Visier gives organizations a Workforce AI Edge: a set of AI-powered capabilities that help leaders understand the relationship between people and work, elevate the productivity of their employees, and win by adapting to change faster. We’re a global leader in AI-powered people analytics, workforce planning, and compensation management solutions. All Visier technology is underpinned by its Real-time People Data Platform, which uses AI to unlock the business-transforming potential of people data, work data, and the fusion of both.
Founded in 2010 by the pioneers of business intelligence, Visier has over 60k customers in 75 countries - including enterprises like BASF, Panasonic, Experian, Amgen, eBay, Ford Motor Company, and more.
As our Manager, Information Security & GRC, you will be the architect and cornerstone of our integrated risk management and internal security programs. You will be responsible for safeguarding our corporate assets, data, and employees by developing and maturing our Governance, Risk, and Compliance (GRC) framework. This strategic leadership role requires a unique blend of technical security expertise and a deep understanding of business processes. You will not only manage our security posture but also ensure the entire organization makes risk-informed decisions aligned with our strategic objectives

• Develop and enforce security policies and procedures, establishing clear guidelines for everything from data handling to acceptable technology use.
• Implement and manage data protection and privacy measures to ensure compliance with relevant regulations.
• Align the security program with our overall GRC strategy, ensuring a unified controls framework that efficiently meets multiple compliance and governance requirements (e.g., ISO 27001, SOC 2, GDPR).
• Lead the incident response process, from initial detection and containment to eradication and recovery.
• Establish and manage the Enterprise Risk Management (ERM) program, including defining the corporate risk appetite, conducting risk assessments, and maintaining a central risk register.
• Educate employees on current threats and best practices to foster a company-wide security-conscious culture.
• Manage vendor and third-party risk, ensuring all external partners meet our security standards.
• Collaborate closely with IT and other departments to ensure security is seamlessly integrated into all corporate systems and processes.