Jobbörse
Finde Jobs in deiner Nähe – ob vor Ort, hybrid oder remote.- Ähnliche Jobs zu: Director, Security Compliance
Director, Information Security Audit & Compliance (Global)
Grant Thornton LLPSalt Lake City
Director Of Information Security Audit & ComplianceGrant Thornton is seeking a Director of Information Security Audit & Compliance to join the team. Approved office locations can be found below.We are
IT Compliance & Product Security Analyst
Woodward HRT/MPCFort CollinsWoodward supports our members' wellbeing and regularly benchmarks with other companies in our industry to offer an extensive Total Reward package for this position. Salary will be determined by the ap
Cyber-Compliance & Product Security Analyst
WoodwardRockfordWoodward, Inc. is seeking a candidate for an IT compliance role in Rockford, Illinois. The position focuses on creating policies and ensuring product security compliance with regulations. Candidates s
Cyber-Compliance & Product Security Analyst
WoodwardFort CollinsWoodward, Inc. is seeking a compliance and product security expert to create policies and ensure regulatory adherence. This role involves auditing IT systems, advising on security development, and fac
IT Compliance/Cyber Security Administrator
Griffin Health BrandDerbyIT Compliance/Cyber Security AdministratorWorks with legal counsel and management, key departments, and committees to ensure the organization establishes, maintains, and, where appropriate, provides a
Workday Security Architect: Access & Compliance
Bryan College of Health SciencesLincolnBryan College Of Health Sciences in Lincoln, Nebraska, is looking for a Workday Security Administrator to manage and secure user access across various applications. Your role includes designing securi
Senior Security Analyst, Compliance
OpenSesameNew YorkOpenSesame is the trusted partner for Workforce Reinvention in the age of AI. OpenSesame delivers integrated software, curated and customizable content, and expert services – embedded into existing le
Global Cyber Security & Compliance Manager
FikeBlue SpringsFike Corporation is seeking a Cyber Security Manager responsible for developing and administering the company's cyber security program. The role requires overseeing compliance with NIST standards and
Senior Security & Compliance Solutions Architect
AmazonBostonAmazon Web Services (AWS) is searching for experienced security professionals in Boston to provide technical thought leadership in cloud strategies. This role involves extensive customer engagement an
Security Analyst - NISP/NISPOM Compliance
CAEArlingtonCAE Inc is seeking a Security Analyst in Arlington, TX, to support the Facility Security Officer in all areas of security administration. The role involves conducting briefings, managing personnel cle
Remote GRC Security Analyst - Risk & Compliance
LaunchDarkly GroupNew YorkLaunchDarkly Group is seeking a Security Analyst III for its Governance, Risk, and Compliance team. This remote role demands deep cybersecurity knowledge and excellent communication skills. You will c
Information Security Analyst - Cyber Defense & Compliance
The University of Texas Rio Grande ValleyEdinburgThe University of Texas Rio Grande Valley is seeking an Information Security Analyst to assist with the development and support of digital access control and data confidentiality measures. Candidates
Security Analyst: Threat Detection & Compliance (Hybrid)
Core Health & FitnessVancouverCore Health & Fitness seeks a dedicated Security Analyst responsible for enhancing the security posture of our IT environment. This role includes monitoring multiple security tools, responding to inci
Cyber Security Manager, Compliance (Project Hire)
NBCUniversalOrlandoWe are currently looking for exceptional candidates to fill positions in the below categories.Cyber Security Manager, Compliance (Project Hire) Apply now Job no: 657646 Work type: Regular (Full-Time)
Systems Engineer – Microsoft 365 Security & Compliance / Endpoint Security Engineer (GCC)
LeidosMount RainierDescription Leidos is seeking an experienced M365 Security and Compliance Administrator to join our Information Technology team. This role requires a seasoned professional who can strategically manag
Systems Engineer – Microsoft 365 Security & Compliance / Endpoint Security Engineer (GCC)
LeidosAnnandaleDescription Leidos is seeking an experienced M365 Security and Compliance Administrator to join our Information Technology team. This role requires a seasoned professional who can strategically manag
Systems Engineer – Microsoft 365 Security & Compliance / Endpoint Security Engineer (GCC)
LeidosWashingtonDescription Leidos is seeking an experienced M365 Security and Compliance Administrator to join our Information Technology team. This role requires a seasoned professional who can strategically manag
Systems Engineer – Microsoft 365 Security & Compliance / Endpoint Security Engineer (GCC)
LeidosChevy ChaseDescription Leidos is seeking an experienced M365 Security and Compliance Administrator to join our Information Technology team. This role requires a seasoned professional who can strategically manag
Systems Engineer – Microsoft 365 Security & Compliance / Endpoint Security Engineer (GCC)
LeidosViennaDescription Leidos is seeking an experienced M365 Security and Compliance Administrator to join our Information Technology team. This role requires a seasoned professional who can strategically manag
Systems Engineer – Microsoft 365 Security & Compliance / Endpoint Security Engineer (GCC)
LeidosLortonDescription Leidos is seeking an experienced M365 Security and Compliance Administrator to join our Information Technology team. This role requires a seasoned professional who can strategically manag
Systems Engineer – Microsoft 365 Security & Compliance / Endpoint Security Engineer (GCC)
LeidosAlexandriaDescription Leidos is seeking an experienced M365 Security and Compliance Administrator to join our Information Technology team. This role requires a seasoned professional who can strategically manag
Systems Engineer – Microsoft 365 Security & Compliance / Endpoint Security Engineer (GCC)
LeidosWashingtonDescription Leidos is seeking an experienced M365 Security and Compliance Administrator to join our Information Technology team. This role requires a seasoned professional who can strategically manag
Cyber-Compliance & Product Security Analyst
Woodward HRT/MPCFort CollinsWoodward HRT/MPC in Fort Collins, Colorado, is looking for a candidate to provide expertise in IT compliance and product security. The role involves creating policies, conducting audits, and ensuring
Cyber-Compliance & Product Security Analyst
Woodward HRT/MPCRockfordWoodward HRT/MPC in Rockford, Illinois is looking for a qualified candidate to develop and manage IT compliance and product security policies. This role involves conducting audits, advising on securit
Remote Cyber Security Specialist Secure SDLC & Compliance
Hong Kong Study Skills Research InstituteLittle RockGovCIO is seeking a Cyber Security Specialist to focus on system security assessment and authorization. This position is fully remote and requires a Bachelor's degree and experience in Healthcare IT.
