Job Description
<h2 class="p1"><span class="s1">Role Description</span></h2>
<p><span class=" author-d-iz88z86z86za0dz67zz78zz78zz74zz68zjz80zz71z9iz90za3z122z0z66zgn83az70zdrccz89zz68zhez66z57z82zh65z77zz68zz72z9b">As a</span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z"> Risk &amp; Governance</span> <span class=" author-d-4z65zz66zl57z75zyiz66zfr2fz87zwz89znuiz90zz70zz75zqis9yaahxz68zez82znvyz88zhz89zz80zcz73z7rue5">Manager</span> <span class=" author-d-iz88z86z86za0dz67zz78zz78zz74zz68zjz80zz71z9iz90za3z122z0z66zgn83az70zdrccz89zz68zhez66z57z82zh65z77zz68zz72z9b">at Dropbox, you will join </span><span class=" author-d-42z69zz85zx9z84zz79zvz66zz71z4yz65zz67znhz79zc79z122z9s5z65zz82zel9v6esz80zz122zlz68zz74zz122zz81zvw2z71z">the </span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Governance, Risk, &amp; Compliance</span> <span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z h-lparen">(GRC)</span> <span class=" author-d-iz88z86z86za0dz67zz78zz78zz74zz68zjz80zz71z9iz90za3z122z0z66zgn83az70zdrccz89zz68zhez66z57z82zh65z77zz68zz72z9b">team</span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qotv4edaz83zsz70zvz66zycxm6z122zz75zkz122zz65zaogz71zz80zz75zmvqz84z9">, </span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">you will help mature and scale programs that enable Dropbox to make thoughtful, risk-informed decisions. This is a broad, cross-functional role supporting multiple areas of the </span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qotv4edaz83zsz70zvz66zycxm6z122zz75zkz122zz65zaogz71zz80zz75zmvqz84z9">GRC</span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z"> program, including enterprise risk management, AI governance, business resilience, third-party risk, internal controls, audit readiness, and risk reduction initiatives.</span></p>
<p><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qotv4edaz83zsz70zvz66zycxm6z122zz75zkz122zz65zaogz71zz80zz75zmvqz84z9">You will partner closely with teams across Security, Privacy, Engineering, Product, Legal, and Compliance to identify, assess, prioritize, and reduce risk across Dropbox’s products, services, and operations. This role is ideal for someone who enjoys working across domains, can bring structure to ambiguous problems, and is comfortable translating complex technical, regulatory, and business considerations into practical governance programs.</span></p>
<p><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Additionally, you will be responsible for </span><span class=" author-d-42z69zz85zx9z84zz79zvz66zz71z4yz65zz67znhz79zc79z122z9s5z65zz82zel9v6esz80zz122zlz68zz74zz122zz81zvw2z71z">implementing programs and controls to help us maintain user trust and adhere to Dropbox’s AI principles</span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z"> and trust policies</span><span class=" author-d-42z69zz85zx9z84zz79zvz66zz71z4yz65zz67znhz79zc79z122z9s5z65zz82zel9v6esz80zz122zlz68zz74zz122zz81zvw2z71z">. You will help both Dropbox and our customers make informed decisions about the use of AI products and services</span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">.&nbsp;</span></p>
<h2 class="p1"><span class="s1">Responsibilities</span></h2>
<p><span class="ace-all-bold-hthree"><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qotv4edaz83zsz70zvz66zycxm6z122zz75zkz122zz65zaogz71zz80zz75zmvqz84z9">Governance Program </span><span class="thread-812056247394137410811310 attrcomment attrcommentfirst thread-812056247394137410811310-first author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qotv4edaz83zsz70zvz66zycxm6z122zz75zkz122zz65zaogz71zz80zz75zmvqz84z9"><span class="comment-extra-inner-span">Management</span></span></span></p>
<ul class="listtype-bullet listindent1 list-bullet1" data-testid="bullet-list" data-test-indentation="1">
<li><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Support the design, implementation, and continuous improvement of Dropbox’s Governance, Risk, and Compliance programs, including quantitative risk management</span> <span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z h-lparen">(FAIR),</span><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z"> governance, controls, compliance readiness, issue management, and risk reporting.</span></li>
<li><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Plan and execute risk assessments, gap analyses, certification readiness activities, compliance reviews, and audit support processes across areas such as security, privacy, AI, reliability, third-party services, and operational risk.</span></li>
<li><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Partner with cross-functional stakeholders to identify risks, assess impact and likelihood, define mitigation plans, assign owners, and track risk reduction efforts through completion.</span></li>
<li><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Drive risk reduction projects that strengthen Dropbox’s control environment, improve operational maturity, and help teams make risk-informed decisions.</span></li>
<li><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Coordinate improvements to internal risk management systems, workflows, documentation, reporting, and policies to increase consistency, transparency, and program effectiveness.</span></li>
<li><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Collaborate with internal and external auditors throughout compliance engagements, including evidence collection, stakeholder coordination, gap remediation, and management reporting.</span></li>
<li><span class=" author-d-1gg9uz65z1iz85zgdz68zmqkz84zo2qoxwexwz73zz67z5060z122zz90ziz85zz80zz78zgyz81ziz84zz65zz79zz78zz71ztabshz65z">Support risk reviews of third-party service providers and help connect third-party findings to broader enterprise risk, compliance, and customer trust objectives.</spa
