Director of Information Security GRC

Job Summary

A company is looking for a Director of Governance, Risk and Compliance (GRC).

Key Responsibilities

• Develop and maintain an information security governance framework and enforce security policies
• Lead risk management efforts, conduct risk assessments, and implement risk mitigation strategies
• Ensure compliance with relevant laws and regulations, and oversee vendor risk management

Required Qualifications

• 9+ years of experience in information security with a focus on GRC, or 6 years with a relevant bachelor's degree
• Strong understanding of governance, risk management, and compliance frameworks
• Technical background in software development, system architecture, and security fundamentals
• Relevant certifications such as CISSP or CISM are required
• Experience in collaborating with stakeholders to align security strategies with business objectives