Director of Governance, Risk, and Compliance (GRC) - US Remote
Atlanta, GA, US Remote
Applications have closed
VerSprite
Don't let unknown cybersecurity threats lurk in your enterprise networks. VerSprite helps solve your most complex cybersecurity challenges.VerSprite
VerSprite is an Inc. 5000 2020 fastest growing company and industry leader in PASTA threat modeling. Founded in 2007, VerSprite is a private cybersecurity consulting firm helping organizations tighten their risk-gaps with evolved security solutions and advanced threat intel tools.
VerSprite has a 97% client retention rate providing organizations with services like penetration tests, evolved red teaming engagements, vCISO, vSOC and VerSprite’s advanced security tools Cloud Security Assessment Platform and Cyber Threat Intelligence Portal.
Job Title: Director of Governance, Risk, and Compliance (GRC)
Location: Remote,
Position Overview:
The Director of GRC will be responsible for developing, implementing, and managing the company's governance, risk, and compliance framework. This role will oversee all aspects of GRC, including policy development, risk assessment, compliance monitoring, and regulatory reporting. The ideal candidate will have a strong background in GRC practices, excellent leadership skills, and a proven track record of driving successful GRC programs.
Key Responsibilities:
- Develop and implement a comprehensive GRC framework aligned with industry standards, regulatory requirements, and organizational objectives.
- Establish and maintain policies, procedures, and controls to mitigate risks and ensure compliance with applicable laws, regulations, and standards.
- Conduct regular risk assessments to identify, assess, and prioritize enterprise-wide risks and vulnerabilities.
- Lead the development and implementation of risk mitigation strategies and action plans in collaboration with key stakeholders.
- Monitor and report on compliance with internal policies and external regulations, including GDPR, SOX, PCI-DSS, and other relevant standards.
- Serve as the primary point of contact for regulatory agencies, auditors, and other external stakeholders on GRC-related matters.
- Provide leadership and guidance to cross-functional teams to drive a culture of compliance and risk awareness throughout the organization.
- Stay abreast of emerging threats, regulatory changes, and industry best practices in GRC, and recommend appropriate measures to address evolving risks.
- Collaborate with senior management to provide regular updates on the status of GRC initiatives, key risk indicators, and compliance trends.
- Foster a culture of continuous improvement by identifying opportunities to enhance GRC processes, tools, and methodologies.
Qualifications:
- Bachelor's degree in business, finance, information technology, or a related field; advanced degree or professional certification (e.g., CISA, CISSP, CRISC, CISM, CGEIT, CIA) preferred.
- Minimum of 5 years of experience in governance, risk management, compliance, or related fields, with at least 3 years in a leadership role.
- Strong understanding of GRC principles, frameworks (e.g., COSO, ISO 31000), and regulatory requirements across multiple industries.
- Demonstrated experience in developing and implementing GRC strategies, policies, and procedures in a complex organizational environment.
- Proven track record of effectively managing enterprise-wide risks, conducting risk assessments, and implementing risk mitigation measures.
- Excellent communication, interpersonal, and leadership skills, with the ability to influence and collaborate with stakeholders at all levels of the organization.
- Strategic thinker with the ability to translate business objectives into actionable GRC initiatives and drive results.
- Highly organized and detail-oriented, with the ability to manage multiple projects and priorities simultaneously.
- Strong analytical skills, with the ability to analyze complex issues, identify root causes, and develop practical solutions.
- Commitment to integrity, ethical conduct, and confidentiality in handling sensitive information.
Application Instructions:
To apply for the position of Director of GRC, please send your resume and cover letter outlining your qualifications and relevant experience to join.us@vs-staff.com. We thank all applicants for their interest; however, only those selected for an interview will be contacted.
Benefits
We offer a competitive compensation package where you’ll be recognized for the value you bring to our business, along with:
- Opportunities to develop new skills and progress your career;
- The freedom and flexibility to handle your role in a way that’s right for you; and
- A collaborative environment where everyone works together to create a better working world
If this seems intriguing to you, please apply! We will reach out promptly to discuss your fit and additional job details.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CIA CISA CISM CISSP Cloud Compliance CRISC Finance GDPR Governance Monitoring Red team Risk assessment Risk management Security assessment SOX Threat intelligence Vulnerabilities
Perks/benefits: Career development Competitive pay
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open PowerShell-related jobs
- Open SQL-related jobs