GRC Data Analytics Tooling & Automation (Integrity / Security)

We are creating an operationally effective and highly efficient "service of common concern" for all Integrity, Security, Support, and Operations (ISSO) Governance, Risk, and Compliance (GRC) needs, ensuring Integrity, Security, Support, and Operations continue to meet global regulatory requirements and manage risk. Meta's ISSO GRC is the central engine driving risk management and compliance at the company, supporting Meta and the family of apps. GRC Data Analytics, Tooling & Automation is a critical component of supporting integrity and security risk domains and supports all GRC services and functions, increasing operational efficiencies, productivity, effectiveness and enabling data driven risk insights.We're seeking deeply experienced talent with integrity and security background to help drive efficiencies through automation, enable and safeguard Meta's products and services which have a truly global scale. Our goal is to make Meta the premier place to work for governance, risk, compliance, security, and integrity professionals.

• Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, obtain prioritized deliverables, and discuss program impact.
• Prioritize program goals, understand and translate other stakeholders' needs into program goals and prioritized deliverables with minimal assistance, and contribute to decisions on prioritizing goals and deliverables.
• Define the scope of projects and develop, execute, and/or manage project plans for supported program(s).
• Review key metrics pertaining to a program, monitor potential metric deviations, and define corrective actions for critical deviations.
• Identify and implement opportunities for increased automation across the program factoring in emerging regulations and proactive detection of risks.
• Increase integration of systems to provision simplified engagements for the business, consolidated and efficient workflows, and consumable view of risk for leadership.
• Understand data needs of GRC services and functions, identify data sources, develop data models, and aggregate, sanitize and transform data.
• Translate GRC tooling and automation requirements into engineering user stories and partner with engineering teams to design and implement GRC and continuous monitoring solutions.
• Partner with data engineering to develop reports/dashboards to provide trends, metrics, and risk insights.
• Identify, communicate, and collaborate with relevant stakeholders within one or more teams to drive impact and work toward mutual goals.
• Establishment of learnings, best practices, standardized frameworks and tools across programs and projects.
• Preparation of the detailed program/project plan along with the "services of common concern."
• Establishment of communication modes and cadences with various stakeholders, conducting planned and ad-hoc meetings with various stakeholders to ensure project milestones are on track and to communicate latest status to them, and sharing of meeting minutes and regular updates with various stakeholders.
• Identification of risks and detailing of mitigation plans to ensure that the projects stays on track, or are brought back on track in the event of delays or blockers.
• Support business travel on an as needed basis (up to 10%).

• 4+ years of experience with designing or implementing GRC tools, continuous controls monitoring solutions, data analytics and reporting.
• 5+ years program management experience in a corporate environment.

• Advanced degree and/or certification.
• 3+ years of experience in information security, cybersecurity, transparency reporting, integrity, and/or technology risk including one or more domains.
• Experience with in-house built or commercial GRC tools (e.g. ServiceNow, etc.), and driving complex projects with process and technology changes.
• Experience with reporting tools (e.g. Tableau, etc.).