive marketplace, maintaining profitability for over 15 years.

What We Do

As the automotive industry evolves, so do we. We are transforming the entire car buying experience online, assisting our customers from selling their old vehicles to financing, purchasing, and delivering new ones. Each month, millions of consumers visit CarGurus.com, and approximately 30,000 dealerships leverage our solutions. Our employees thrive in a people-first culture that promotes kindness, collaboration, and innovation, and provides the tools necessary for career advancement. Join us as we disrupt a trillion-dollar industry with fresh, diverse perspectives!

Role Overview:

As the Manager of Security Governance, Risk, and Compliance (GRC) within our Information Security team, you will play a pivotal role in the evolution of our established GRC function. You will not only maintain our program but also enhance our capabilities to ensure that security acts as a catalyst for our business success, converting complex regulatory demands into a competitive edge.

Your strategic leadership will focus on high-standard execution while emphasizing Revenue Enablement, ensuring our security posture alleviates friction in the enterprise sales cycle and strengthens our reputation as a trusted partner.

How You’ll Make a Difference:

Lead an established team to elevate our GRC maturity, developing and refining our Integrated Management System (IMS) across standards such as ISO 27001, 27017, 27018, and SOC 2 Type II.
Modernize our risk reporting through quantitative risk management, moving beyond traditional qualitative assessments to deliver real-time, data-driven insights and financial risk forecasts grounded in FAIR principles.
Act as a key contributor on our AI Governance Committee, facilitating the secure implementation of AI/LLM features within our products and overseeing AI integration governance across our internal SaaS ecosystem in alignment with ISO 42001.
Position GRC as a driver of revenue by enhancing our compliance and risk functions, ensuring our security trust posture promotes global growth and instills confidence in our stakeholders.

About CarGurus

CarGurus is a leading automotive marketplace that leverages technology to transform the car buying experience. With a commitment to transparency and trust, we empower consumers and dealerships alike, fostering a collaborative and innovative workplace where employees thrive.

Similar jobs

Browse all companies, explore by city & role, or SEO search pages. View directory listings: all jobs, search results, location & role pages.

1 - 20 of 1,080 Jobs

Search for Senior Program Specialist Risk Compliance Operations

1,080 results

Select all on this page (20)

Apply

Senior Program Specialist, Risk & Compliance Operations

Whoop

Full-time|On-site|Boston, MA

Join Whoop as a Senior Program Specialist in our Risk & Compliance Operations team. In this pivotal role, you will be responsible for developing and implementing compliance strategies that align with regulatory requirements while driving operational excellence. You will collaborate with cross-functional teams to ensure that compliance practices are effective…

Apr 5, 2026

Apply

Senior Risk & Compliance Analyst

Whoop

Full-time|On-site|Boston, MA

Join Whoop as a Senior Risk & Compliance Analyst, where you will play a crucial role in developing robust risk management strategies and ensuring compliance across our operations. You will collaborate with cross-functional teams to identify potential risks and implement effective solutions. Your expertise will directly contribute to maintaining our commitment to integrity and excellence.

Mar 20, 2026

Apply

Director of Governance, Risk & Compliance

WHOOP, Inc.

Full-time|On-site|Boston, MA

At WHOOP, our mission is to unlock human performance and enhance healthspan through cutting-edge wearable technology. We provide personalized insights that empower millions of members to better understand their bodies and make informed decisions regarding training, recovery, and lifestyle choices.We are currently looking for a skilled Director of Governance, Risk & Compliance to spearhead and evolve the WHOOP enterprise GRC program. In this critical role, reporting directly to the Chief Information Security Officer (CISO), you will be accountable for defining and implementing the governance, risk management, and compliance strategy across the organization, ensuring that strategic objectives are translated into scalable programs, robust controls, and measurable results.This senior leadership position involves enhancing and expanding a top-tier GRC function that allows WHOOP to operate swiftly while upholding the highest standards of security, privacy, and regulatory compliance.

Mar 12, 2026

Apply

Manager of Security Governance, Risk, and Compliance

CarGurus

Full-time|$144K/yr - $180K/yr|On-site|Boston, Massachusetts, United States

Who We AreAt CarGurus (NASDAQ: CARG), we empower people by simplifying their journey to car ownership. Our story began with a passionate team of developers dedicated to bringing trust and transparency to the automotive marketplace. Over the years, our innovative approach and rapid market growth have positioned us as the largest and fastest-growing automotive marketplace, maintaining profitability for over 15 years.What We DoAs the automotive industry evolves, so do we. We are transforming the entire car buying experience online, assisting our customers from selling their old vehicles to financing, purchasing, and delivering new ones. Each month, millions of consumers visit CarGurus.com, and approximately 30,000 dealerships leverage our solutions. Our employees thrive in a people-first culture that promotes kindness, collaboration, and innovation, and provides the tools necessary for career advancement. Join us as we disrupt a trillion-dollar industry with fresh, diverse perspectives!Role Overview:As the Manager of Security Governance, Risk, and Compliance (GRC) within our Information Security team, you will play a pivotal role in the evolution of our established GRC function. You will not only maintain our program but also enhance our capabilities to ensure that security acts as a catalyst for our business success, converting complex regulatory demands into a competitive edge.Your strategic leadership will focus on high-standard execution while emphasizing Revenue Enablement, ensuring our security posture alleviates friction in the enterprise sales cycle and strengthens our reputation as a trusted partner.How You’ll Make a Difference:Lead an established team to elevate our GRC maturity, developing and refining our Integrated Management System (IMS) across standards such as ISO 27001, 27017, 27018, and SOC 2 Type II.Modernize our risk reporting through quantitative risk management, moving beyond traditional qualitative assessments to deliver real-time, data-driven insights and financial risk forecasts grounded in FAIR principles.Act as a key contributor on our AI Governance Committee, facilitating the secure implementation of AI/LLM features within our products and overseeing AI integration governance across our internal SaaS ecosystem in alignment with ISO 42001.Position GRC as a driver of revenue by enhancing our compliance and risk functions, ensuring our security trust posture promotes global growth and instills confidence in our stakeholders.

Feb 18, 2026

Apply

Technical Programs Specialist in Revenue Operations - Boston

Datadog

Full-time|$100K/yr - $145K/yr|On-site|Boston, Massachusetts, USA

Role Overview As a pivotal member of our Technical Programs team, you will collaborate closely with various business stakeholders to transform strategic business goals into actionable operational processes and systematic enhancements. Your primary responsibility will be to prioritize and identify the most impactful business needs, leveraging both business insights and technical knowledge to assess feasibility and strategize effective solutions. You will partner with teams across all operational functions to plan and implement these changes effectively. In a rapidly evolving environment, your innovative approach will facilitate quicker execution of minor changes, enabling a more strategic focus on larger initiatives. Key Responsibilities: Serve as a strategic partner to key business stakeholders, translating complex objectives into operational designs and technical solutions. Act as a technical advocate throughout the go-to-market process, ensuring designs are scalable and aligned with existing structures while assessing downstream implications. Maintain a comprehensive understanding of current processes and automations within our Sales Tech Stack to drive effective design improvements and streamline workflows. Manage the operational roadmap through agile sprint planning, ensuring alignment with various stakeholders, including the Revenue Operations team. Oversee stakeholder management to ensure solutions meet requirements and any design adjustments are communicated effectively. Identify and mitigate risks, issues, and dependencies that may impact solution delivery. Collaborate with business partners to clearly define requirements and with technical teams to validate that solutions align with stakeholder needs. Drive innovation in intake, prioritization, solution design, and execution frameworks to expedite minor changes and refocus on strategic initiatives. Establish a regular cadence for re-evaluating existing processes to ensure efficiency and relevance for sales teams.

