Jobs for People with MS: National MS Society

Job Description

Our client is the number one hybrid packaging company that is looking to mature their security program. From a security standpoint, they have defined their control library and framework based on ISO and NIST, theyve been assessed based on those standards and are rolling out a security program to further align with those frameworks. For this reason, our client is building out their security team of two and are seeking a GRC Manager. The GRC Manager will assist with establishing GRC practices, finalizing and formalizing policies related to ISO, CSF and CIS frameworks, utilizing automation capabilities when administering assessments for SAS based offerings, creating a risk management program with some repositories, designing and maintaining a risk register, and being a facilitator if they choose to become ISO certified down the road. This role will also involve partnering with 3rd party vendors and their IT and Engineering teams to communicate, train, and implement security best practices and clean up their security platform.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

Skills and Requirements

7-10 years of experience in GRC-related role with a strong security risk assessor background

 Strong knowledge and experience implementing security policies based on ISO, NIST, TCI, CSF and CIS Control frameworks

 Experience designing and maintaining a risk register (ITRM)

 Experience utilizing automation capabilities when administering assessments

 Experience gathering qualitative and quantitative metrics from that to create risk categories

 Experience working with 3rd party vendors (ex: reviewing contracts, 3rd party questionnaires)

 Global experience Experience with ITRM system like GRC Archer, Logic, Beyond Trust, One Trust

 Regulatory industry background

 Experience/knowledge of GDPR

 Knowledge of California Privacy Act

 Military background null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.