A company is looking for a Director, GRC in NYC or Remote for their Engineering – Security team.
Key Responsibilities:
Monitor and mature GRC practices, including developing metrics and KPIs for improvement
Oversee a unified control framework and facilitate internal and external audits
Collaborate with various teams to ensure processes and controls are appropriately designed and implemented
Required Qualifications:
7+ years of Information Technology experience with a focus on Security, Privacy, Risk, and Compliance
CISSP, CIPP, CIPM or similar certification preferred
Deep understanding of security, privacy, control, cybersecurity incident response, and related standards
Familiarity with various control frameworks and best practices such as PCI-DSS, NIST CSF, and ISO
Proven experience delivering audits, assessments, and compliance with industry regulations and standards
