Apply Now

GRC Information Security Manager (Level 3)

Remote • Posted 2 hours ago • Updated 1 hour ago

Contract W2

No Travel Required

Remote

Depends on Experience

Fitment

Dice Job Match Score™

🔗 Matching skills to job...

Job Details

Skills

Cyber Security
Auditing
ERM
IT Risk
IT Risk Management
IT Security
Information Security
GRC

Summary

Role: GRC Information Security Manager (Level 3) 
Duration: 3 Months (3 Years Ext)   Location: Austin, RX (100% Remote)   Experience: 15+ Years   Primary Skills: ERM, Risk Register Design, Risk Scoring Models, Governance Workflows, Cyber Risk, Stakeholder Engagement, Audit Documentation
 Project Responsibilities:

 Define end to end governance workflows for:

o Risk identification and intake   o Risk review and validation   o Risk acceptance, mitigation, or transfer   o Ongoing monitoring and periodic reassessment

Establish roles and responsibilities for risk owners, reviewers, and governance bodies.

Design escalation and reporting processes for high risk and accepted risks.

Engage key stakeholders across business, technology, security, and governance functions to validate risk requirements and workflows.

Facilitate working sessions or workshops to socialize the risk register and governance processes.

Support onboarding of initial risks into the enterprise risk register.

 Produce clear, audit ready documentation covering:

o Risk register structure and data definitions   o Risk scoring methodology   o Governance workflows and decision authorities

Provide knowledge transfer to designated security staff to ensure sustainability beyond the contract term.

The contractor shall provide the following deliverables during the engagement:

```
 Enterprise Risk Register Framework
```

o Standardized risk register template and taxonomy

```
 Risk Scoring and Prioritization Model
```

o Documented likelihood and impact scales   o Scoring methodology and prioritization logic

```
 Risk Governance Model
```

o Defined workflows for risk intake, review, acceptance, and monitoring o Roles and responsibilities matrix

```
 Initial Population of Risk Register
```

o Initial set of documented risks reflecting current cybersecurity and technology risk posture

```
 Final Documentation Package
```

o Consolidated guidance and operating procedures for ongoing risk management
 Required Skills: 
8 Years of Required Experience with Risk Register Design and Framework   8 Years of Required Experience with Risk Scoring and Prioritization Model   8 Years of Required Experience with Governance Processes and Workflows   8 Years of Required Experience with Stakeholder and Enablement   8 Years of Required Demonstrated skill with documentation and knowledge transfer

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: 91102157
Position Id: 8953601
Posted 2 hours ago

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Information Security Manager

Remote

•

Today

please send your resume to hr at the rate adamastechnologies dot net Define end to end governance workflows for:o Risk identification and intakeo Risk review and validationo Risk acceptance, mitigation, or transfero Ongoing monitoring and periodic reassessment Establish roles and responsibilities for risk owners, reviewers, and governance bodies. Design escalation and reporting processes for high risk and accepted risks. Engage key stakeholders across business, technology, security, and governan

Easy Apply

Third Party, Contract

95 - 100

Information Security Manager Risk Register

Remote or Austin, Texas

•

5d ago

Title: Information Security Manager Location: Austin, TX (Remote) Duration: 6 18 Months Contract Responsibilities Define end-to-end governance workflows for: o Risk identification and intake o Risk review and validation o Risk acceptance, mitigation, or transfer o Ongoing monitoring and periodic reassessment Establish roles and responsibilities for risk owners, reviewers, and governance bodies. Design escalation and reporting processes for high risk and accepted risks. Engage key stakehold

Easy Apply

Contract, Third Party

Depends on Experience

Information Security Manager

Remote or Austin, Texas

•

Yesterday

This is a remote position. I. DESCRIPTION OF SERVICES ? Define end to end governance workflows for: o Risk identification and intake o Risk review and validation o Risk acceptance, mitigation, or transfer o Ongoing monitoring and periodic reassessment ? Establish roles and responsibilities for risk owners, reviewers, and governance bodies. ? Design escalation and reporting processes for high risk and accepted risks. ? Engage key stakeholders across business, technology, security, and governan

Third Party, Contract

Governance Risk and Compliance Risk Register Analyst - $148 CTC - REMOTE

Remote

•

4d ago

Job Description: Crop to Crop resumes are accepted Define end to end governance workflows for: Risk identification and intakeRisk review and validationRisk acceptance, mitigation, or transferOngoing monitoring and periodic reassessmentEstablish roles and responsibilities for risk owners, reviewers, and governance bodies.Design escalation and reporting processes for high risk and accepted risks.Engage key stakeholders across business, technology, security, and governance functions to validate ris

Easy Apply

Contract

Depends on Experience

Search all similar jobs