The GRC information security project manager will be part of the GRC Team which is responsible for the development, implementation, and maintenance of security controls worldwide.
Responsible for management of security risk assessments, policy and procedures governance and validation of compliance with regulatory requirements such as GDPR, ISO27001, HIPAA, etc.
Manage the IT Security risk based compliance in alignment with organizational policies and regulations.
Manage the IT Security audit & review programs including preforming third-party risk assessment and cloud security risk assessment.
Act as an internal consultant and subject expert for all security GRC related concerns.
four years of experience in information security project management
Proven knowledge in information security governance techniques, risk assessments, risk frameworks and compliance.
Understanding of information security risk and control frameworks (e.g. NIST CSA, ISO 27001, COBIT, GDPR)