Director of Governance Risk, & Compliance (GRC)

In our 'always on' world, it's essential to have a genuine connection with the work you do.

Are you a seasoned Director-level security professional with broad experience across the domains of Governance, Risk, and Compliance (GRC), such as policy/standards, third-party risk management, customer security assurance, security standards compliance, and security awareness?

Are you excited by the challenge and reward of maturing the GRC function for a large, publicly traded company?  Then leading CommScope’s Governance, Risk, and Compliance (GRC) program may be the right next step for you.! The Director of  GRC will direct the development and maintenance of our security policies and control standards, aligned with the NIST Cybersecurity Framework (CSF) and Center for Internet Security (CIS) Top 18 Security Controls. Based on this structure, you will orchestrate the people, processes, and technologies that track and manage companywide compliance with our policies and standards, as well as applicable regulatory requirements.  To achieve these objectives, you’ll lead an international team of 6 GRC professionals spanning CommScope’s US and India offices. 

This is a remote position, with the successful candidate being geographically based within the US Central or Eastern Time Zone.  A central component of this role is leading India-based direct reports, leading meetings during IST working hours (6:00 – 9:00 A.M. ET) at least two days a week and participating in meetings during US working hours (8:00 A.M. – 6:00 P.M. ET) is essential.  The successful candidate will also be expected to travel to our regional offices in Charlotte, NC, for week-long onsite meetings two to four times per year.

How You'll Help Us Connect the World

As a key player in CommScope’s security landscape, you will collaborate with our business units, Technology, and Security teams to systematically identify security risks, catalog them, and drive them to resolution. Your leadership in this area will be instrumental in our collective efforts to connect the world. 

Your success in this role depends on several factors. First, you’ll bring strong domain expertise and previous experience to the role, having served in previous GRC roles or as a BISO. At least one of your previous roles will have given you strong technical experience in security operations, engineering, incident response, or elsewhere. You’ll need to be an experienced and caring leader to work effectively with your peers and energize your team as a strong manager.  Structured execution, critical thinking, attention to detail, and effective communication are the foundation of everything we do.

Working with your peers, define the core set of enterprise security policies and controls. Develop and mature the documentation necessary to manage and govern the security program.

Lead and handle a distributed team of GRC analysts, primarily based in India, to provide core services including third party assurance, risk management, risk governance, policy and standards writing, security communications, and other GRC capabilities. Handle the career development of your team and your talent pipeline.

Cultivate the toolset and any professional services necessary to deliver these capabilities.

Communicate effectively with stakeholders at all levels.

Develop relevant metrics and scorecards and leverage resulting insights to demonstrate value and drive continual improvement. As the role evolves and enterprise maturity increases, provide more advanced support in strategic planning, leadership, and risk communications.

 Your reward for a job well done is the satisfaction of excellence: sustaining the team and processes that deliver crucial security capabilities in service of our customers and their customers—the billions of people CommScope products and services help connect every single day.

Required Qualifications for Consideration:

• Seven or more years of previous experience demonstrating increased responsibility among the security domains and people leadership relevant to this role.
• Experience building, developing, and retaining high-performing teams.
• Superb communication skills (technical and non-technical collaborators) and strong executive presence.
• Experience maintaining effective relationships with vendors, buying security products, and leveraging professional services.
• Experience writing cybersecurity-related policies and procedures.
• Experience developing security processes and workflows using tools such as Archer or ServiceNow.

You Will Excite Us If You Have:

• Technical security experience in one or more previous roles in areas such as incident response, SOC, control design and implementation, or other related security fields.
• CISSP or other senior-level certification.
• Experience with ServiceNow.
• Experience as a technical Business Information Security Officer (BISO).
• Experience with business continuity/disaster recovery.
• Have been or are currently a PCI Qualified Security Assessor (QSA).

What Happens After You Apply

Learn how to prepare yourself for the next steps in our hiring process by visiting https://jobs.commscope.com/content/How-We-Hire/?locale=en_US

Why CommScope?

CommScope is on a quest to deliver connectivity that empowers how we live, work, and learn. Our employees push the boundaries of communications technology that enables groundbreaking discoveries like 5G, the Internet of Things, and gigabit speeds for everyone, everywhere. With our unmatched expertise in copper, fiber, and wireless infrastructure, our global clients rely on us to outperform today and be ready for the needs of tomorrow.

If you want to grow your career alongside forward-thinking, hardworking, and caring people who strive to create what's next….. connect to your future at CommScope.

CommScope is an Equal Opportunity Employer (EEO), including people with disabilities and veterans. If you are seeking an accommodation for the application or interview process, please contact us to submit your request at talentacquisition@commscope.com.

#LI-CS1

#LI-Remote