Director - IT Governance, Risk, and Compliance

| San Francisco
Sorry, this job was removed at 2:29 p.m. (PST) on Tuesday, November 17, 2020
Find out who's hiring remotely in San Francisco.
See all Remote Operations jobs in San Francisco
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Come help us protect the world's most reliable on-demand, logistics engine for delivery! We're looking for a seasoned, passionate, and empathetic GRC Director to build our global GRC program and enable DoorDash’s three-sided marketplace of consumers, merchants, and dashers.

At DoorDash, the IT GRC team is integral to our continued growth and we work on everything from building compliance controls and assessing variable risk, to working with regulatory agencies and protecting our customer data. 

About the Team

As the Director of IT Governance, Risk, and Compliance you will work within the Information Security organization and report directly to the CISO. You will build the IT GRC function within DoorDash to develop information security policies and standards and ensure their compliance within the broader IT organization, set up a vendor management program and perform periodic assessments on high risk vendors, establish and manage a formal information security training and awareness program, and expand and enhance DoorDash’s IT risk program,

What You’ll Do

  • Develop information security policies and standards and align them with a security framework such as NIST 800-53 or ISO27001. Ensure compliance of these policies throughout the IT organization.
  • Establish a security and awareness training program and roll out specific training to teams who have critical roles or may have access to sensitive information.
  • Design and implement a vendor management program to assess the risk of new vendors and periodically assess vendors who have a high risk profile.  
  • Work with different stakeholders and external auditors to maintain up-to-date documentation for scoping, testing, and remediation of SOX IT general computing controls.  
  • Develop an IT risk assessment program using an industry accepted methodology with the intent of expanding and evolving it into an enterprise risk program.
  • Create and manage a data loss prevention program and work with security and applicable stakeholders to implement the appropriate technologies and define and monitor anomalous events.
  • Establish metrics for information security to understand the current effectiveness of their program and to provide transparency for senior leadership.
  • Partner with Legal to ensure that information security policies are aligned with privacy obligations as well as working with engineering to ensure that data subject rights can be exercised appropriately.

You will be excited about this opportunity because you will…

  • Join a growing company and grow right along with us.
  • Take on significant technical challenges and have a large impact.
  • Have the ability to shape and improve our Security culture.

We’re excited about you because…

  • You have at least 10 years experience in security or compliance with 5+ years in a management role. You have built and aligned teams to organizational compliance needs.
  • You have a deep understanding of risk management methodologies, frameworks, and principles (e.g. SOX, COBIT, NIST, CSA, ITIL, etc.) to evaluate and recommend the best approach to mitigating risk with best in class controls.
  • You are able to operate in a fast-paced environment and able to handle a number of simultaneous projects and tasks while demonstrating urgency and ownership to drive issues to completion.
  • You have strong ability to work with minimum direction and possess a high drive for results.
  • You are a leader, coach and enjoy creating opportunities for others.
  • You are organized and an excellent written and verbal communicator.

Nice to have...

Experience with these specific technologies or similar alternatives is not required but helpful.

  • Certifications highly desired (CISA, CIA, CISM, CISSP, CRISC, etc.) 
  • Bachelor’s degree in Computer Science, Engineering, or Information Management Systems

Why You’ll Love Working at DoorDash

  • We are leaders - Leadership is not limited to our management team. It’s something everyone at DoorDash embraces and embodies.
  • We are doers - We believe the only way to predict the future is to build it. Creating solutions that will lead our company and our industry is what we do -- on every project, every day. 
  • We are learning - We’re not afraid to dig in and uncover the truth, even if it’s scary or inconvenient. Everyone here is continually learning on the job, no matter if we’ve been in a role for one year or one minute.
  • We are customer obsessed - Our mission is to grow and empower local economies. We are committed to our customers, merchants, and dashers and believe in connecting people with possibility.
  • We are all DoorDash - The magic of DoorDash is our people, together making our inspiring goals attainable and driving us to greater heights. 
  • We offer great compensation packages and comprehensive health benefits.

About DoorDash

DoorDash is a technology company that connects customers with their favorite local and national businesses in over 4,000 cities and all 50 states across the United States and Canada. Founded in 2013, DoorDash empowers merchants to grow their businesses by offering on-demand delivery, data-driven insights, and better in-store efficiency, providing delightful experiences from door to door. By building the last-mile delivery infrastructure for local cities, DoorDash is bringing communities closer, one doorstep at a time. Read more on the DoorDash blog or at www.doordash.com

Our Commitment to Diversity and Inclusion

We’re committed to growing and empowering a more inclusive community within our company, industry, and cities. That’s why we hire and cultivate diverse teams of the best and brightest from all backgrounds, experiences, and perspectives. We believe that true innovation happens when everyone has room at the table and the tools, resources, and opportunity to excel.

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

Location

Our office is located in the SOMA district, walking distance to many restaurants, bars, and public transportation.

Similar Jobs

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about DoorDashFind similar jobs