Manager, Security Governance, Risk and Compliance

At Coretelligent, we take ownership of the technology our clients rely on every day.

We partner with growing, highly regulated organizations that need secure, dependable IT environments built to scale. Our role goes beyond support. We bring structure, clarity, and accountability to complex technology landscapes so leaders can move forward with confidence.

Over the past several years, Coretelligent has entered a new chapter. We have strengthened our leadership team, modernized our service delivery, and sharpened our focus on long-term client outcomes. Our work spans managed IT, cybersecurity, cloud, and strategy, delivered through a model designed for consistency, transparency, and trust.

We are building a team of professionals who care deeply about quality, ownership, and continuous improvement. If you value clear expectations, thoughtful collaboration, and work that genuinely matters to the businesses you support, you will feel at home here.

 

Job Overview

As a Manager, Security Governance, Risk and Compliance you will serve as both a trusted security advisor to clients and a people and delivery leader within Coretelligent’s vCISO practice. In addition to owning client cybersecurity and compliance programs, this role is responsible for leading and developing vCISO team members, ensuring consistent service delivery, and helping scale vCISO offerings as demand grows.

You will balance hands-on advisory work with coaching, quality oversight, and internal collaboration, acting as a point of escalation for complex client matters while maintaining strong executive presence with client stakeholders

Key Responsibilities:

• Serve as the primary vCISO and subject matter expert for multiple clients, advising executive stakeholders on cybersecurity strategy, risk management, compliance requirements, and security best practices
• Lead data-centric cybersecurity programs aligned to business risk, including risk assessments, gap analyses, remediation roadmaps, and ongoing security posture management
• Pivot the GRC team away from manual processes by integrating AI tools and automation workflows into day-to-day operations and client deliverables
• Develop, review, and maintain client security policies, procedures, business continuity plans, and governance documentation tailored to regulatory and business needs
• Review and interpret audit results, vulnerability assessments, and security reporting to identify threats, prioritize remediation, and reduce organizational risk
• Design and facilitate tabletop exercises and lead Third Party Risk Management initiatives to strengthen client preparedness and vendor security oversight
• Manage, mentor, and develop vCISO team members through onboarding, coaching, performance feedback, escalation support, and career development
• Oversee vCISO service delivery quality across accounts, ensuring consistent documentation, communication standards, and client satisfaction
• Collaborate cross-functionally with Security Operations, Compliance, Professional Services, and Account Management to align advisory recommendations with deliverable services
• Identify opportunities to expand vCISO engagements, contribute to service improvements and templates, and stay current on cybersecurity threats, technologies, and regulatory changes
• Partner with the VP of Cybersecurity to secure the Coretelligent environment

Required Skills and Qualifications:

• 7+ years of proven IT/security/compliance experience, including experience in a vCISO, Director of IT/Technology, Solution Architect, or senior-level IT role, with at least 3 years in a leadership role.
• Strong knowledge of cybersecurity frameworks and their practical implementation, such as the CIS Critical Security Controls, NIST CSF, CMMC, and Secure Controls Framework
• High-level understanding of security technologies, including firewalls, intrusion detection/prevention systems, SIEM, endpoint protection, etc.
• Familiarity with cloud security concepts and technologies (AWS, Azure, etc.)
• Must be willing to travel at times for critical client meetings (less than 5% travel)
• Relevant advanced certifications such as CISSP, CISM, CRISC, Security X (formerly CASP+), CCISO, or similar.

Preferred Skills:

• Experience in financial services and/or biotech/life sciences industries is strongly preferred
• First-hand experience with 3^rd party audits such as SOX, SOC 2, ISO, or PCI-DSS preferred
• Prior experience in a Managed Service Provider or IT Consulting environment preferred

 

Salary Range for this position (depending upon experience): 

$140,000 - $160,000

This range reflects the minimum and maximum targets for new hires across all US locations (with the exception of MA, NY, and CA). Within the range, individual pay is determined by job-related skills, experience, work location, and relevant education or training.

 

 

What you’ll love about Coretelligent:

We take Coretelligent culture very seriously! As a company, we constantly think of ways to give back to our valued employees through company engagement. We offer a competitive salary, amazing benefits, a great vacation package, a healthy work-life balance, and opportunities to grow your career from within!  

 

Benefits: Health, Dental, & Vision, Flexible Spending Account (FSA), 401k, Health Reimbursement Account (HRA), Health Savings Account (HSA), Life Insurance, Disability Insurance, Paid Parental Leave, Holiday Pay, Flexible Vacation & Sick Days.

Perks: Fourteen holidays, including a day off on your birthday, flexible vacation, monthly rewards, spot bonuses for demonstrated excellence, community and social events, learning and development, flexible working life, $100 standup desk allowance, and other health & wellness perks.

 

 

Equal Opportunity and Accessibility Commitment

Coretelligent is an Equal Opportunity employer committed to diversity, equity, and inclusion. We welcome qualified applicants of all races, ethnicities, religions, ages, sexual orientations, gender identities, socioeconomic statuses, and more. Our focus is on creating an inclusive workplace where diversity is valued beyond compliance, ensuring that every team member feels respected, supported, and empowered to be their authentic selves.

 

In compliance with the Colorado Anti-Discrimination Act (CADA), we do not request or consider age or age-adjacent information (such as graduation dates) during the hiring process. We encourage all qualified individuals to apply, regardless of age.

 

We extend our dedication to accessibility and inclusivity to our remote workforce. In alignment with the Americans with Disabilities Act (ADA), we are committed to providing reasonable accommodations to enable individuals with disabilities to effectively perform their job duties in a remote setting. Applicants needing accommodations for the application or interview process are encouraged to reach out to talent@core.tech for necessary arrangements.

 

E-Verify www.dhs.gov/E-Verify      

 

For information about the right to work, click here for English or here for Spanish.

E-Verify is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce. 

 

As Coretelligent is a remote company hiring candidates, our perks and benefits packages may adjust based on your location. Direct applicants only; no recruitment agencies or third-party recruiters, please.

#LI-Remote