Director, Governance Risk & Compliance

Justworks-posted 3 months ago
$250,000 - $300,000/Yr
Full-time • Senior
Hybrid • New York, NY
1,001-5,000 employees
Professional, Scientific, and Technical Services
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

Justworks' Digital Security team is responsible for the security of Justworks products, platforms, services, and corporate operations. Led by the Chief Information Security Officer, Digital Security's vision is to become the partner and enabler for business and engineering by working collaboratively with others to embed security in business hygiene and engineering DNA to strengthen our cyber resilience. We are very excited to search for an experienced and motivated security leader to join the team to lead and manage the Security Governance, Risk, and Compliance (GRC) function. This Director of GRC role will provide expert leadership in all matters pertaining to governance, risk management, and compliance, ensuring security programs are successfully executed to protect Justworks customers and strengthen cyber resilience for Justworks. This role will be responsible for providing a risk management framework and process, governance oversight, and ensuring compliance with regulations and our internal policies/standards. This Director will report to the VP, Chief Information Security Officer (CISO).

  • Work with the Chief Information Security Officer (CISO) to lead and manage enterprise-wide security governance and risk management program.
  • Design and drive the digital security and integrated risk management strategy, framework, tools, and processes.
  • Responsible for strategizing, managing, resource planning and hiring, measuring (SLAs, OKRs), partner development, and other aspects of running GRC as a service.
  • Introduce the necessary GRC tools or platforms to define, simplify, and automate the risk management processes.
  • Oversee, maintain, and track Justwork's Security Risk Registry as part of the risk management process.
  • Work with procurement, legal, IT and other stakeholders closely on the TPRM (3rd-party risk management) program.
  • Continue to enhance Justworks' security policies and standards based on Justworks agile development, zero-trust environment, and emerging threat landscapes.
  • Enhance the Security Compliance Program to ensure regulatory compliance.
  • Build a cross-functional security governance model and effectively run various governance committees.
  • Continue to enhance and mature the security awareness and training program effectively.
  • Work with the CISO to define security metrics and develop GRC dashboard.
  • Work closely with internal Audit and entities to support Enterprise Risk Management.
  • Minimum of 10 years of cyber security experience, with a combined background of technology and compliance.
  • 7+ years in a leadership position, and 5+ years experience in managing any Security Governance, Risks, and Compliance (GRC) functions and/or Internal Audit function.
  • Solid experience and be familiar with SOC2, SOX, GDPR, CCPA or PCI compliance.
  • Extensive experience in risk management, vendor and client security management.
  • CISSP and CISM certifications and/or advanced degree in Systems Assurance or Information Systems, a plus.
  • Familiarity with cyber security frameworks and risk management frameworks.
  • Experience with tech companies and the cloud is required.
  • Strong communication and presentation skills.
  • Strong relationship management, team building, and facilitation skills.
  • Experience working in a complex matrix organization.
  • Solid and demonstrable comprehension of cyber security including malware, threats, attacks, incidents, and vulnerability management.
  • Ability to think strategically; work with a sense of urgency and pay attention to detail.
  • Experience with other industry such as HR, health & insurance is preferred.
  • Demonstrated the ability to redesign ways of working and re-engineering processes to activate operational agility, efficiency, and business growth while maintaining security.
  • A reliable and trustworthy leader with an outstanding work ethic.
  • Independent and creative thinker with the willingness to 'step outside the box' and take reasonable, calculated risks.
  • Welcoming and casual environment.
  • Great benefits and wellness program offerings.
  • Company retreats.
  • Ability to interact with and learn from leaders in the startup community.
Track Jobs with Teal

Job Search Resources

Resume Builder
Compliance Director Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service