Director of Information Security GRC

Job Summary

A company is looking for a Director, Information Security Governance Risk and Compliance.

Key Responsibilities

• Develop and implement a comprehensive GRC strategy and roadmap
• Lead technology-focused risk management programs and oversee regulatory compliance efforts
• Manage a team of GRC professionals and promote a culture of compliance and risk management

Required Qualifications, Training, and Education

• Bachelor's degree in business administration, information systems, law, or a related field required; Master's degree or relevant certifications preferred
• Minimum of 10 years of experience in governance, risk management, and compliance, with at least 5 years in a leadership role
• Strong knowledge of regulatory frameworks including SOX, PCI, and NIST CSF
• Proven ability to lead cross-functional initiatives and influence stakeholders
• Experience with GRC tools and technologies is a plus