Security Governance Manager

Trust and Security
Boston, Massachusetts
Full-Time

Security Governance Manager

Trust and Security
Boston, Massachusetts
Full-Time

Who we are

Stavvy is transforming how business is conducted remotely by making complex legal and financial transactions easier, safer, and more accessible to all. Whether we are working to enable title companies to facilitate remote closings in a safe way, better connecting lenders with the businesses they use during the home buying process, or building the next set of tools for the platform, Stavviators (our employees) are disruptors at heart. Our team is constantly iterating, solving problems, and working together to simplify life's defining moments. If you want to help power the paperless revolution, join us at Stavvy!

Who you are

You are an accomplished and skilled Security Governance Manager with 6+ years in GRC and demonstrated experience with security audits, security control assessments, risk assessments, and/or compliance program management. You also have proven experience with security standards and frameworks such as ISO 27001, SOC 2, and NIST CSF.


As an excellent communicator, your problem solving skills and attention to detail combined with your strong ability to plan and prioritize have allowed you to successfully execute projects both independently and in coordination across teams.

What the role is

In the Security Governance Manager role, you will be an integral part of the Trust and Security team, responsible for SOC 2 audit accountability and Stavvy’s compliance frameworks. You will support our VP, Trust and Security in maintaining  compliance certifications such as SOC2 and driving business growth by earning the trust and confidence of potential customers.

In this role you will:

  • Be responsible for SOC 2 audit accountability. Handle compliance and security related requests for information internally and externally from auditors, vendors, and customers
  • Research and implement other compliance frameworks that Stavvy may pursue (such as ISO2700)
  • Create and document risk methodologies and maintain risk registers
  • Work across teams to lead risk assessment and drive risk mitigation projects.

Our office is also currently located in Newton, MA with an anticipated move date to Boston this coming December. We currently have limited capacity in-office due to the Covid-19 pandemic. We are currently accepting candidates who live near or are looking to move within the commutable vicinity of Boston, MA. This job will start remote but be expected to be in office when the new location opens to foster collaboration with team members and fellow Stavviators.

What We Offer:

Apply to PositionBack to Careers