Company

Pax8See more

addressAddressUnited States
type Form of workFull-time
CategoryInformation Technology

Job description

Director of Security GRC

Pax8

Position Summary:

The Director of Security Governance, Risk, and Compliance (GRC) is focused on ensuring Pax8’s security policy framework, exception management, risk assessment, and compliance efforts are operating effectively. They oversee the delivery of the security policy and standards, including management, tracking, and remediation of deviations from the security policies. Additionally, the Director supports the efforts of measuring the control effectiveness through risk assessment efforts to promote further maturity of the security program. They are a key member of the GRC team, providing guidance and direction to GRC professionals and collaborating with other departments across our organization.

Essential Responsibilities:

  • Manage inquiries and requests to update the security policy and standards through cross-functional team coordination.

  • Establish, implement, and manage requests for policy exceptions evaluating based on a risk model and promoting policy adherence and remediation.

  • Oversee control effectiveness and program maturity assessment efforts to support security program prioritization.

  • Participate in security automation and tool selection efforts aligned with the security policies and standards.

  • Develop and maintain security procedures including defining and documenting security best practices for managing a risk-based process.

  • Stay up to date on industry trends and best practices including continuously learning and adapting the security program to address evolving threats.

  • Collaborate with other departments including IT, engineering, legal, data management office, HR, and other departments to ensure security considerations are integrated into all business processes.

  • Measure and report on security performance by tracking key metrics (KPIs/KRIs), identifying areas for improvement, and reporting to the GRC leader and other stakeholders.

Ideal Skills, Experience, and Competencies:

  • At least (10) years of experience in an IT security GRC role.

  • Proven experience in policy management, exception management, remediation tracking, risk assessment, and risk-based prioritization efforts (e.g., asset criticality, data classification, BIA).

  • Understanding of public cloud deployments and associated security risks and controls.

  • Experience working in a Zero Trust focused security program,

  • Strong understanding of Security best practices and frameworks (e.g., MITRE ATT&CK, NIST Cybersecurity Framework, ISO 27001:2022, SOC2 audit efforts).

  • Experience with incident management and response planning efforts.

  • Excellent communication, interpersonal, and leadership skills.

  • Ability to perform risk assessment efforts and deliver on security program initiatives.

Required Education & Certifications:

  • B.A./B.S. in related field or equivalent work experience.

  • Risk-focused certifications (e.g., CISA, CRISC, CISSP) preferred.

Compensation:

  • Qualified candidates can expect a salary beginning at $150,000 or more depending on experience

Expected Closing Date: 5/31/24

#LI-Remote #LI-AG1 #BI-Remote #DICE-A

Refer code: 9305884. Pax8 - The previous day - 2024-05-24 06:55

Pax8

United States

Share jobs with friends

Related jobs

Director Of Security Grc

Director of Contracts

A Computer & Network Security Company

Jersey City, NJ

just now - seen

Senior Director - Information Security Governance, Risk & Compliance (GRC) - Remote

Ryder System

$150,000 - $180,000 a year

Dover, DE

3 days ago - seen

Director of Security Programs (Office of the Chief)

Bart Hr

$220,000 - $241,433/ annually

Oakland, CA

4 days ago - seen

IT Security Director

Ntt Data, Inc.

Austin, TX

7 days ago - seen

Director of Application Security (US Remote)

Experian

United States

7 days ago - seen

Director of Hardware Security

Aon

Washington, United States

a week ago - seen

Director of Security

Crown Equipment

New Bremen, OH

2 weeks ago - seen

Director Endpoint Security Engineering

Marriott

Montgomery, AL

2 weeks ago - seen

Director Endpoint Security Engineering

Marriott

Springfield, IL

2 weeks ago - seen

Director Endpoint Security Engineering

Marriott

Nashville, TN

2 weeks ago - seen

Director, Information Security – Governance, Risk and Compliance (GRC)

Fresenius Group

Lexington, MA

2 weeks ago - seen

Director, Audit - IT Security

Usaa.

Plano, TX

2 weeks ago - seen

Security Director - Retail (J42R-00020)

Andy Frain Services

$29.06 an hour

Tupelo, MS

2 weeks ago - seen

Director Information Security & System Architecture

Manna Beverages & Ventures

Remote - West Sacramento, CA

2 weeks ago - seen

Assistant Director, Information Security (Restricted Funds)

Mt. San Antonio College

Walnut, CA

3 weeks ago - seen

Senior Director of State Campaigns

Economic Security Project

$167,000 - $208,000 a year

Remote

4 weeks ago - seen