Mar 25, 2026

Apply

AI Risk & Compliance Analyst at WHOOP | Boston

WHOOP

Full-time|On-site|Boston, MA

At WHOOP, we are dedicated to enhancing human performance and healthspan through our innovative wearable technology. Our devices provide personalized insights that empower millions of members to gain a deeper understanding of their bodies and make informed choices regarding training, recovery, and overall lifestyle.As artificial intelligence continues to integrate into our platform, it is essential to implement robust governance, risk management, and compliance strategies to protect member data, maintain regulatory compliance, and foster secure innovation.We are looking for a talented AI Risk & Compliance Analyst to collaborate with our Security, Product, Engineering, Legal, and Privacy teams. This role will focus on assessing AI-related risks, conducting vendor evaluations, overseeing policy governance, coordinating audits, and ensuring adherence to new AI regulatory frameworks.This position is a senior individual contributor role within the Governance, Risk, and Compliance (GRC) team, offering extensive influence across risk domains and opportunities for collaboration with both technical and business stakeholders.

Mar 12, 2026

Apply

Compliance Specialist at SimpliSafe | Boston, MA

SimpliSafe

Full-time|$83K/yr - $120K/yr|Hybrid|Boston, MA

SimpliSafe is dedicated to home security, with a mission to help customers protect what matters most. The company encourages employees to grow their careers while working together to support those who depend on its products. Work Model This Compliance Specialist position follows a hybrid schedule based in Boston, MA. Teams gather in the Boston office for two core days each week, typically Tuesday, Wednesday, or Thursday, to collaborate in person. For the remaining days, employees have the option to work remotely or from the office, offering a mix of flexibility and face-to-face teamwork.

Apr 28, 2026

Apply

Program Specialist, Membership Services

WHOOP

Full-time|On-site|Boston, MA

WHOOP’s Membership Services team supports members with tools and insights to help them reach their goals. Every interaction aims to move members forward and prepare them for success. As WHOOP grows, the team adapts to meet evolving needs and deliver meaningful experiences. Role Overview The Program Specialist, Membership Services, leads the rollout of new initiatives that help internal teams deliver strong support for members. This position reports to the Program Team Manager and works closely with teams in Marketing, Product, Finance, and other departments. The goal: keep members’ needs at the center of every decision. What You Will Do Coordinate and implement programs that improve member support and satisfaction Collaborate with cross-functional partners to design and refine support initiatives Analyze data to guide decisions and inform the team’s strategic direction Manage systems and processes that create efficient, high-quality experiences for members Help shape the next generation of support programs as WHOOP’s membership grows Location This role is based in Boston, MA.

Apr 17, 2026

Apply

Senior Hardware Compliance Engineer

Whoop, Inc.

Full-time|On-site|Boston, MA

Whoop, Inc. is seeking a Senior Hardware Compliance Engineer based in Boston, MA. This role focuses on ensuring that hardware products meet all relevant compliance and regulatory standards. The position plays a key part in upholding quality and safety across the company’s devices. Role overview The Senior Hardware Compliance Engineer will work closely with product and engineering teams to confirm that each hardware release aligns with required regulations. Attention to detail and a strong understanding of compliance processes are essential for success in this position. What you will do Oversee compliance and regulatory requirements for hardware products Support efforts to maintain high standards of quality and safety Contribute expertise to help guide product teams through certification processes Requirements Experience with hardware compliance and regulatory standards Strong commitment to quality and safety in product development

Apr 28, 2026

Apply

Risk Associate

dstaff

Full-time|On-site|Boston

Join our dynamic team at dstaff as a Risk Associate. In this role, you will be instrumental in identifying, analyzing, and mitigating risks that may affect our organization. Your analytical skills and attention to detail will help ensure that we maintain a robust risk management framework. You will collaborate with various departments to assess potential risks and develop strategies to address them effectively.

