Aderant is seeking a Manager of Governance Risk & Compliance (GRC).

Aderant is a global industry leading software company providing comprehensive business management solutions for law firms and other professional services organizations with a mission to help them run a better business. We are motivated by a collective desire to drive the legal industry to the forefront of innovation. With over 2,500 clients around the world, including 95 of the top AmLaw 100 firms, we are changing the outside perception of the legal sphere; where there was once resistance to modernization, we are creating a culture that embraces new ideas and technology.

At Aderant, the “A” is more than just a letter. It is a representation of how we fulfill our foundational purpose, serving our clients. It embodies our core values and reminds us that to achieve success, every day must start with the “A”. We bring the “A” to life by fostering a culture of innovation, collaboration, and personal growth. We encourage our diverse teams to bring their whole selves to work – ideas, experience, and passion – to drive our mission forward. Our people are our strength.

The GRC Manager will oversee security compliance efforts, manage third-party risk, and standardize compliance processes across Aderant’s product suite. This role will play a key part in maintaining SOC 2 compliance, driving automation in security processes, and serving as a client-facing security expert for contract negotiations and security assessments. Additionally, this role will lead and develop the GRC team, ensuring alignment with compliance objectives and fostering professional growth.

Qualifications

• 5+ years of experience in GRC, security compliance, or risk management within SaaS or a regulated industry.
• Deep understanding of SOC 2 Type II compliance and security frameworks (ISO 27001, NIST, etc.).
• Experience with compliance automation tools and improving compliance processes.
• Strong project management skills, particularly in Pen Testing, vendor management, and security audits.
• People management experience, with the ability to develop and support a high-performing compliance team.
• Client-facing experience, particularly with contract negotiations and security assessments.
• Excellent communication skills, with the ability to translate security concepts for both technical and non-technical stakeholders.

Preferred Qualifications

• Experience working with legal industry, SaaS, or enterprise clients on security compliance.
• Knowledge of privacy regulations (e.g., GDPR, CCPA) and data mapping processes.
• Familiarity with ticketing systems and automation tools for compliance processes.

Compliance & Risk Management

• Lead and manage SOC 2 compliance efforts, ensuring standardization across products.
• Oversee annual penetration testing (Pen Test) projects, coordinating with third-party vendors and internal teams.
• Drive compliance automation efforts, reducing manual processes and improving operational efficiency.
• Manage the security vendor risk assessment program, ensuring third-party compliance.

Security & Privacy Operations

• Oversee data mapping and ensure compliance with privacy regulations.
• Transitioning from manual efforts to an automated ticketing system.
• Work with various Aderant departments to effectively support clients.

Team Leadership & Development

• Lead and develop the GRC team, providing guidance on compliance initiatives and professional growth.
• Ensure team members have the resources, training, and support to effectively execute security governance functions.
• Foster a collaborative and high-performance team culture that aligns with Aderant’s security and compliance goals.

Client & Contract Management

• Serve as the security compliance lead in client engagements, handling security-related questions from large enterprise clients.
• Support MSA and contract negotiations (approximately 10% of the role), ensuring security compliance is well-represented in agreements.
• Act as a liaison between clients, sales, and legal teams on security-related topics.