Job Summary
We are seeking a dedicated GRC Specialist with 4 to 8 years of experience to join our team. The ideal candidate will have a strong background in Vulnerability Management Compliance Management Audit Management Risk Management Vendor Risk Management Policy Management and Incident Management. This role is crucial in ensuring our companys adherence to regulatory requirements and maintaining a robust risk management framework.
Responsibilities
Lead the development and implementation of comprehensive risk management strategies.Oversee the vulnerability management process to identify assess and mitigate security risks.Provide expertise in compliance management to ensure adherence to regulatory requirements.Conduct thorough audits to evaluate the effectiveness of internal controls and compliance measures.Manage risk assessments and develop action plans to address identified risks.Coordinate vendor risk management activities to ensure third-party compliance with company policies.Develop and maintain policy management frameworks to support organizational objectives.Respond to and manage security incidents to minimize impact and ensure swift resolution.Collaborate with cross-functional teams to enhance the overall security posture of the organization.Monitor and report on the effectiveness of risk management and compliance programs.Provide training and guidance to staff on risk management and compliance best practices.Develop and maintain documentation related to risk management and compliance activities.Stay updated on industry trends and regulatory changes to ensure ongoing compliance.
Qualifications
Possess strong analytical skills to identify and mitigate risks effectively.Demonstrate excellent communication skills to articulate risk management strategies.Have a proven track record in managing compliance and audit processes.Show proficiency in developing and implementing policy management frameworks.Exhibit strong incident management skills to handle security breaches efficiently.Display the ability to work collaboratively with cross-functional teams.Maintain up-to-date knowledge of regulatory requirements and industry best practices.Demonstrate experience in vendor risk management and third-party compliance.Have a proactive approach to identifying and addressing potential security threats.
Certifications Required
Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) Certified Information Systems Security Professional (CISSP)