GRC Lead
GRC Lead / Policy Manager
Role Summary:
Leads Governance, Risk & Compliance (GRC) initiatives, develops security policies, and ensures regulatory compliance across the enterprise. Supports audit readiness and risk management processes.
Key Responsibilities:
- Develop, maintain, and enforce enterprise security policies and standards.
- Manage compliance programs including SOX, PCI, and SOC audits.
- Maintain and monitor the enterprise risk register; escalate risks to leadership.
- Collaborate with IT, SOC, IAM, and business units to enforce controls.
- Conduct policy training and awareness programs for employees.
Experience & Qualifications:
- 6–10 years in IT security governance, risk, or compliance roles.
- Strong knowledge of regulatory frameworks and audit processes.
Certifications / Skills:
- CISA, CRISC
- Policy writing, risk frameworks, process improvement experience.
Role Summary:
Leads Governance, Risk & Compliance (GRC) initiatives, develops security policies, and ensures regulatory compliance across the enterprise. Supports audit readiness and risk management processes.
Key Responsibilities:
- Develop, maintain, and enforce enterprise security policies and standards.
- Manage compliance programs including SOX, PCI, and SOC audits.
- Maintain and monitor the enterprise risk register; escalate risks to leadership.
- Collaborate with IT, SOC, IAM, and business units to enforce controls.
- Conduct policy training and awareness programs for employees.
Experience & Qualifications:
- 6–10 years in IT security governance, risk, or compliance roles.
- Strong knowledge of regulatory frameworks and audit processes.
Certifications / Skills:
- CISA, CRISC
- Policy writing, risk frameworks, process improvement experience.