IT Governance, Risk and Compliance Program Manager / Dearborn, MI (Hybrid)

Ab2 Consulting - Dearborn, MI

posted 5 days ago

Full-time - Mid Level
Dearborn, MI
Professional, Scientific, and Technical Services

About the position

The GRC Program Manager is responsible for overseeing the Information Technology (IT) security risk and controls for both IT and business processes. This role involves developing and maintaining policies, processes, and procedures for IT, while coordinating with other departments to ensure enterprise-wide compliance and security measures are in place. The position requires collaboration across the organization to align business and cyber risk programs, manage data governance frameworks, and ensure adherence to applicable regulations.

Responsibilities

  • Develop, implement, and maintain the information security program, risk and controls function.
  • Collaborate and drive business and cyber risk program alignment across the enterprise.
  • Assist with the implementation and ongoing support for security measures to protect Personally Identifiable Information (PII).
  • Manage enterprise-wide data governance framework focusing on improvement of organizational policies and standards.
  • Plan, execute, and manage multiple projects to budget, completing audits and business process control reviews.
  • Review and test company-wide IT Security & Controls processes to assess business risks and controls effectiveness.
  • Develop and execute project and vendor risk assessments, recommending risk mitigation techniques.
  • Maintain active communication with project teams and vendors, managing expectations and adherence to policies.
  • Act as the key contact for clients' Governance, Risk Management and Compliance (GRC) team.
  • Work with IT to complete audits and update Component Assessments as needed.
  • Create and update content for compliance and privacy training, facilitating sessions for employees and contractors.
  • Stay current on the information security and privacy landscape, ensuring policies and controls are relevant.

Requirements

  • Multi-disciplined experience within an IT environment (7+ years).
  • Information security, privacy, and information protection leadership experience (5 years).
  • IT Security & Controls policy and compliance enforcement experience.
  • Experience successfully scoping, planning, and driving technology development projects.
  • Experience creating and enforcing security policies for the Enterprise and Suppliers.
  • ISO information security experience is a plus.
  • Audit experience.

Nice-to-haves

  • Proficient in Microsoft Office skills (Word, Excel, and PowerPoint).
  • Exceptional interpersonal and business communication skills (written, verbal, listening).

Benefits

  • Competitive salary range of $106K - $135K per year.
  • Hybrid work environment.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service