Job Summary

• This role is a key member and manager of the GRC team responsible for collaborating with the business on GRC activities, administering GRC solutions, managing external and internal auditing activities, managing the Cyber Risk Management Program including third party vendor risk management and ensuring compliance objectives are being achieved across the organization.
• Responsibilities include managerial duties such as staffing, performance assessment, career path planning, training, and coaching/mentoring for all GRC team members, as well as evaluating control effectiveness, documenting results, and providing recommendations for improvements.
• The position requires 7+ years in an information security GRC role with at least 3+ years in a management or team lead role, strong knowledge of GRC programs, cybersecurity, networking, system and cloud technologies, and experience with risk assessment methodologies like FEDRAMP, NIST, and ISO.

Matching Summary

Salary

$103,000—$209,500 USD; Not specified; Not specified

Skills & Requirements

Key Requirements

• 7+ years in information security GRC role
• 3+ years in management or team lead role
• Experience with risk assessment methodologies
• Relevant technical/professional qualifications/certification (CISSP, CISM, CISA, ISO 27001)
• US Citizen

Work Rights