Security Governance Risk Compliance Director

Job Summary

A company is looking for a Director of Security Governance, Risk, and Compliance.

Key Responsibilities

• Develop and implement an Information Security GRC strategy aligned with business objectives
• Lead the creation and maintenance of security policies, standards, and procedures to ensure compliance
• Oversee risk assessments and security audits to identify vulnerabilities and enhance security posture

Required Qualifications

• Bachelor's in Information Security, Computer Science, Business Administration, or related field; Master's preferred
• 5-10 years of focused information security experience with at least 5 years in GRC leadership
• In-depth knowledge of security frameworks (NIST, ISO 27001, NYDFS, PCI, SOC2 Type 2)
• Proven success in implementing and managing GRC programs
• Relevant certifications (CISM, CRISC, CGEIT, CISSP) highly desirable