Nov 22, 2014

Apply

Senior Program Manager at Merlin Labs | Boston

Merlin Labs

Full-time|On-site|Boston

About Merlin Labs: Merlin Labs is an innovative aerospace startup, backed by prominent venture capital, dedicated to developing autonomous pilot systems that facilitate both crewed and uncrewed flight operations. With support from leading global investors, we are collaborating with our clients to harness autonomy today and tackle some of the most significant challenges in aviation.About You: As a Senior Program Manager at Merlin Labs, you will be a strategic leader with extensive program management expertise, focused on driving mission-critical outcomes. You will oversee a suite of impactful customer-oriented defense and autonomy programs, guiding them from initial capture through to successful deployment and operational integration.Your unique combination of technical proficiency, stakeholder engagement, and operational discipline makes you an invaluable asset in fast-paced environments characterized by ambiguity and the need for swift execution. You excel at deeply understanding military operator requirements, converting them into actionable technical and programmatic priorities, and leading teams to achieve meaningful results. If you are passionate about influencing the future of aviation while fostering lasting customer partnerships, we would be thrilled to connect with you.

Jul 31, 2025

Apply

Operations Program Manager at WHOOP | Boston, MA

WHOOP

Full-time|On-site|Boston, MA

At WHOOP, we are dedicated to revolutionizing human performance and extending health spans. We empower our members to achieve their peak potential through a profound understanding of their bodies and daily routines.As the Operations Program Manager, you will spearhead cross-functional manufacturing initiatives that enhance and innovate production processes throughout WHOOP’s global supply chain. Collaborating closely with Manufacturing, Supply Chain, Factory, Test, and Quality teams, your efforts will focus on delivering pivotal projects that boost product quality, throughput, cost-efficiency, and operational readiness.This position is based at our headquarters in Boston, MA, and is crucial for scaling and maintaining high-performance manufacturing through systematic execution, robust cross-functional collaboration, and a proactive approach to problem-solving.

Feb 9, 2026

Apply

Revenue Operations Specialist

Constant Contact, Inc.

Full-time|$66K/yr - $82.5K/yr|On-site|Waltham or Boston, MA

At Constant Contact, we pride ourselves on being a team of talented individuals who take ownership and make a meaningful impact by embodying the mindset, integrity, and courage of small business owners. There's an unparalleled sense of fulfillment in knowing that your contributions empower people around the globe to chase their dreams. Together, we play a vital role in assisting business owners, entrepreneurs, non-profits, and individuals by providing them with the resources and tools they need to thrive online. We are invigorated by fresh challenges and limitless opportunities—and this journey has only just begun!The Revenue Operations team is in search of a dynamic operational star to act as a crucial link among our Go-To-Market teams, including Sales, Success, Marketing, and Enablement. This position will be instrumental in steering cross-functional initiatives from conception through execution by pinpointing both immediate and long-term enhancements to our revenue operations processes. If you're eager to amplify your impact through data, systems, and strategy—and witness that impact daily—this position is tailored for you.

May 1, 2026

Apply

Program Manager (CapEx)

WHOOP

Full-time|On-site|Boston, MA

At WHOOP, we're dedicated to transforming the landscape of human performance. Our innovative platform empowers individuals to optimize their potential through a profound understanding of their physiological data and daily activities.As a pivotal Capital Expenditure Program Manager within our Technical Program Management (TPM) team, you will be instrumental in enhancing our global manufacturing capabilities by converting capital investments into impactful production infrastructure. Your leadership will guide capital planning and execution throughout the entire product lifecycle. Collaborating closely with engineering, operations, and finance, you will ensure the provision of cutting-edge equipment, refined processes, and operational readiness essential for both new product introductions (NPI) and continuous improvement (CI) initiatives. This is a dynamic role for a strategic leader who excels at the intersection of product development and manufacturing operations, with a proven ability to manage risks, align diverse stakeholders, and drive rapid execution in a fast-paced environment.

