Director - Global Governance Risk & Compliance
London, City of London
Director - Global Governance Risk & Compliance
London, City of London
The details
This vacancy has now expired.
Start your job searchDirector - Global Governance Risk & Compliance
Global software vendor is searching for an experienced information security compliance leader to improve internal audit program maturity, meet obligations of ISO 27001/SOC 2 internal assessment, mature the risk management program, drive and monitor remediation efforts, improve oversight and vetting of vendors, and improve process around responding to post-sale customer audit requests (remote and on-site). This position will report to the Chief Information Security Officer (CISO). This position will be also responsible for day-to-day security oversight of the company's corporate systems and processes (Internal IT, HR, Finance, Corp Legal).
A successful individual will need to work closely with the CISO, Head of Hosting, Head of IT, CFO, General Counsel, Chief Privacy Officer, external vendors providing security services, and customer audit contacts. This position will have responsibilities over every global site and may have some limited need for travel, especially within the EMEA region.
This position will interact with product management for compliance related products to provide security guidance and eventually act as an SME for customers who may have questions around the security and compliance aspects of the company's software suite of products.
Primary Responsibilities:
- Work with auditors and technical subject matter experts to satisfy internal and external audit requirements, SOC 2, ISO 27001:2013 testing requirements
- Maintain internal & external audit calendar
- Keep management and stakeholders apprised of audit schedule and responsibilities
- Understand and maintain database of external customer audit responsibilities
- Maintain relationships with external auditing firms
- Update GRC tool with audit artefacts or references to audit artefacts
- Manage Risk Register (including tracking exception, acceptance, and renewal)
- Drive periodic risk review assessment activities
- Maintain risk management metrics
- Manage remediation efforts stemming from audits
- Manage customer external audits
- Create and maintain metrics around audit response
- Maintain oversight of vendor management security oversight process
- Coordinate with hosting team on projects and programs supporting security objectives
- Understand the company's product suite and provide security advice to same
Essential Education and Experience:
- Experience with various frameworks & standards (ISO 27x, PCI, NIST 800-53 etc)
- 6-8 years managing an IT regulatory compliance team or project or comparable information systems audit experience, with responsibility for interfacing with internal and external auditors
- CISA, CIA or equivalent certification
- Ability to work independently, mentoring and managing IT team
- Bachelor's Degree in Computer Science, Information Systems, or other related field or equivalent in information security related technical training and experience
- Demonstration of strong communication and interpersonal skills and ability to communicate to stakeholders with varying levels of technical capabilities
- Experience of working across global teams
- Team player; works well independently and as part of a team
Desired Experience
- Advanced degree in Business Administration, Information Management, Computer Science or equivalent
- Use of SalesForce and ticketing systems
- Experience with RSA, ZenGRC or similar tools
- Software development experience
Please send your CV to Michael Moretti for immediate consideration.
Related jobs
Salary:
£28,000 - £30,000 per annum
Location:
Bradford, West Yorkshire
Industry
Professional Services
Qualification
None specified
Market
Commerce & Industry
Salary
£30,000 - £35,000
Job Discipline
Part Qualified & Transactional Finance
Contract Type:
Permanent
Description
Marks Sattin are currently recruiting a Payroll Assistant on behalf of a leading service provider, based in Bradford.
Reference
BBBH179966
Expiry Date
01/01/01
Author
Yasmin CloughAuthor
Yasmin CloughSalary:
Up to £56,000 per annum + +bonus/benefits
Location:
Bath, Somerset
Industry
Technology
Qualification
None specified
Market
Commerce & Industry
Salary
£50,000 - £60,000
Job Discipline
Business Intelligence & Analytics
Contract Type:
Permanent
Description
Data Engineer - Azure
Reference
BBBH180201
Expiry Date
01/01/01
Author
Amine ZekriAuthor
Amine ZekriSalary:
£25,000 - £26,000 per annum
Location:
Lancashire
Industry
Consumer & Retail
Qualification
None specified
Market
Commerce & Industry
Salary
£25,000 - £30,000
Job Discipline
Part Qualified & Transactional Finance
Contract Type:
Permanent
Description
French Speaking Accounts Payable Specialist | Lancashire | 12 month Contract | £26,000
Reference
BBBH180185
Expiry Date
01/01/01
Author
Conor BrooksAuthor
Conor BrooksSalary:
£70,000 - £80,000 per annum + + Bonus & Car Allowance
Location:
Dunstable, Bedfordshire
Industry
Manufacturing
Qualification
Fully qualified
Market
Commerce & Industry
Salary
£80,000 - £100,000
Job Discipline
Qualified Finance
Contract Type:
Permanent
Description
Financial Controller - Dunstable (Hybrid) - £70,000 to £80,000 + Bonus & Car Allowance
Reference
BBBH180196
Expiry Date
01/01/01
Author
Neil BurtonAuthor
Neil BurtonRelated articles
Teaser
Finance & AccountingContent Type
General
25/04/24
Summary
Over the years, we have developed a strong reputation as a leading Senior Finance and Executive Search firm. We’re proud to have well-established teams of finance and accounting recruitment cons
by
Neil Burton
Teaser
GovernanceContent Type
Fintech
18/04/24
Summary
The role of risk and compliance in financial services As a sizeable, growing portion of the financial services sector, risk and compliance play a vital role in ensuring that firms conduct busine
by
David Clamp
Teaser
Executive SearchContent Type
General
18/04/24
Summary
Private equity (PE) is a growing industry that has always attracted ambitious top talent due to its high risk/high gain capital investment. Pre-covid, we saw the global private equity industry b
by
Tracey Alper