Governance, Risk

RENKIM IS A 100% EMPLOYEE-OWNED COMPANY IN SOUTHGATE, MI. AFTER 1 YEAR OF EMPLOYMENT YOU BECOME AN OWNER AND ARE ELIGIBLE FOR COMPANY STOCK COME JOIN OUR GREAT TEAM

We provide 15 PTO days in your first year (after 3 months of employment), 7 paid holidays and employer provided life insurance, short & long term disability insurance plus several voluntary benefits.

Monday - Friday schedule. Serious and qualified candidates only please

Job Summary:

The Governance, Risk & Process Lead is a senior individual contributor responsible for operationalizing RKM's compliance program through disciplined process discovery, SOP documentation, and ongoing governance execution. This role serves as the connective tissue between day-to-day operations and formal compliance requirements, ensuring that documented controls reflect real practices and that evidence is continuously audit-ready.

This role does not perform independent audits or provide formal compliance opinions. Instead, it enables successful external audits (SOC 2, PCI, HIPAA) by maintaining strong internal governance, control ownership, and process integrity.

Essential Duties:

Process Discovery & SOP Management

· Partner with business, operations, IT, and security teams to identify undocumented or inconsistently executed processes.

· Facilitate process walkthroughs and interviews to surface actual practices versus assumed workflows.

· Document, standardize, and maintain Standard Operating Procedures (SOPs) using approved templates.

· Ensure SOPs remain current as systems, tools, or business processes evolve.

· Identify opportunities to streamline or strengthen processes while maintaining compliance alignment.

Governance & Control Execution

· Maintain the organization's control inventory across SOC 2, PCI DSS, and HIPAA frameworks.

· Map controls to SOPs, systems, and control owners.

· Establish and run governance cadences (quarterly, annual) for control execution and review.

· Track control performance, exceptions, and remediation activities.

· Support targeted risk analyses by ensuring process-level inputs are accurate and current.

Audit Readiness & Evidence Coordination

· Coordinate evidence collection in advance of external audits.

· Pre-review evidence for completeness, accuracy, and alignment to control intent.

· Act as a primary day-to-day liaison to external auditors under the direction of the Compliance Manager.

· Track audit requests, responses, findings, and remediation commitments.

· Help ensure audit artifacts are repeatable, organized, and defensible year over year.

Cross-Functional Enablement

· Educate control owners on their responsibilities and expected outcomes.

· Reinforce accountability for process execution without owning the underlying operations.

· Partner closely with the Compliance Manager on program priorities, risk areas, and reporting.

Other

· Regular and prompt attendance at work, and work overtime when necessary.

· Remote work allowed as determined by Supervisor.

· Professional and respectful conduct and communication at all times in the workplace; and at work-related events.

· Sitting for long periods of time.

· Operate standard office equipment

· Able to see monitor and use keyboard/mouse.

· All other duties as assigned by Renkim Management.

Qualifications/Experience

· High school diploma required. Bachelor degree in related field preferred.

5–8 years of experience in governance, risk, compliance, business analysis, operations, or a related discipline.

· Demonstrated experience documenting SOPs and operational processes in regulated environments.

· Hands-on experience supporting external audits (e.g., SOC 2, PCI DSS, HIPAA) from the company side.

· Strong understanding of control-based frameworks and how controls translate into real-world processes.

· Ability to work cross-functionally and influence without formal authority.

· Excellent written documentation and verbal communication skills.

Preferred Qualifications

· Experience in regulated service environments handling sensitive data (e.g., PII, PHI, financial data).

· Familiarity with SOC 2 Trust Services Criteria, PCI DSS, and HIPAA Security Rule concepts, and NIST

· Background as a senior business analyst, GRC analyst, or compliance consultant.

· Experience building or maturing governance programs rather than inheriting fully mature ones.

Required Skills/Abilities:

· Process-oriented and detail-driven, without losing sight of business practicality.

· Comfortable asking probing questions and validating how work is actually performed.

· Organized, disciplined, and capable of managing multiple governance cycles simultaneously.

· Pragmatic mindset that balances compliance requirements with operational reality.

· Trusted partner to both Compliance leadership and operational teams.

Pay: $75, $90,000.00 per year

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Flexible spending account
• Health insurance
• Life insurance
• Paid time off
• Vision insurance

Work Location: Hybrid remote in Southgate, MI 48195

Salary : $90,000