GRC Architect

Hello Everyone,

Hope you are doing good!!!!

My name is Pavan and I work with SPAR Information System., I have a great opportunity for you, please find the job details below, if you are interested in applying please send me your updated resume and best time for you to discuss about this opportunity in details.

Job title: GRC Manager

Location: Remote

Duration: Long term contract

Governance, Risk and Compliance (GRC) Sr Manager Operations

Responsibilities & opportunities in this role:

Operate effectively as a core member of the Operations team.

Identify and drive the adoption of security best practices and standards,

including aligning with industry standards and regulatory requirements.

Create and enforce enterprise security policies, procedures, and standards.

Manage and coordinate internal and external vulnerability and penetration testing.

Conduct security assessments of suppliers and data processors.

Review and help to negotiate information security clauses in commercial, procurement, and partner legal agreements.

Function as a conduit between Security, Legal, Cloud, Engineering, Corporate IT, Sales, and other teams.

Work effectively across the sites, including Datacenters, Labs, and remote offices.

Stay informed about evolving regulatory landscapes and industry best practices.

Participate in incident response and recovery efforts as needed.

Respond to customer communications on security-related issues. Ideal candidates have/are:

At least 10+ years of working in the GRC industry.

Prior experience partnering closely with legal teams on regulatory or compliance issues.

Experience with GRC management tools and technologies (e.g. Vanta, Drata, others).

Relevant certifications, such as CISSP, CISM, CISA.

Bachelor's degree in Computer Science, similar technical field of study, or equivalent practical experience.

Proven ability to develop and implement GRC programs.

Strong and proven written and verbal communication skills.

Experience conducting supplier and data processor security risk assessments.

Previously demonstrated work managing compliance frameworks such as NIST CSF, ISO 27001, SOC2 Type II, GDPR, HIPAA, or related.

Strong problem-solving and analytical skills.

Excellent communication and interpersonal skills.

Familiarity with cloud security management, such as in Google Cloud Platform, Vanta Familiarity with Unix or Linux OS

Thanks & Regards,

Pavan Raikhelkar

LEAD TALENT ACQUISITION SPECIALIST

Direct Number:-

Fax :

Email:

Website:

(An E-verify Company)

NOTE: We respect your online privacy. This is not an unsolicited mail. Under bill 1618 title III passed by the 105th us congress this mail cannot be considered Spam as long as we include contact information and a method to be removed from our mailing list. If you are not interested in receiving our e-mails, please reply with a "REMOVE" in the subject line. We apologize for any inconvenience caused by this mail.