Cybersecurity GRC Manager

We are seeking a Cybersecurity GRC Manager to join our team. This role will focus on managing and enhancing the company's cybersecurity governance, risk, and compliance program. This position is crucial for ensuring our security postures align with regulatory standards and best practices. As the Cybersecurity GRC Manager, you will play an integral role in maintaining the integrity and confidentiality of our company's information. The ideal candidate is a proactive individual who can identify potential threats, implement strategies to mitigate risk and has a strong background in cybersecurity with a passion for safeguarding information.

Key Responsibilities:

• Oversee and manage all aspects of the cybersecurity governance, risk, and compliance program.
• Create comprehensive cybersecurity policies and procedures that comply with relevant laws, regulations, and standards.
• Regularly perform risk assessments and audits to identify potential vulnerabilities in our systems and processes.
• Monitor and report on the effectiveness of the cybersecurity program.
• Work closely with all departments to integrate cybersecurity measures into their operations. This includes providing education and training to staff to raise awareness of cybersecurity risks and compliance requirements.
• Lead incident response planning and the investigation of security breaches.
• Regularly provide training sessions and materials to staff to ensure they understand the importance of cybersecurity and their role in maintaining it.
• Stay abreast of the latest developments, threats, and trends in cybersecurity.

Qualifications:

• Bachelor’s degree in computer science, Information Technology, or a related field, or equivalent relevant work experience
• At least 5 years of proven experience in a similar role, ideally in a leadership position
• Strong knowledge of cyber risk and cybersecurity principles, including familiarity with relevant laws, regulations, and standards such as CIS and NIST.
• Professional certifications like CISSP, CISA, CISM, CGRC or similar are preferred.
• Excellent problem-solving skills and the ability to make decisions based on accurate and timely analyses.
• Strong interpersonal and communication skills, with the ability to explain complex security concepts to non-technical staff.
• Ability to handle sensitive and confidential information with discretion.

The expected salary range for this position is between $125,000 and $155,000.