Offres d'emploi : it compliance
Trouvez des postes it compliance près de chez vous, sur site, hybrides ou à distance.Manager, IT Security, Governance, Risk and Compliance
Burlington Stores, Inc.BeverlyManager Of Governance, Risk And Compliance (Grc)The Manager of Governance, Risk and Compliance (GRC) plays a critical mid-level leadership role within the Information Security function, responsible fo
Finance IT Systems Administrator (Billing & Compliance)
Nrg Bluewater WindLehiNrg Bluewater Wind in Lehi, Utah is seeking an IT Finance Administrator to perform administrative activities related to billing and loan management applications. You'll manage day-to-day operations, e
Remote IT Security Analyst - GRC & Compliance
Black Hills Federal Credit UnionRapid CityBlack Hills Federal Credit Union is seeking an IT Security Analyst II to support its information security governance and risk compliance programs. This remote position will involve developing security
Healthcare IT Project Manager Lead System Upgrades & Compliance
Berger Health SystemBrooklynBerger Health System in Kentucky is seeking an IT Project Manager to oversee technology projects that enhance patient care and operational efficiency. This role involves managing IT projects, leading
IT Project Manager - Software, Security & Compliance
PoutrixNew YorkArcadis is seeking a Project Manager Software Administration for the Gateway Hudson Tunnel Project in New York City. This critical role involves managing IT projects and software tools, ensuring proje
IT Security Analyst - SIEM, Compliance & Risk
Olmsted-County,-MnSaint PaulOlmsted-County,-Mn seeks a technology security professional to ensure the security of various systems. The role includes reviewing logs, conducting vulnerability tests, and working with IT Security Ar
OT/IT Network Engineer for Security & Compliance
Vulcan-ElementsBensonVulcan-Elements in Benson, NC, is seeking a Network Engineer to design and maintain secure network infrastructures for manufacturing operations. The ideal candidate will have extensive experience in n
HSE IT Systems Advisor - Data Analytics & Compliance
OxyMetairieOxy is seeking a full-time HSE Systems Advisor to provide expert guidance on IT projects within the HSE team. This includes designing and implementing IT systems that enhance HSE performance and compl
IT Asset & Hardware Specialist: Inventory & Compliance
University of MiamiCoral GablesThe University of Miami is seeking an IT Software/Hardware Assets Specialist 2 to manage and track hardware/software assets in Coral Gables, Florida. This full-time role will involve collaborating wit
Senior IT Applications Manager, Lab Informatics & Compliance
RegeneronAlbanyRegeneron, based in the City of Troy, is seeking a Manager for its IT Applications portfolio. This role will oversee a team responsible for the maintenance, support, and development of critical busine
QA Compliance Specialist
NovartisUnited StatesThis job is with Novartis, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. SummaryLocation:
Cyber Security Engineer- Compliance
Quest DefenseUnited StatesCyber Security Engineer- ComplianceTucson, AZ Immediately hiring engineers who want to contribute to mission-critical systems that demand precision, accountability, and technical excellence. Success h
Procurement Compliance Manager
Johns Hopkins Applied Physics Laboratory (APL)LaurelDescriptionHave you been looking for an opportunity to combine your interest in compliance with your expertise in procurement contracts?Do you love staying abreast of the latest proposed and new chang
Compliance - Salt Lake City - Vice President, Business Unit Compliance - 8633168
The Goldman Sachs Group, Inc.Salt Lake CityVice President, Business Unit ComplianceJob Duties: Vice President, Business Unit Compliance with Goldman Sachs & Co. LLC in Salt Lake City, Utah. Responsible for maintaining a framework and monitorin
Application Compliance & Security Lead
Johns Hopkins Applied Physics Laboratory (APL)LaurelDescriptionAre you an authority in application security and compliance requirements, with experience in software development and tooling like SAST, DAST, and vulnerability analysis? Do you thrive in a
Sales Executive, Compliance Solutions