Jul 15, 2025

Apply

Pricing and Operations Specialist at IFS Ultimo | Boston

IFS Ultimo

Full-time|Hybrid|Boston

About the RoleJoin the dynamic team at IFS Ultimo as a Pricing & Operations Specialist, where you will be pivotal in driving commercial success within our rapidly expanding SaaS business.This role is situated at the crossroads of Deal Desk, Pricing Governance, and Sales Operations, ensuring that our commercial agreements are structured optimally, priced strategically, and executed proficiently. Collaborate closely with Sales, Finance, Business Operations, and Leadership to harmonize revenue growth with margin discipline and operational excellence.To thrive in this position, you must exhibit strong commercial acumen, meticulous attention to detail, and the capability to navigate confidently within a fast-paced SaaS environment where agility and structure go hand in hand.This is a hybrid position, preferably based in North America, facilitating cross-functional collaboration across Sales, Deal Desk, Finance, Sales Operations, and Leadership.Key ResponsibilitiesDeal Desk & Pricing GovernanceEvaluate and structure commercial proposals to ensure alignment with pricing strategies, margin objectives, and approval protocols.Serve as a primary resource for complex deal support, advising Sales on pricing frameworks, discount parameters, and commercial conditions.Uphold pricing policies and approval processes, guaranteeing consistency and governance across various regions.Analyze discounting patterns, deal efficacy, and pricing anomalies, offering insights and recommendations to leadership.Assist with renewals and pricing for expansions as necessary, ensuring alignment with our commercial strategy.Sales Operations & Commercial ExecutionSupport forecasting initiatives through pipeline validation and oversight of deal hygiene.Ensure the integrity of CRM data, the accuracy of opportunities, and the proper documentation of commercial approvals.Partner with Business Operations to enhance sales processes, accuracy in reporting, and system workflows.Assist in the management of sales incentives and the validation of commissions where applicable.Maintain comprehensive documentation of commercial policies, approval matrices, and operational protocols.Commercial Insights & Process ImprovementConduct analyses on pricing performance, win/loss data, and monetization trends to drive continuous improvement.Identify bottlenecks in deal cycles and propose enhancements to boost sales velocity.Support pricing and packaging initiatives through structured data analysis.

Mar 3, 2026

Apply

Field Operations Specialist

Mercury Business Services

Full-time|On-site|Boston Massachusetts United States

Join our dynamic Express Small Package team in the heart of Downtown Boston as a Field Operations Specialist. At Mercury Business Services, we pride ourselves on delivering exceptional logistics solutions tailored to meet the unique needs of our clients.With over 40 years of experience, our company specializes in the timely and temperature-sensitive shipping requirements of the healthcare, life sciences, technology, and professional services sectors. We are committed to our core values of Customer First, Extreme Ownership, Relentless Improvement, Band-aids and Stitches, and Humility.As a member of our team, you will enjoy a collaborative environment where personal attention to our clients is paramount, moving away from the traditional impersonal call center experience.This position requires a commitment to a 10:30 AM to 6:30 PM shift, assisting in various activities within our Squads and Express Packages team.

Feb 28, 2026

Apply

Senior Manager, Clinical Compliance & Inspection Readiness

Olema Pharmaceuticals

Full-time|On-site|Boston, Massachusetts

Join Olema Pharmaceuticals as a Senior Manager, Clinical Compliance & Inspection Readiness, where you will play a pivotal role in ensuring our clinical operations meet the highest standards of compliance and readiness for inspections. You will lead initiatives that drive adherence to regulatory requirements and best practices, helping us bring innovative therapies to patients efficiently and safely.

