Wolters Kluwer
Director of IT Security - Governance and Compliance Platforms
Wolters Kluwer, Draper, Utah, United States, 84020
About the Role
We are seeking an experienced and strategic leader for the position of Director of IT Security - Governance and Compliance Platforms. In this role, you will be the driving force behind our Governance, Risk, and Compliance (GRC) platforms, overseeing their operational management and alignment with organizational policies. You will collaborate with various stakeholders to foster an effective and scalable control environment that adapts to our evolving regulatory landscape and business needs.
Essential Duties and Responsibilities
Platform Strategy & Roadmap : Shape and implement the enterprise GRC technology and platform strategy in line with recognized security frameworks such as NIST CSF and NIST 800-53.
Platform Ownership : Act as the key owner of our GRC platforms, ensuring optimal configuration, integration, upgrades, and management of platform changes to fulfill enterprise requirements.
Process Enablement : Convert governance, risk, and compliance processes into efficient workflows, dashboards, and reporting tools that support seamless issue management and policy governance.
Stakeholder Engagement : Partner with information security, IT, compliance, and legal teams to collaboratively develop and drive the platform and interrelated product strategies.
Automation & Efficiency : Spearhead the automation of risk and compliance processes to enhance audit readiness and sustainability of controls.
Data & Reporting : Create dashboards and analytic reports to deliver actionable insights to executives, regulators, and business leaders.
Platform Governance : Establish robust platform governance standards and manage change control processes to ensure ongoing lifecycle management.
Vendor Management : Oversee relationships with platform vendors and system integrators, handling licensing, renewals, and roadmap discussions.
Leadership : Mentor and guide a dedicated team of GRC platform administrators and analysts.
Skills Thorough understanding of IT risk, security, compliance, and audit frameworks such as NIST CSF, ISO 27001, and PCI DSS.
In-depth technical knowledge of leading GRC platforms, including ServiceNow IRM and Archer.
Demonstrated achievements in IT change management and system design.
Expertise in building automated workflows and reporting dashboards.
Exceptional stakeholder management and communication skills.
Strong analytical and problem-solving capabilities, able to balance risk and business needs.
Familiarity with regulatory environments across multiple jurisdictions (e.g., EU, US, APAC).
Experience with IT processes like change management and incident management preferred.
Education Bachelor's degree in computer science, information technology, or risk governance. A Master's degree is preferred. Certifications Certifications such as Servicenow Integrated Risk Management Implementer, CRISC, CISA, CISM, CISSP, or CDPSE are highly valued. Experience Required 12-15 years of progressive experience in IT, Cybersecurity, and Risk Management.
10+ years delivering GRC platform initiatives and products.
8+ years managing GRC platforms across multiple data sources.
5+ years leading enterprise-wide transition or transformation programs.
Strong familiarity with various GRC and IT security systems and tools.
Entrepreneurial mindset with a proactive work approach.
Able to operate independently and take ownership of responsibilities.
Outstanding presentation abilities, capable of engaging diverse audiences.
Preferred Experience Expertise in system architecture, connecting operational requirements to cross-system integrations.
Experience in building or transforming GRC solutions from inception or expanding existing capabilities.
Travel Less than 25% travel is expected. Work Location This position requires hybrid onsite work, approximately 8 days a month at one of our designated Wolters Kluwer locations. Benefits We offer a comprehensive benefits package starting on your first day, including Medical, Dental, Vision Plans, 401(k), FSA/HSA, Tuition Assistance, Paid Parental Leave, and more. Additional information about our benefits will be shared during the recruitment process. Applicants may be required to visit a Wolters Kluwer office as part of the recruitment process. Compensation Target salary range: $183,700 - $260,050 based on location.
Platform Ownership : Act as the key owner of our GRC platforms, ensuring optimal configuration, integration, upgrades, and management of platform changes to fulfill enterprise requirements.
Process Enablement : Convert governance, risk, and compliance processes into efficient workflows, dashboards, and reporting tools that support seamless issue management and policy governance.
Stakeholder Engagement : Partner with information security, IT, compliance, and legal teams to collaboratively develop and drive the platform and interrelated product strategies.
Automation & Efficiency : Spearhead the automation of risk and compliance processes to enhance audit readiness and sustainability of controls.
Data & Reporting : Create dashboards and analytic reports to deliver actionable insights to executives, regulators, and business leaders.
Platform Governance : Establish robust platform governance standards and manage change control processes to ensure ongoing lifecycle management.
Vendor Management : Oversee relationships with platform vendors and system integrators, handling licensing, renewals, and roadmap discussions.
Leadership : Mentor and guide a dedicated team of GRC platform administrators and analysts.
Skills Thorough understanding of IT risk, security, compliance, and audit frameworks such as NIST CSF, ISO 27001, and PCI DSS.
In-depth technical knowledge of leading GRC platforms, including ServiceNow IRM and Archer.
Demonstrated achievements in IT change management and system design.
Expertise in building automated workflows and reporting dashboards.
Exceptional stakeholder management and communication skills.
Strong analytical and problem-solving capabilities, able to balance risk and business needs.
Familiarity with regulatory environments across multiple jurisdictions (e.g., EU, US, APAC).
Experience with IT processes like change management and incident management preferred.
Education Bachelor's degree in computer science, information technology, or risk governance. A Master's degree is preferred. Certifications Certifications such as Servicenow Integrated Risk Management Implementer, CRISC, CISA, CISM, CISSP, or CDPSE are highly valued. Experience Required 12-15 years of progressive experience in IT, Cybersecurity, and Risk Management.
10+ years delivering GRC platform initiatives and products.
8+ years managing GRC platforms across multiple data sources.
5+ years leading enterprise-wide transition or transformation programs.
Strong familiarity with various GRC and IT security systems and tools.
Entrepreneurial mindset with a proactive work approach.
Able to operate independently and take ownership of responsibilities.
Outstanding presentation abilities, capable of engaging diverse audiences.
Preferred Experience Expertise in system architecture, connecting operational requirements to cross-system integrations.
Experience in building or transforming GRC solutions from inception or expanding existing capabilities.
Travel Less than 25% travel is expected. Work Location This position requires hybrid onsite work, approximately 8 days a month at one of our designated Wolters Kluwer locations. Benefits We offer a comprehensive benefits package starting on your first day, including Medical, Dental, Vision Plans, 401(k), FSA/HSA, Tuition Assistance, Paid Parental Leave, and more. Additional information about our benefits will be shared during the recruitment process. Applicants may be required to visit a Wolters Kluwer office as part of the recruitment process. Compensation Target salary range: $183,700 - $260,050 based on location.