FIS Management Services LLCNew YorkAbout the role Experienced Sales Executive that is a true ‘Hunter’ with a proven track record selling complex enterprise-wide software systems into Sell‑Side and Buy‑Side financial institutions. The S
Compliance Trainer I (Health & Safety)
HudBay MineralsSahuaritaRole Title: Compliance Trainer I Reports to: Training SuperintendentJob Type: Full-Time, Regular Location: Helvetia, AZ About Hudbay: Hudbay (TSX, NYSE: HBM) is a copper-focused mining company with th
Manager, Quality Assurance, Compliance
VaxcyteUnited StatesManager, Quality Assurance, ComplianceVaxcyte is seeking a Manager, Quality Assurance, Compliance who is responsible for providing day-to-day operational oversight governance and strategic oversight o
Lab QA & Compliance Lead
Intermountain HealthcareBroomfieldIntermountain Healthcare is seeking a Quality Assurance Coordinator in Broomfield, Colorado, to support their QA/QM program ensuring compliance with regulatory agencies. This role involves developing
Remote Security Architect — Cloud & Compliance (Europe)
QdrantNew BremenAt Qdrant, security is not just a checkbox; it is a core feature of our high-performance vector database. As our Security Officer, you will be the strategic lead and technical executor of our security
Content Protection & Compliance Intern
EverPass MediaUnited StatesContent Protection & Compliance InternChicago, IL EverPass Media is redefining the role of TVs in businesses by blending exclusive sports and entertainment with marketing innovation. From NFL Sunday T
Senior Managing Director, Compliance & Distribution
Blue OwlShort HillsBlue Owl in Short Hills, NJ is seeking an experienced Managing Director to lead compliance for Broker-Dealer, Global Marketing, and Distribution. The successful candidate will oversee multiple teams,
Remote IT Project Manager – Federal IT & Cybersecurity
E LogicWashingtonE Logic is seeking a highly skilled IT Project Manager to support a high-profile federal program for the Congressional Budget Office. You will coordinate across multifunctional teams in cloud engineer
Compliance Data Analyst - Audits & Investigations
Dormont Manufacturing CompanyDoralTechOp Solutions International is seeking detail-oriented and motivated Compliance Analysts to support compliance and auditing operations. The ideal candidates will efficiently manage accurate documen
Sr. Manager, Quality Assurance and Compliance
SCANUnited StatesSenior Manager Of Quality Assurance And ComplianceFounded in 1977 as the Senior Care Action Network, SCAN began with a simple but radical idea: that older adults deserve to stay healthy and independen
Manager, IT Security, Governance, Risk and Compliance
- Beverly, Massachusetts, United States
- Beverly, Massachusetts, United States
À propos
The Manager of Governance, Risk and Compliance (GRC) plays a critical mid-level leadership role within the Information Security function, responsible for translating strategy into operational execution across the GRC program. Reporting to the Director of GRC, this role provides daily oversight of analysts and leads, drives process maturity, and ensures consistent delivery of risk, audit, policy, and continuity efforts. The Manager of GRC helps shape the enterprise's risk posture while mentoring a high-performing team and fostering cross-functional collaboration. This role requires a deep understanding of regulatory frameworks and an ability to communicate complex risk concepts in clear, actionable terms. The ideal candidate will proactively identify control gaps, coordinate effective mitigation, and ensure security efforts remain aligned with evolving business needs.
Enterprise Cyber Risk Management:
- Lead enterprise-wide cybersecurity risk assessments across business units and IT domains.
- Own the accuracy and ongoing maintenance of the enterprise risk register, ensuring it is consistently updated and informed by stakeholder input.
- Collaborate with business and IT leaders to define and apply enterprise risk tolerance thresholds.
- Translate technical risk findings into actionable, business-relevant recommendations.
- Identify and escalate systemic risks that could materially impact operations or compliance.
- Monitor industry trends, threat intelligence, and regulatory changes to adjust risk posture.
- Deliver clear, timely risk reports and dashboards to senior leadership and governance bodies.