Apr 3, 2026

Apply

Senior Manager, Quality Document Control and Compliance

Olema Oncology

Full-time|$150K/yr - $160K/yr|On-site|Boston, Massachusetts

At Olema Oncology, we are committed to innovating and advancing the field of breast cancer treatment and beyond. Our flagship program, palazestrant (OP-1250), is a pioneering complete estrogen receptor antagonist (CERAN) currently in development for metastatic breast cancer, showcasing significant potential as both a standalone therapy and in combination with other treatments for ER+/HER2- metastatic breast cancer. Additionally, our subsequent product candidate, OP-3136, is a KAT6 inhibitor that stands out as best-in-class.We believe that our scientific achievements are propelled by a collaborative environment where we support, inspire, and challenge each other. At Olema, prioritizing the well-being of our team translates into exceptional results. If you are ready to be part of a transformative journey that deeply impacts the lives of our patients and enhances your career, we invite you to join us.For more insights, please check our latest corporate presentations here.About the Role: Senior Manager, Quality Document Control and ComplianceThe Senior Manager of Quality Document Control and Compliance will be a key player in our operations, reporting directly to the Director of Quality Systems. This role will oversee the daily operations of Veeva Vault QDocs, leading document management processes and ensuring compliance standards are met. Responsibilities include but are not limited to the creation and processing of document change control documentation in Veeva QDocs, management of standard operating procedures (SOPs), and GXP documentation, as well as overseeing GXP record processing and archival. You will also be responsible for maintaining document control compliance KPIs and generating metrics for management review.This position is based in our Boston, Massachusetts office and may require approximately 15% travel.Your primary responsibilities will encompass:Acting as the Veeva Vault QDocs Administrator and document control manager.Processing document change control (DCC) for GxP controlled documents in Veeva.Formatting finalized documents to adhere to effective templates.Proofreading and finalizing documents for processing in Veeva QDocs.Collaborating closely with various functional areas to develop, update, manage, and maintain GxP controlled documents.

Apr 9, 2026

Apply

Senior Technical Program Manager II

Compass

Full-time|$128.5K/yr - $193K/yr|On-site|Boston

At Compass, we are dedicated to helping individuals discover their ideal place in the world. Since our inception in 2012, we have been transforming the real estate landscape with our comprehensive platform that enables residential real estate agents to provide unparalleled service to both sellers and buyers.As a Senior Technical Program Manager in Enterprise Technology, you will lead pivotal initiatives throughout Compass. Your responsibilities will encompass a broad spectrum of projects, from implementing advanced technical enhancements to managing third-party SaaS integration and standardizing operational processes and metrics. Your focus will be on optimizing execution, enhancing efficiency, and ensuring consistency while resolving dependencies, assessing technical risks, tracking progress, and communicating effectively with executive stakeholders.Key Responsibilities:Steer high-impact initiatives focused on developing new products and platforms for Compass.Oversee the complete life cycle of key programs, coordinating functional plans, liaising with stakeholders, and resolving issues to ensure minimal disruption to daily operations.Manage relationships and configurations with third-party software to ensure scalability and efficiency of our systems.Collaborate closely with product, design, engineering, and operations leadership while keeping executive management informed on progress and risks.Drive strategic planning and execution of significant programs within product development teams, working alongside infrastructure and cross-functional groups across the organization.Plan, manage, and deliver multiple technical programs across various organizations and locations, including mergers and acquisitions initiatives.Contribute significantly to the agile practices at Compass and participate in high-level planning on both quarterly and annual bases.Promote operational excellence and continuous process improvements throughout the organization.Utilize data and metrics to create clarity and drive decision-making through well-crafted narratives for both executives and teams.Develop Standard Operating Procedures (SOPs) to standardize and scale technical operations for ongoing improvement.

Apr 2, 2026

Apply

Risk Manager II

dstaff

Full-time|On-site|Boston

We are seeking a proactive and detail-oriented Risk Manager II to join our dynamic team at dstaff in Boston. In this role, you will be responsible for identifying, assessing, and mitigating risks that could hinder the reputation, safety, security, or financial prosperity of the organization. You will collaborate with various departments to develop risk management strategies and ensure compliance with regulatory requirements.

Nov 22, 2014

Create account — see all 1,080 results

Browse all companies, explore by city & role, or SEO search pages. View directory listings: all jobs, search results, or location & role pages.