Found Description
Key responsibilities include leading GRC initiatives end-to-end (from design through implementation), developing and maintaining governance and risk frameworks, supporting risk assessments and audits, and partnering with stakeholders across the organization to embed GRC practices into day-to-day operations.
The role also involves contributing to reporting, metrics, and ongoing program maturity.
What you must have:
Proven experience leading GRC initiatives end-to-end (not just participating)
Strong background in IT GRC with at least 5+ years in GRC and 7+ years across IT, cybersecurity, or enterprise risk
Hands-on experience building or enhancing GRC frameworks, controls, and processes
Strong knowledge of industry frameworks such as COBIT (preferred), NIST, ISO 27001, or similar
Experience with risk assessments, control implementation, and audit/comp...