- Implement structured risk governance processes, including review cycles and escalation protocols.
- Implement automated GRC tools and data analytics to improve cybersecurity risk management efficiency and accuracy.
- Develop KPIs and KRIs for the security organization and maintain tactical and strategic dashboards to monitor risk and compliance efforts.
Management & Collaboration:
- Oversee GRC team operations, assigning work, setting priorities, and ensuring effective collaboration.
- Partner with senior leadership and business stakeholders to align GRC efforts with enterprise goals.
- Foster a high-performing, collaborative team culture through coaching, accountability, and career development.
Business Continuity and Disaster Recovery (BC/DR):
- Lead collaboration with IT and business leaders to identify mission-critical applications and conduct comprehensive BIA, define RTO/RPO, and recovery procedures.
- Develop dependency mappings for critical systems with application and infrastructure teams.
- Oversee documentation of recovery procedures, including technical and business continuity procedures.
- Lead tabletop exercises and failover/failback recovery testing with IT and business users.
- Identify gaps in the BC/DR program and take ownership of remediation.
- Ensure business continuity objectives are effectively aligned with IT capabilities to support organizational resilience during disruptions.
- Contribute to recovery planning efforts and facilitate coordination among IT and business teams to ensure effective response during disruptions.
Vendor Risk Management:
- Partner with the procurement and legal teams to integrate cybersecurity function into the overall process, mitigating supply chain risks for the company.
- Manage third-party risk processes, including assessments and reviews. Continuously identify opportunities for improvement to enhance its effectiveness and efficiency.
- Escalate high-risk vendor issues to leadership and work with business stakeholders to develop and execute mitigation plans.
- Oversee monthly reporting on security assessments of AI vendors, provide expert analysis to leadership on AI-related risks and recommend strategic actions to resolve identified issues.
- Establish and manage a comprehensive set of criteria and assessment questions to support third-party risk management activities.
Managed Security Service Provider (MSSP) and Third-Party Security Incidents:
- Own vendor incident response governance program and playbooks.
- Ensure vendors provide formal evidence of incident containment and remediation and ensure compliance with security requirements before closing a third incident.
- Consolidate third party incident and GRC-owned MSSP results into executive dashboards.
- Embed incident response obligations into contracts and procurement.
Audit and Compliance:
- Oversee internal/external audit readiness and evidence collection.
- Ensure compliance with SOX, PCI, and privacy frameworks.
- Serve as audit liaison for the GRC function.
- Act as the primary contact for internal audit and take ownership of recreating risk and compliance assessment findings.
Policy Implementation:
- Manage the policy lifecycle from creation through enforcement.
- Ensure policies align with frameworks like NIST and PCI DSS.
- Ensure the organization adheres to all relevant policies and standards.
Cybersecurity Education:
- Manage company-wide security training programs.
- Strategically identify education and awareness needs based on enterprise-wide cybersecurity threats and business priorities.
- Establish metrics to evaluate the success of training initiatives, including trends in knowledge retention, behavior changes, and overall effectiveness of the security culture.
- Oversee continuous improvement of the training curriculum, ensuring it evolves to address new threats and compliance requirements.
You'll Come With:
- 8+ years in security governance, risk, or compliance roles.
- Demonstrated success in leading cross-functional projects.
- Deep understanding of controls, audits, and frameworks.
- Maintain relevant certifications such as CISM, CISSP, or CISA.
- Communicate effectively with technical and non-technical stakeholders.
- Resolve conflicts and drive consensus across teams.
- Provided leadership and oversight for a cybersecurity team of 3+ members.
- Mentor team members and model professional behavior.
- Bachelor's degree in Information Systems, Cybersecurity or related field required; Master's preferred.
- Target Pay Range: $115,000 $167,500 annually. Actual pay is determined by a variety of factors, including but not limited to, qualifications, education, job-related skills, relevant experience, and geographic location.
Compétences linguistiques
- English
Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.