We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
#alert
Back to search results
New

Principal, Cybersecurity & AI GRC

Panda Restaurant Group Inc
vision insurance, paid time off, 401(k)
United States, California, Rosemead
1683 Walnut Grove Avenue (Show on map)
Jul 08, 2026

Summary of Job Description:

The Principal, Cybersecurity & AI GRC is a strategic advisor responsible for defining and sustaining enterprise-wide frameworks across AI risk, privacy, regulatory compliance, and technology and cyber risk.Reporting to the Head of Cybersecurity and Risk, this role establishes long-term direction, decision models, and guardrails that enable AI and data-driven innovation to align with Panda's values, regulatory obligations, and business objectives.The role is a principal-level enablement, oversight, and influence role that ensures teams can make informed, consistent decisions while protecting guests, associates, and the brand.Principle responsibilities include enterprise AI enablement strategy and operating model, Integrated GRC and privacy enablement, clear decision ownership, escalation, risk tolerance frameworks, and safe, compliant, and scalable AI adoption.

Job Responsibilities:

  • Defines and evolves enterprise digital trust and AI enablement strategy, frameworks, and operating model and advises senior leadership on AI risk, privacy posture, and tradeoffs using business-relevant language.
  • Establishes policies and standards for responsible AI, privacy, data usage, transparency, and human oversight.
  • Integrates AI risk, privacy, and compliance into enterprise GRC and risk management processes.
  • Defines risk classification, approval workflows, and lifecycle governance for AI and digital capabilities.
  • Establish clear decision ownership, escalation models, and risk tolerance frameworks across the enterprise
  • Leads enablement for high-risk, high-impact AI, data, and digital initiatives.Enables Product, Engineering, Analytics, and Business teams with clear, practical, and actionable guidance.
  • Defines and manages risk acceptance, exception handling, and escalation processes for AI and technology risk.
  • Partners with Legal and Privacy to operationalize regulatory requirements impacting AI, data, and automation.
  • Influences platform, vendor, and tooling strategy related to AI capabilities and embedded AI features.
  • Represents digital trust, AI, and privacy enablement in enterprise architecture, risk, and investment forums.

How we reward you:

  • Hybrid Work schedule
  • 401K with company match
  • Yearly bonus opportunity*
  • Full medical, dental, and vision insurance *
  • On-site fitness center, biometric screen, and flu shot clinic
  • Discounts at Panda restaurants, theme parks, and gym memberships
  • Paid time off starting at 15 days with 7 federal holidays*
  • Continuous education assistance and scholarships*
  • Income protection including Disability, Life and AD&D insurance*
  • Bereavement leave*

*Benefits available for eligible permanent full time associates

Your background & experience:

  • Bachelor's degree in Computer Science, Business, or an IT-related discipline
  • Minimum seven years of experience in GRC, privacy, security, enterprise risk, or technology enablement with increasing management responsibility; experience performing or leading: enterprise/security risk assessments, control design/testing, policy and standards development, TPRM programs, compliance/regulatory readiness programs, AI governance program design and implementation as well as experience in AI governance and compliance frameworks (NIST AI RMF, EU AI Act, ISO 42001), including AI risk classification, algorithmic impact assessments, responsible AI principles, and practical application within enterprise or client-facing advisory engagements
  • Demonstrated expertise implementing and operationalizing cybersecurity frameworks and control programs: NIST CSF / NIST 800-53, ISO 27001/27002, CIS, NIST AI RMF, ISO 42001
  • Successful completion of initial and periodically required trainings.
  • Obtaining a valid Food Handler's Card within 30 days of employment is a requirement of this position.

Pay Range: M3H: $157,000 - $220,000 / Annual

* Within the range, individual pay is determined using various factors, including work location and experience.

#LI-Hybrid

Panda Strong since 1983:

Founded in Glendale, California, we are now the largest family-owned American Chinese Restaurant concept in America. With close to 2,800 locations globally, we continue our mission of delivering exceptional Asian dining experiences by building an organization where people are inspired to better their lives. Whether it's impacting our team or the communities we work in, we're proud to be an organization that embraces family values.

You're wanted here:

Panda Restaurant Group, Inc. is an Equal Opportunity Employer and is committed to providing equal opportunity, and does not discriminate on the basis of any characteristic protected by law, including but not limited to sex/gender (including pregnancy, childbirth, lactation and related conditions), gender expression, race, color, religion, national origin, sexual orientation, gender identity, disability, age, ancestry, medical condition, genetic information, marital status, and veteran status. Additionally, Panda Restaurant Group, Inc. complies with all federal, state, and local laws regarding requests for workplace accommodation.The Americans with Disabilities Act (ADA) prohibits discrimination against qualified individuals on the basis of disability.Applicants are entitled to reasonable accommodations, absent undue hardship, to effectively participate in the application and hiring process, for example, sign language interpreters.If you believe you require an accommodation for the application or interview process or for the position for which you are applying, please reach out to TASupport@PandaRG.com.

Applied = 0

(web-77cf7d65c7-jdxdg)