What are the responsibilities and job description for the GRC Manager position at Ria Money Transfer?
Description
Ria opens ways for a better everyday life. With a presence in nearly 200 countries and territories and more than 600,000 locations worldwide, we’re committed to helping millions of people send money home to their loved ones around the world, knowing that our customers deserve much more than just a fair price: they deserve empathy, hope, and ultimately respect.
We’re Ria Money Transfer. A subsidiary of Euronet Worldwide, Inc. (NASDAQ: EEFT), Ria is a leading expert in cross-border payments that delivers innovative financial services, including fast, secure, and affordable global money transfers. With the world’s largest cross-border real-time money movement network, Ria moves money where it matters. Bridging the gap between digital and physical spaces, Ria’s omnichannel products and services provide unprecedented consumer choice, including real-time payments, mobile wallets, currency exchange, home delivery, and cardless ATM payouts. Ria’s global infrastructure, powered by the Dandelion real-time, cross-border payments network, facilitates financial access to customers, agents and partners alike, by creating new market opportunities and promoting economic growth around the world.
Responsibilities
As a part of the Global Security GRC team that oversees and implements the cybersecurity GRC program, ensuring compliance with cybersecurity policies and security functions across the Money Transfer (MT) division (Ria, XE and Dandelion) for the Americas.
Ria values diversity and is proud to be an equal-opportunity employer. We provide equal opportunities to all employees and applicants, regardless of race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
Ria opens ways for a better everyday life. With a presence in nearly 200 countries and territories and more than 600,000 locations worldwide, we’re committed to helping millions of people send money home to their loved ones around the world, knowing that our customers deserve much more than just a fair price: they deserve empathy, hope, and ultimately respect.
We’re Ria Money Transfer. A subsidiary of Euronet Worldwide, Inc. (NASDAQ: EEFT), Ria is a leading expert in cross-border payments that delivers innovative financial services, including fast, secure, and affordable global money transfers. With the world’s largest cross-border real-time money movement network, Ria moves money where it matters. Bridging the gap between digital and physical spaces, Ria’s omnichannel products and services provide unprecedented consumer choice, including real-time payments, mobile wallets, currency exchange, home delivery, and cardless ATM payouts. Ria’s global infrastructure, powered by the Dandelion real-time, cross-border payments network, facilitates financial access to customers, agents and partners alike, by creating new market opportunities and promoting economic growth around the world.
Responsibilities
As a part of the Global Security GRC team that oversees and implements the cybersecurity GRC program, ensuring compliance with cybersecurity policies and security functions across the Money Transfer (MT) division (Ria, XE and Dandelion) for the Americas.
- You will develop, implement, and maintain robust security governance frameworks, information security policies, standards, and procedures that align with regulatory requirements and industry best practices.
- Ensure policies and procedures are harmonized across global operations, particularly in regions with strict financial regulations, such as the EU, the Americas, and Asia-Pacific.
- You will collaborate cross-functionally and partner closely with IT, Compliance, Privacy, Legal, Risk Management, and Internal Audit teams to ensure security programs support business objectives and comply with applicable laws, regulations, and contractual obligations. You will also liaise between technical teams and non-technical stakeholders to translate complex security requirements into actionable processes.
- Lead efforts to maintain and expand certifications such as ISO 27001 and SOC by ensuring compliance with all applicable controls.
- Support internal and external audits, control reviews, and risk assessments to ensure continuous compliance and readiness for regulatory inspections.
- Manage audit findings and ensure timely implementation of remediation plans to address identified gaps.
- Oversees the Third-Party Risk Management (TPRM) program to evaluate and monitor the security posture of partners, vendors, and providers, ensuring compliance with company security standards and regional regulatory requirements.
- Manage identifying, assessing, and mitigating security risks across IT and Security operations, focusing on financial services and payment systems and maintaining a centralized risk register, tracking risk mitigation activities, and reporting on the status of key security risks to the Global Security GRC Director.
- You will monitor compliance with regulatory frameworks (e.g., ISO 27001, PCI DSS, DORA, CCPA) and provide actionable insights to mitigate non-compliance.
- Develop and monitor the IT security compliance metrics, generating regular reports for internal stakeholders and regulators.
- Ensure that control testing and gap analysis are performed periodically and that corrective actions are completed effectively.
- Assists the IT team in executing GRC-related tasks, ensuring they meet security and regulatory requirements.
- Provide support in developing IT-specific governance models and IT compliance controls.
- Perform continuous improvement and training to keep abreast of technological advances, evolving threats, and emerging cybersecurity, financial services, and regulatory compliance standards.
- Provide training and awareness programs for staff, ensuring all employees understand their roles in maintaining compliance and security.
- Promote a culture of continuous improvement by identifying and implementing process enhancements to strengthen the security posture.
- Acts as an advisor to project teams, ensuring that new systems and services comply.
- You have a Degree in Information Security, IT or a similar field and 5 years of experience in information security, including governance, risk, compliance, and/or audit.
- You have experience in IT control assessments and compliance frameworks, such as ISO 27001, SOX, PCI-DSS, and SOC.
- Experience in leading and supporting Information Security audits.
- Advanced documentation, prioritization and change management skills.
- Excellent written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy. Spanish bilingual is preferred.
- You're critical thinking and have the ability to solve challenges.
- You have a positive, open attitude and are flexible, accountable, and organized.
- Comfortable working under your initiative while aligning with the team's strategy and direction.
- Ability to work in and contribute to a global and dynamic team-based environment.
- CISSP, ISO 27001 Lead Auditor, or CISA/CISM are desired certifications.
- Experience working in financial services with an emphasis on global payment systems, money transfer operations, and compliance with multi-jurisdictional regulations is a plus.
Ria values diversity and is proud to be an equal-opportunity employer. We provide equal opportunities to all employees and applicants, regardless of race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
Salary : $116,000 - $145,000
