Celebre lo que viene.
Cree nuevas posibilidades.

Job Purpose and Impact

• The Director of Governance, Risk & Compliance job leads the execution of the tactical and strategic plans related to risk management, quantifying enterprise risk appetite and tolerance, establishing and improving security policies, and maintaining a cyber risk register. This job leads and guides the team responsible for leading enterprise risk management interface on information security, performing compliance test, partnering and influencing key teams across the technology organization to ensure execution performance, and communicating company level metrics and progress on risk management goals.

Key Accountabilities

• Establishes and articulates the organization's risk appetite and tolerance levels to guide decision making process, and establishes value risk measures and prioritizes enterprise cybersecurity risks.
• Reviews and validates fit for purpose security policies and standards in line with risk tolerance and regulatory requirements, and assures appropriate implementation, communication and enforcement of policies and standards.
• Leads the cyber risk register, quantifying risk implications, prioritizing risks and ensuring timely updates and reporting.
• Oversees and allocates resources necessary for compliance testing to assess adherence to internal policies and external regulations, identifying systemic compliance gaps, resolving root cause and proposing improvement options, including cost benefit analysis.
• Reviews and monitors the execution of risk management strategies and initiatives to ensure effectiveness and alignment with organizational goals, and oversees performance monitoring processes to assure that performance measures both leading and lagging remain effective indicators of satisfactory risk management.
• Prepares and communicates metrics related to risk management progress and coordinates with internal and external stakeholders to report on risk management metrics, ensuring transparency and accountability.
• Engages company enterprise risk management, audit and leadership teams to assure cyber risks are appropriately integrated into broader risk management practices and enterprise risk management framework, defining the cybersecurity strategy for collecting, analyzing and prioritizing risk management initiatives, aligned to the enterprise risk management framework.
• Cultivates collaboration with cybersecurity peers, risk managers in other functions, government affairs, external experts, industry consortia, and other partners to gather internal and external requirements, map current and emerging compliance rules, balance competing priorities, develop risk mitigation strategies, evaluate cost benefit cases, and advocate for solutions that meet business objectives.
• Manages team members to achieve the organization's goals by allocating resources, ensuring productivity, communicating performance expectations, creating goal alignment, giving and seeking feedback, providing coaching, measuring progress and holding people accountable, supporting employee development, recognizing achievement and lessons learned, and developing enabling conditions for talent to thrive in an inclusive team culture.

Qualifications

Required Qualifications

• Bachelor’s degree in computer science, information systems, cybersecurity, or a related field  
• Around 10 years of relevant work experience
• Five years of supervisory experience  
• Expert understanding risk management, quantifying enterprise risk appetite and tolerance and security policies
• Experienced in cross functional collaboration with program management and procurement to ensure financial and delivery commitments are maintained  

Preferred Qualifications

• Experience leveraging broad oversight of team activities to ensure compliance with risk and security or regulatory policies, standards, procedures and guidelines 
• Competent in leading and managing a global team independently 
• High aptitude in thinking strategically and incorporating business needs into technical roadmaps 
• Proficient in translating security-related matters into business terms that are clear and understandable to executives 
• Capacity to think outside the box when designing systems and solutions 
• Proven experience providing direction, delegating and removing obstacles for team 
• Develop and deliver multimode communications that convey a clear understanding of the unique needs of different audiences 

This role is Hybrid in Atlanta, Georgia.