We are seeking a highly skilled and experienced Governance, Risk, and Compliance (GRC) Leader to join our dynamic team. The GRC position will play a critical role in ensuring that our organization adheres to all regulatory requirements, mitigates risks, and maintains a robust compliance framework.

• Governance: Develop, implement, and maintain governance frameworks, policies, ISO, and procedures to ensure compliance with all relevant regulations and standards.
• Risk Management: Identify, assess, and mitigate risks across the organization. Conduct regular risk assessments and develop strategies to manage and reduce risks.
• Compliance: Monitor and ensure compliance with all applicable laws, regulations, ISO and industry standards. Conduct internal audits and reviews to ensure adherence to compliance policies.
• Stakeholder Engagement: Work closely with internal and external stakeholders, including regulatory bodies, auditors, and legal advisors, to ensure compliance and manage risks effectively.
• Policy Management: Develop and enhance enterprise-level security, risk, and privacy policies, processes, and controls to mitigate risk and ensure compliance with relevant laws and regulations.
• Subject Matter Expertise: Serve as the go-to expert for information security risk management principles and practices.
• Privacy Assessments: Conduct and advise on privacy impact assessments as needed.
• Develop and Implement Data Governance Policies: Create and enforce policies and procedures for data management, ensuring compliance with regulatory requirements and industry standards.
• Data Lifecycle Management: Establish processes for data classification, retention, and disposal, ensuring that data is managed effectively throughout its lifecycle.
• Data Governance Framework: Develop and maintain a data governance framework that outlines roles, responsibilities, and processes for data governance within the organization.

• Bachelor’s degree in computer science, information management, security and engineering, or other related degree
• Professional certification (e.g., CISA, CRISC, CISSP) is preferred.
• Minimum of 7 years of experience in governance, risk management, and compliance roles, preferably within a regulated industry.
• In-depth knowledge of regulatory requirements and industry standards (e.g., GDPR, ISO 27001, SOX).
• Strong ethical standards and a commitment to maintaining confidentiality and integrity in all activities.
• Strong analytical and problem-solving skills, with the ability to assess complex issues and develop effective solutions.
• Strong understanding of data governance principles, data quality management, data stewardship, and data lifecycle management.
• Excellent communication and interpersonal skills, with the ability to influence and collaborate with stakeholders at all levels.
• Proven ability to manage multiple tasks and projects simultaneously, with keen attention to detail.