Manager - Governance/Risk & Compliance

- Zenwork stands at the forefront of cloud/API-based Tax Automation and Governance, Risk Compliance (GRC) technology, pioneering the future of Tax Tech and GRC Automation.

- Our comprehensive suite of top-tier AI-SaaS solutions serve a vast clientele of over 500,000, providing effortless tax automation through our APIs for major enterprises.

- In terms of numbers, during the tax year 2022, we have reported over $413 Billion to the Internal Revenue Service, spanning over 30 million transactions for some of the globe's leading and most forward-thinking firms.

- As a rapidly expanding digital compliance AI-SaaS Product company, Zenwork boasts a customer base that spans all sizes, partnering with industry giants like Intuit, Bill.com, Xero, and Sage Intacct.

- Recognized as one of the fastest-growing companies in the US by Inc magazine and a consecutive Accountex award recipient, Zenwork has garnered significant acclaim.

- Backed by Spectrum Equity Partners, Zenwork has successfully raised over $163M in funding, maintaining profitability as a late-stage entity with operations in both the U.and India.

Role Overview:

- We are seeking a Governance, Risk & Compliance (GRC) Manager to drive Zenwork's compliance programs, manage external certifications (SOC, ISO), support customer assurance processes, and ensure organization-wide security governance.

- The ideal candidate will have a strong background in audits, policy management, risk assessment, and fraud risk in payment products.

What You'll Do:

- Audit & Certification Management.

- Lead SOC 2, ISO 27001, and other relevant audits.

- Coordinate with external auditors, regulators, and certification bodies.

- Maintain compliance documentation and evidence.

- Customer & Regulatory Compliance.

- Respond to customer security questionnaires and due diligence requests.

- Review and support Data Protection Agreements (DPAs).

- Ensure ongoing compliance with data protection and privacy regulations.

- Governance & Policy Management.

- Develop, update, and enforce information security and compliance policies.

- Drive company-wide security awareness and compliance training programs.

- Monitor adherence to internal controls and compliance frameworks.

Risk & Fraud Management:

- Conduct risk assessments across business units and products.

- Identify and mitigate fraud risks in Zenwork's Payments product.

- Apply AI/ML-driven techniques for fraud detection, anomaly identification, and transaction monitoring.

- Align risk management practices with frameworks (ISO 27005, NIST, etc.

AI & Automation in GRC:

- Evaluate and implement AI-based tools for compliance monitoring, document reviews, and reporting.

- Leverage AI to automate repetitive compliance tasks (e. , customer questionnaires, policy reviews).

- Drive innovation in security operations through intelligent automation.

Collaboration & Stakeholder Management:

- Work closely with Product, Engineering, Legal, and Operations teams.

- Act as a bridge between internal stakeholders and external auditors/customers.

- Provide regular compliance and risk reporting to leadership.

Qualifications & Skills.

Education:

- Bachelor's degree in commerce (B.Com), Information Security, or related field.

- Professional qualifications such as CPA, CISA, CISM, or CRISC are highly valued.

- Master's degree in information security, Risk Management, or MBA (preferred):

- CISA (Certified Information Systems Auditor).

- CISM (Certified Information Security Manager) or CRISC (Certified in Risk and Information Systems Control).

Experience:

- 5-7 years in information security, risk, compliance, or audit roles.

- Strong experience with SOC 2, ISO 27001, and regulatory compliance.

- Exposure to fraud risk management in payments/fintech (preferred).

- Proven track record of policy drafting, training, and compliance program management.

Skills:

- Strong knowledge of security and compliance frameworks (ISO, NIST, SOC).

- Excellent communication skills to handle customer and auditor interactions.

- Analytical mindset with the ability to identify and mitigate risks.

- Project management and cross-functional collaboration capabilities.

Why Join Zenwork?

- Opportunity to build and mature GRC practices in a fast-growing compliance tech company.

- Work on impactful products that enable organizations to remain secure and compliant.

- Collaborate with a passionate team that values innovation, integrity, and trust.

- Competitive compensation, benefits, and professional development support.