Director of Governance, Risk, and Compliance (GRC)
Remote, USA
Talkdesk
Talkdesk is a global cloud contact center leader for modern AI-powered customer service that is trusted, flexible, and innovative. Get a demo today.At Talkdesk, we are courageous innovators focused on redefining customer experience, making the impossible possible for companies globally. We champion an inclusive and diverse culture representative of the communities in which we live and serve. And, we give back to our community by volunteering our time, supporting non-profits and minimizing our global footprint. Each day, thousands of employees, customers and partners all over the world trust Talkdesk to deliver a better way to great experiences.
We are recognized as a cloud contact center leader by many of the most influential research organizations, including Gartner and Forrester. With $498 million in total funding, a valuation of more than $10 Billion, and a ranking of #8 on the Forbes Cloud 100 list, now is the time to be part of the Talkdesk legacy to help accelerate our success in a new decade of transformational growth.
The Director - GRC at Talkdesk will manage and oversee compliance with information security and business continuity related standards, legal and regulatory frameworks based on Talkdesk strategy and contractual commitments aligned with Talkdesk culture but being able to always challenge, reporting directly to the CISO.
At the same time, Talkdesk is growing and expanding and offers constant challenges. Therefore, anyone joining our Information Security team will easily be involved in additional projects and initiatives, growing with new challenges!
Responsibilities:
- Ensure compliance with and be responsible for the management of the:
- Talkdesk integrated Management system according to ISO27001,ISO22301 and ISO 27701 principles.
- PCI DSS certification
- APEC CBPR and APEC PRP
- SOC 2 Type 2 and SOC accreditations
- This includes ensuring all the necessary security, privacy and business continuity requirements are kept every year (eg. Management Review, non-conformity status).
- Manage the day to day operations of the GRC team
- Work towards increasing the scope of the integrated Management System, covering additional processes but also additional specific best practices (, ISO27018, ISO27017).
- Integrate additional Management Systems to have an unique Management System for additional ISO standards.
- Manage and prepare certification audits and be the single point of contact with external auditors.
- Maintenance, development and enforcement of Information Security Policies (from high-level to more technical ones)
- Participate in projects to implement other security, privacy or business continuity standards or frameworks
- Develop and support specific metrics/KPIs
Requirements:
- 10 years experience in managing Information Security Management Systems, according to ISO27001 requirements, Business Continuity Management Systems, according to ISO22301
- ISO 27001 Implementer/Lead Implementer certification
- ISO22301 Lead Implementation certification
- Highly organized and methodical
- Good analytical skills
- Solution focused and critical thinking
- Adaptability to changing environments
- Autonomous and proactive
The Talkdesk story hinges on empathy and acceptance. It is the shared goal among all Talkdeskers to empower a new kind of customer hero through our innovative software solution, and we firmly believe that the best path to success for our mission is inclusivity, diversity, and genuine acceptance. To that end, we will hire, promote, work along, cheer for, bond with, and warmly welcome into the Talkdesk family all persons without regard to ethnic and racial identity, indigenous heritage, national origin, religion, gender, gender identity, gender expression, sexual orientation, age, disability, marital status, veteran status, genetic information, or any other legally protected status.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISO Cloud Compliance Governance ISO 22301 ISO 27001 KPIs PCI DSS Privacy SOC SOC 2 Strategy
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Manager Pentest H/F jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Engineer jobs
- Open Senior Cyber Security Specialist jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs