VP of Governance - Risk and Compliance (GRC)

Position Summary:

The VP of Governance, Risk and Compliance (GRC) is responsible for developing, implementing, and managing the company's global GRC program. This includes overseeing all aspects of risk management, compliance, and organizational resilience. The ideal candidate will have a deep understanding of GRC best practices and a proven track record of success in implementing and managing GRC programs in complex global organizations.

Essential Responsibilities:

• Develop and implement a comprehensive GRC program that aligns with the company's overall business goals and risk tolerance.

• Oversee the annual risk assessment process and develop and implement risk treatment plans.

• Manage the company's resilience program, including business continuity, disaster recovery, and incident response.

• Develop and manage security policies and standards.

• Ensure appropriate controls are implemented throughout the environment to comply with security policies and standards.

• Audit corporate processes for compliance to policies and standards.

• Support external audit engagements for ISO, SOC 2 and other standards.

• Respond to inbound security inquiries from partners, customers and other stakeholders.

• Assess and manage vendor risk.

• Develop and track security metrics.

• Develop and deliver security training and awareness programs.

• Partner closely with legal, human resources, and other business partners to ensure that GRC considerations are integrated into all aspects of the business.

Ideal Skills, Experience, and Competencies:

• At least ten (10) years of experience in GRC or a related field, with at least seven (7) years in a leadership role.

• Strong understanding of security frameworks and certifications, such as ISO 27001, SOC 2, and NIST Cybersecurity Framework (CSF).

• Experience working in a fast-growing global organization, supporting operations in North America, Europe and Asia-Pacific.

• Experience in developing and managing GRC programs in complex organizations.

• Experience in risk management, compliance, resilience, security policy and standards, vendor risk management, security metrics, and security training and awareness.

• Excellent communication and presentation skills.

• Ability to work independently and as part of a team.

Required Behaviors:

• Compassionate Candour—We aim to assist others with candid, actionable feedback.

• Seek to Understand—Be open, curious and committed to learning.

• We Before Me—Actively collaborate and seek out diverse perspectives to ensure a win for Team Pax8.

• Do What You Say—Take ownership and honor your commitments; prioritize and deliver.

• Light Up Learning—Be brave and try new ideas; be vulnerable and share your failures so everyone can learn from our mistakes.

• Driven by Passion—Connects personal passion to Pax8 mission, resilient in face of adversity and uncertainty in pursuit of mission.

Required Education & Certifications:

• B.A./B.S. in a related field or equivalent work experience.

Compensation:

• Qualified candidates can expect a compensation range of $225,000 to $265,000 or more depending on experience

Expected Closing Date: 12/06/2024

#LI-Remote #LI-AG1 #BI-Remote #DICE-A