Job Details

Job Description

Where you'll work: United States; Eastern or Central Time Zones preferred

Security at GoTo

Everyone deserves to work in a safe and secure environment. That's why we're passionate about delivering secure, remote workforce products and services that prioritize the protection of business assets, customer data, and employee information. Our cybersecurity team builds security and privacy into everything we do, leveraging the SecDevOps methodology and fostering a culture of security and privacy. We're committed to creating products that are not only secure but also user-friendly and accessible to all. Join us and help us create a future where security meets simplicity.

The Director, GRC (Governance, Risk, & Compliance) is a key role in the Security organization of GoTo, reporting directly to the CISO. The role will be responsible for managing a comprehensive security governance function, including the areas of policies, standards; the area of risk management (risk analysis and risk maintenance); and the area of compliance (SOC2, ISO27001, PCI, C5, SOX, HIPAA).

Your Day to Day

As a Director of GRC, you would be working on :

• Program Design & Leadership -- Lead the development, implementation, and management of the organization's GRC (Governance, Risk, and Compliance) programs. Develop and maintain risk management frameworks and processes to identify, assess, and mitigate risks.

• Assessment, Audits & Compliance -- Ensure compliance with industry standards and regulations, including ISO27001, SOC2, C5, PCI-DSS, and SOX. Conduct regular security assessments, audits, and reviews to ensure ongoing compliance and identify areas for improvement.

• Strategic Advisory & Guidance -- Coordinate and collaborate with various business units to integrate security and compliance requirements into business processes. Provide strategic guidance and support to senior management on security and compliance matters.

• Security Culture & Posture -- Foster strong relationships with internal and external stakeholders to promote a culture of security and compliance. Stay up to date with the latest industry trends, threats, and technologies to ensure the organization's security posture remains robust.

What We're Looking For

As a Director of GRC, your background will look like:

• Bachelor's degree in Information Security, Computer Science, or a related field; advanced degree preferred. Relevant certifications such as CISSP, CISM, CRISC, or similar are highly desirable.

• Extensive knowledge and experience with ISO27001, SOC2, C5, PCI-DSS, and SOX. Strong risk management knowledge and experience, including the ability to develop and implement risk management frameworks.

• Excellent coordination and collaboration skills, with the ability to work effectively with diverse teams and stakeholders. Strong communication and interpersonal skills, with the ability to convey complex security and compliance concepts to non-technical audiences. Able to foster a collaborative and respectful working environment and build long-term business relationships with multiple areas and complex setups on a global scale. Practical approach to problem-solving and the ability to foster strong relationships with the business.

• Strong sense of accountability with the ability to work independently under the guidance and direction of the CISO with limited supervision. As GoTo is a global organization, good time management and covering a global organization is required.

At GoTo, inclusion and belonging are key to creating a thriving and dynamic work environment. Our team of GoGetters is driven to learn, explore, connect, and collaborate, valuing the unique perspectives that everyone brings to the table. We take pride in providing our employees with comprehensive benefits, wellness programs, recognition, and opportunities for learning and development worldwide. Our commitment to creating an inclusive space for everyone, regardless of gender, identity, or background, ensures that all team members can contribute to our success and thrive personally and professionally. Learn more ( . rpj

Annual Base Salary Range: $169,000.00 - $279,500.00

The above shows our ranges from minimum to maximum. Your compensation will be determined based on your location, experience, and the pay of employees in similar positions. You will also be eligible for a variable pay component and benefits.

GoTo, the leader in cloud communications and IT, is dedicated to powering a world of work without limits. Featuring flagship products GoTo Connect, LogMeIn Resolve, and LogMeIn Rescue, the GoTo portfolio offers secure, reliable, AI-enabled solutions that are simple to adopt for small and midsize businesses, and scalable to enterprises worldwide. GoTo continuously improves human experiences for AI-enabled workforces across hundreds of thousands of customers. The company is headquartered in Boston, Massachusetts, with approximately $1 billion in annual revenue and 2,800 employees throughout North America, South America, Europe, Asia, and Australia.

GoTo, Inc. is committed to providing equal opportunity in employment to all employees and applicants for employment. No employee or applicant shall be discriminated against in the terms and conditions of employment on the basis of race, color, religious creed, gender, sex, pregnancy, religion, marital or domestic partner status, age, national origin, ancestry, physical or mental disability (including AIDS/HIV), medical condition, sexual orientation, gender identity, gender expression, genetic information, military and veteran status, application for or denial of family and medical care leave and/or pregnancy disability leave, or any other basis protected by federal, state or local law or ordinance or regulation. GoTo, Inc. also prohibits discrimination based on the perception that anyone has one of these characteristics or is associated with a person who has or who is perceived as having any of those characteristics.