Director, Information Security Audit & Compliance (Global)
- Salt Lake City, Utah, United States
- Salt Lake City, Utah, United States
Über
Grant Thornton is seeking a Director of Information Security Audit & Compliance to join the team. Approved office locations can be found below.
We are seeking a Director of Information Security Audit & Compliance to lead and scale a global audit and compliance practice. This role will be responsible for establishing global delivery centers, managing internal and external audits, and ensuring the information security program is governed through a consistent, defensible framework aligned to NIST CSF and NIST 800-53.
The ideal candidate combines deep audit and regulatory expertise with strong operational leadership, enabling the organization to meet regulatory, client, and certification requirements while supporting business growth and innovation.
Key Responsibilities
Audit & Compliance Strategy
- Define and lead the global information security audit and compliance strategy across the enterprise.
- Establish and scale global delivery centers to support audits, evidence management, and continuous compliance operations.
- Own the audit calendar and roadmap for ISO, NIST-based, HIPAA, and client-driven audits.
Audit Management & Execution
- Lead enterprise-wide audits and assessments including ISO 27001, NIST, HIPAA, and client-specific security audits.
- Act as the primary point of contact for external auditors, regulators, and client assessors.
- Ensure timely, high-quality audit deliverables, responses, and remediation plans.
Governance, Risk & Control Framework
- Align the information security governance program to NIST Cybersecurity Framework (CSF) and NIST 800-53.
- Develop, maintain, and mature security policies, standards, and control frameworks.
- Ensure controls are consistently implemented, tested, and evidenced across global teams.
Continuous Compliance & Control Assurance
- Establish processes for continuous control monitoring, internal testing, and readiness assessments.
- Track audit findings, remediation efforts, and risk acceptances through closure.
- Partner with technology, security, and business teams to remediate gaps and strengthen control effectiveness.
Client & Regulatory Engagement
- Support client due diligence, RFP security responses, and client-led audits.
- Translate technical and control-based requirements into clear, business-aligned commitments.
- Build trust with clients by demonstrating a mature, transparent compliance posture.
Leadership & Global Team Development
- Build, lead, and mentor a globally distributed team of audit and compliance professionals.
- Define roles, responsibilities, career paths, and training for audit and compliance staff.
- Foster strong collaboration with security engineering, IT, legal, privacy, and risk teams.
Required Qualifications
- 12+ years of experience in information security, audit, or compliance, with 5+ years in senior leadership roles.
- Deep hands-on experience leading ISO 27001, 27701, 27017, NIST, HIPAA, and client-driven security audits.
- Strong expertise in NIST CSF and NIST 800-53 governance, control design, and assessment.
- Proven experience building or scaling global audit and compliance delivery models.
- Strong understanding of information security controls, risk management, and regulatory expectations.
- Excellent communication skills with the ability to engage executives, auditors, and clients.
Preferred Qualifications
- Experience operating in global, highly regulated environments.
- Familiarity with SOC 1 / SOC 2, cloud compliance, and third-party risk assessments.
- Experience implementing GRC tooling to support audit and compliance workflows.
- Professional certifications such as CISSP, CISA, CRISC, CISM, ISO 27001 Lead Auditor, or equivalent.
The base salary range for this position is between $172,000 and $250,000. Placement within the pay range is at Grant Thornton's discretion, and it is based on multiple factors, including but not limited to, job-related knowledge/skills, experience, business needs, progression within the role, geographic location, and internal equity. At Grant Thornton, compensation decisions are dependent upon the facts and circumstances of each position and candidate.
Sprachkenntnisse
- English
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klick auf „Jetzt Bewerben”, um deine Bewerbung direkt auf deren Website einzureichen.