Back to jobs
GRC Manager
Job description
Trident Search are working with a tech first focused hedge fund who are looking for an autonomous GRC specialist to join their team of 4, working across the globe. The reason for the autonomy is because they have a very strong engineering culture and are always trying to be at the forefront of the technological landscape. This role is heavily focused on compliance, naturally, so a breadth of experience across GRC is needed. This company are also looking for someone who has experience or knowledge with the DORA framework.
The Role:
Qualifications:
The Role:
- Policy creation and the continuous review of standards and compliance roadmaps
- Work with internal stakeholders and clients to ensure SLA’s and standards are met
- Helping with establishment of GRC strategies and preventative measures across the business
- Working closely with the internal teams to understand their roles and priorities to enable BAU
- Reviewing key metrics pertaining to a program, monitoring potential metric deviations, and defining corrective actions for critical deviations.
- Assessing controls and control objectives from different sources and creating and updating a single common control framework.
- Monitoring all control performance for Core Engineering and escalating as necessary and executing controls that InfoSec is responsible for.
- Assessing third-party risk and maintaining documentation.
Qualifications:
- BS or BA degree in IT Management, Cyber Security, or related field. MS in cyber security strongly preferred.
- 5+ years of experience working in a governance, risk and compliance program.
- Strong written and verbal communication and presentation experience.
- Experience moving from strategy to execution and delivering tangible results.
- Experience in consistently and effectively defending ideas and solutions.
- Deep knowledge of industry frameworks, particularly FSSCC, CIS, NIST 800-53, ISO 27001, ISO 27018, DORA, KANBAN, and CBSE.
- Deep knowledge of global financial regulatory environments.
- Demonstrable experience building common control frameworks and assessing controls for the same.