500italentlogo

Senior Manager - GRC

Mountain View, California


  • Posted in Mountain View, California
  • Posted on October 11, 2017
  • Jobtype fulltime

Sorry, but this job is expired

Check out some other jobs from iTalent Digital

103341734

Job Description

Profile Summary:

Reporting directly to the Director GRC, the Senior manager GRC will support GRC implementation & operational efforts and liaise with various teams to manage the GRC compliance program. This position will require a compliance, security management, and risk assessment background. Familiarity with standard ISO, SOX, GRC, ISMS Governance models, concepts, practices, and procedures is a huge advantage.

 

They are looking for energetic & enthusiastic people with excellent communication & interpersonal skills, clarity of thought, a DOER with “can do” and “get things done” attitude, natural problem-solver with a willingness to get into the weeds, identify root causes of issues and mitigate operational risks.  

 

It’s a high-visibility, high-impact, and exciting role on W2 Contract for 3 months.

 

Responsibilities:

  • Support the GRC Director in the development of the GRC operating model and a service-oriented customer engagement model.
  • Support the GRC Director in the operationalization of various GRC capability areas such as enterprise security risk management, compliance management, policy management, third party risk management, and metrics and reporting, as our client looks to mature these areas.
  • Lead the operationalization of security compliance programs to support various compliance regulations that our client needs to comply with.
  • Lead a team of security risk assessment specialists who focus on performing risk assessments that address security threats, changes to systems and/or applications, process improvement initiatives, supplier assessments (including downstream outsourcers) and other requests from the business.
  • Work with various operational teams across our client to drive towards a cohesive view of security risk and drive remediation items to closure.  Maintain accurate reporting of remediation activities to bring appropriate visibility to stakeholders and their leadership regarding their open items.
  • Monitor the security risk profiles of our suppliers to objectively determine high risk suppliers that require additional review.
  • Act as security risk management “ambassador” to both internal and external customers.  Provide guidance and leadership to other risk management team members.

Accountabilities:

  • The use of defined risk methodologies (e.g., Octave Allegro) and best practices to perform IT/Security assessments.  Responsible for the planning, scoping and execution of these assessments.  Manage surge support consultants, as applicable, to deliver quality assessments, within time and within budget.
  • Management and improvement of the security risk taxonomy to keep in-line with current threat landscape, enterprise strategy/initiatives and current regulatory requirements at least annually.
  • Driving remediation activities from identification, remediation plan and closure.  Hold owners accountable to delivery of remediation solution within the agreed upon/reasonable SLA.
  • Development of actionable and agile security compliance programs to support various compliance regulations that our client needs to comply with.
  • Operationalization of a metrics and reporting function to continually report on meaningful security, risk and compliance metrics for operational and executive management at our client. Develop and manage the automation of KRIs and KPI reporting that align with operational/business risk areas and corporate risk.

Requirements

Skills and Attributes required:

  • Candidate must have 10+ years working in governance, risk and compliance and/or information security and risk management.
  • Functional knowledge of the CISSP security domains and information security industry standard and best practices.
  • Functional knowledge of applicable security regulatory requirements (SOX, GDPR).
  • Functional knowledge of ISMS governance models (i.e. ISO 27001, NIST, CAIQ), information security roles, security controls.
  • Functional knowledge of common security certifications (i.e. ISO 27001, SOC1, SOC2, Webtrust) and ability to glean significance from findings identified in these reports.
  • Ability to communicate risk methodologies and concepts to the business unit and IT.
  • Demonstrated experience with controls definition, development, implementation and assessment.
  • Demonstrated experience leading and executing security assessments.
  • Strong interpersonal skills and ability to work effectively with diverse and distributed teams.
  • Strong attention to detail, project management and organizational skills.
  • Travel requirements <=25% that would include GSO all hands meetings, team offsite meetings, and training.
  • Big 4 Consulting experience in GRC is a plus

Education: BS/BA in Business Administration, Computer Science, Engineering, Information Systems and/or equivalent formal training or experience 

 

About Our Client:

Our client is a forerunner in Data Management, Data Storage, Data Security, Back-up, Business Continuity, Information Governance, and Security Management. This multi-billion-dollar company offers you the opportunity to be a part of the Global Data Protection Regulations team.

 

About iTalent Digital:

A woman- and minority-owned digital consulting company, we celebrate individuals and diversity, cultivating a culture where our people can excel and lead balanced lives. Recruitment at iTalent is guided by an unwavering principle: Only hire the best. Because we have the best people, we have the privilege of working with the best clients, doing the best work, and effecting transformative change at work and in our communities.

 

What you get:

You get the chance to work with some of the best brands and high-performance teams out there! iTalent offers our W2 consultants excellent benefits such as medical, dental, vision, life insurance and 401K + matching. We are growing and we want to see you grow!

 

Log onto www.iTalentDigital.com to learn more about what working at iTalent can mean for you.

  • Posted in Mountain View, California
  • Posted on October 11, 2017
  • Jobtype fulltime

Jobs at iTalent Digital

At iTalent Digital, we’re honored to have some of the world’s most renowned high-technology companies as clients. We are technologists ourselves and have experienced the challenges of staffing projects with high-quality IT talent. It is through our ability to truly understand each client’s needs that we are able to deploy the right people, processes, and technologies to overcome otherwise daunting initiatives to achieve unparalleled results and success.

The iTalent Digital team has years of combined experience leading and staffing large-scale IT projects for many Fortune 500 companies, with particular strength in the high-tech vertical.

iTalent 
iTalent Digital is focused on, and dedicated to, delivering services that maximize the value of its clients human and technology investments. Our corporate headquarters are in the heart of Silicon Valley in Santa Clara, CA, with additional locations across the United States.