Director of Governance Risk, & Compliance (GRC)
Virtual, Other, United States
CommScope
Advancing broadband enterprise and wireless networks to power progress and create lasting connections.In our 'always on' world, it's essential to have a genuine connection with the work you do.
Are you a seasoned Director-level security professional with broad experience across the domains of Governance, Risk, and Compliance (GRC), such as policy/standards, third-party risk management, customer security assurance, security standards compliance, and security awareness?
Are you excited by the challenge and reward of maturing the GRC function for a large, publicly traded company? Then leading CommScope’s Governance, Risk, and Compliance (GRC) program may be the right next step for you.! The Director of GRC will direct the development and maintenance of our security policies and control standards, aligned with the NIST Cybersecurity Framework (CSF) and Center for Internet Security (CIS) Top 18 Security Controls. Based on this structure, you will orchestrate the people, processes, and technologies that track and manage companywide compliance with our policies and standards, as well as applicable regulatory requirements. To achieve these objectives, you’ll lead an international team of 6 GRC professionals spanning CommScope’s US and India offices.
This is a remote position, with the successful candidate being geographically based within the US Central or Eastern Time Zone. A central component of this role is leading India-based direct reports, leading meetings during IST working hours (6:00 – 9:00 A.M. ET) at least two days a week and participating in meetings during US working hours (8:00 A.M. – 6:00 P.M. ET) is essential. The successful candidate will also be expected to travel to our regional offices in Charlotte, NC, for week-long onsite meetings two to four times per year.
How You'll Help Us Connect the World
As a key player in CommScope’s security landscape, you will collaborate with our business units, Technology, and Security teams to systematically identify security risks, catalog them, and drive them to resolution. Your leadership in this area will be instrumental in our collective efforts to connect the world.
Your success in this role depends on several factors. First, you’ll bring strong domain expertise and previous experience to the role, having served in previous GRC roles or as a BISO. At least one of your previous roles will have given you strong technical experience in security operations, engineering, incident response, or elsewhere. You’ll need to be an experienced and caring leader to work effectively with your peers and energize your team as a strong manager. Structured execution, critical thinking, attention to detail, and effective communication are the foundation of everything we do.
Working with your peers, define the core set of enterprise security policies and controls. Develop and mature the documentation necessary to manage and govern the security program.
Lead and handle a distributed team of GRC analysts, primarily based in India, to provide core services including third party assurance, risk management, risk governance, policy and standards writing, security communications, and other GRC capabilities. Handle the career development of your team and your talent pipeline.
Cultivate the toolset and any professional services necessary to deliver these capabilities.
Communicate effectively with stakeholders at all levels.
Develop relevant metrics and scorecards and leverage resulting insights to demonstrate value and drive continual improvement. As the role evolves and enterprise maturity increases, provide more advanced support in strategic planning, leadership, and risk communications.
Your reward for a job well done is the satisfaction of excellence: sustaining the team and processes that deliver crucial security capabilities in service of our customers and their customers—the billions of people CommScope products and services help connect every single day.
Required Qualifications for Consideration:
- Seven or more years of previous experience demonstrating increased responsibility among the security domains and people leadership relevant to this role.
- Experience building, developing, and retaining high-performing teams.
- Superb communication skills (technical and non-technical collaborators) and strong executive presence.
- Experience maintaining effective relationships with vendors, buying security products, and leveraging professional services.
- Experience writing cybersecurity-related policies and procedures.
- Experience developing security processes and workflows using tools such as Archer or ServiceNow.
You Will Excite Us If You Have:
- Technical security experience in one or more previous roles in areas such as incident response, SOC, control design and implementation, or other related security fields.
- CISSP or other senior-level certification.
- Experience with ServiceNow.
- Experience as a technical Business Information Security Officer (BISO).
- Experience with business continuity/disaster recovery.
- Have been or are currently a PCI Qualified Security Assessor (QSA).
What Happens After You Apply
Learn how to prepare yourself for the next steps in our hiring process by visiting https://jobs.commscope.com/content/How-We-Hire/?locale=en_US
Why CommScope?
CommScope is on a quest to deliver connectivity that empowers how we live, work, and learn. Our employees push the boundaries of communications technology that enables groundbreaking discoveries like 5G, the Internet of Things, and gigabit speeds for everyone, everywhere. With our unmatched expertise in copper, fiber, and wireless infrastructure, our global clients rely on us to outperform today and be ready for the needs of tomorrow.
If you want to grow your career alongside forward-thinking, hardworking, and caring people who strive to create what's next….. connect to your future at CommScope.
CommScope is an Equal Opportunity Employer (EEO), including people with disabilities and veterans. If you are seeking an accommodation for the application or interview process, please contact us to submit your request at talentacquisition@commscope.com.
#LI-CS1
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISSP Compliance Governance Incident response Internet of Things NIST Risk management SOC
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs