Director of Governance, Risk & Compliance (Remote)

Job summary

The Director of Governance, Risk, and Compliance (GRC) is tasked with leading and enhancing the organization's GRC functions, ensuring a cohesive approach to risk management, compliance, audits, policy development, and security training. This role collaborates closely with senior leadership to manage enterprise risks effectively.

Qualifications

• Extensive experience in leading GRC, risk management, compliance, or security awareness functions in complex organizations.
• In-depth knowledge of cybersecurity frameworks, regulatory requirements, and audit practices.
• Proven ability to build and scale GRC programs and integrate them into business operations.
• Experience in leading large, cross-functional initiatives and influencing senior stakeholders.
• Strong communication, organizational, and leadership skills.

Responsibilities

• Define and implement a comprehensive GRC strategy aligned with business goals and cybersecurity priorities.
• Develop a high-performing GRC team, promoting a culture of ownership and continuous improvement.
• Oversee the enterprise risk management framework, including risk identification, assessment, and mitigation.
• Manage compliance programs to ensure adherence to regulations and internal policies.
• Lead internal and external audits, ensuring readiness and timely remediation of findings.
• Establish a framework for policy and standards development, ensuring alignment with regulatory requirements.
• Develop and implement a security awareness and training program for all employees.
• Ensure integration of all GRC components within a consistent lifecycle model.
• Act as a liaison between security, IT, and business units, translating complex topics into actionable insights.

Skills

• Strategic thinking with strong execution focus.
• Collaborative mindset with stakeholder orientation.
• Highly organized with the ability to manage multiple priorities.
• Strong analytical and problem-solving skills.
• Effective communication skills, capable of simplifying complex information.

Education

• Relevant degree in a related field (specific degree not mentioned).

Tools

• Experience with GRC tools for tracking, reporting, and collaboration (specific tools not mentioned).