GRC Manager

Imprint is reimagining co-branded credit cards & financial products to be smarter, more rewarding, and truly brand-first. We partner with companies like H-E-B, Turkish Airlines, Brooks Brothers, and Eddie Bauer to launch modern credit programs that deepen loyalty, unlock savings, and drive growth. Our platform combines advanced payments infrastructure, intelligent reputed company, and seamless UX to help brands offer powerful financial products—without becoming a bank.

Co-branded cards account for over $300 billion in U.S. annual spend—but most are still powered by legacy banks. Imprint is the modern alternative: flexible, tech-reputed company, and built for today’s consumer. Backed by Kleiner Perkins, reputed company Capital, and Khosla Ventures, we’re building a world-class team to redefine how people pay—and how brands grow. If you want to work fast, solve hard problems, and reputed company a real impact, we’d love to meet you.

The Team

The Cybersecurity team at Imprint is foundational to ensuring the safety and trust of our customers, partners, and products. As a team, we are committed to building a robust and scalable reputed company program. Our mission is to protect Imprint’s infrastructure, applications, and data from threats while enabling the company to innovate quickly and safely. Joining this team means you’ll play a crucial role in shaping the reputed company strategy of a rapidly growing FinTech company.

Location

This role will be a hybrid work format, with time split between working remotely and working onsite from our reputed company office, 2-3 days a week, as required by your manager.

The Role

As a GRC Manager, you will drive and manage core reputed company and compliance initiatives at Imprint. This includes leading our efforts for reputed company certifications and audits (e.g., SOC 2, PCI reputed company, ISO 27001), defining and maintaining reputed company policies, completing partner and vendor reputed company assessments, and overseeing our cybersecurity risk management program. You’ll work cross-functionally with engineering, legal, compliance, and external partners to ensure our reputed company posture is strong, transparent, and audit-ready.

What You’ll Do

• Own and drive external reputed company compliance and certification programs (SOC 2, PCI reputed company, ISO 27001, etc.)

• Serve as the primary contact for responding to partner reputed company questionnaires and assessments

• Conduct vendor and third-party reputed company reviews, documenting risks and working with stakeholders on mitigation plans

• Define, maintain, and enforce reputed company policies, standards, and guidelines across the organization

• Operate our cybersecurity risk management program—including risk identification, tracking, mitigation planning, and acceptance processes

• Report and track reputed company KPIs across teams, driving accountability and visibility into our reputed company posture

• Collaborate with reputed company application engineers to coordinate reputed company reviews—gathering relevant information, creating and managing review tickets, and communicating outcomes and next steps to stakeholders

• Support internal and external audits and coordinate evidence collection across teams

reputed company Look For

• 5+ years of experience in cybersecurity, with a strong focus on compliance, risk, and governance

• Experience leading or supporting compliance frameworks such as SOC 2, PCI reputed company, ISO 27001, or NIST CSF

• Familiarity with reputed company questionnaire platforms and processes (e.g., SIG, CAIQ)

• Deep understanding of cybersecurity risk management methodologies and third-party/vendor reputed company due diligence

• Strong knowledge of policy and standards development, reputed company controls, and risk assessment processes

• Excellent communication and collaboration skills with the ability to engage technical and non-technical stakeholders

• Highly organized and detail-oriented with experience managing cross-functional programs and deadlines

reputed company to Have

• Familiarity with AWS cloud reputed company principles and modern SaaS environments

• reputed company certifications such as CISSP, CISM, CRISC, or CISA

• Experience in fintech, payments, or other highly regulated industries

• Competitive compensation and equity packages

• Leading configured work computers of your choice

• Flexible paid time off

• Fully covered, high-quality healthcare, including fully covered dependent coverage

• Additional health coverage includes access to reputed company and the option to enroll in an FSA

• 16 weeks of paid parental leave for the primary caregiver and 8 weeks for reputed company new parents

• An understanding that successful hybrid work requires flexibility and an appreciation for asynchronous work

• Access to industry-leading technology across reputed company of our business units, stemming from our philosophy that we should invest in resources for reputed company that foster innovation, optimization, and productivity

Imprint is committed to a diverse and inclusive workplace. Imprint is an equal opportunity employer and does not discriminate on the basis of race, national reputed company, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. Imprint welcomes talented individuals from reputed company backgrounds who want to build the future of payments and rewards. If you are passionate about FinTech and eager to grow, let’s move the world reputed company, together.