Jobs via Dice
Cybersecurity Governance, Risk and Compliance (GRC) Program Manager
Jobs via Dice, San Jose, California, United States, 95199
Cybersecurity Governance, Risk and Compliance (GRC) Program Manager
Location:
San Jose, CA (Onsite)
Duration:
6+ months contract
Job Title:
Cybersecurity Governance, Risk and Compliance (GRC) Program Manager
As a senior member of our cybersecurity team, you will play a critical role in ensuring the organization's alignment with regulatory requirements, industry standards, and internal policies. You will lead and manage various cybersecurity projects and initiatives, drive process improvements, and collaborate with key stakeholders to maintain a robust cybersecurity posture.
Key Responsibilities
Project Management:
Assist in planning, executing, and delivering cybersecurity projects and initiatives
Manage project timelines, resources, and budgets to ensure successful project delivery
Governance & Compliance:
Coordinate with teams to maintain regulatory compliance with industry standards (e.g., SOC2, NIST 800-171, ISO 27001, NIST 800-53)
Develop and distribute information security reports to stakeholders
User Access Reviews:
Collaborate with stakeholders to perform quarterly user access reviews and monthly user activities
Ensure timely completion and accurate documentation of user access reviews
Subject Matter Expertise:
Develop and manage the Compliance Program
Coordinate Audit Evidence Gathering
Oversee User Access Reviews
Develop Policies and Processes
Manage Change Management Processes
Conduct Risk Assessments and Mitigation
Third-Party Risk Management:
Own and maintain Third-Party Risk Management evaluation practices to ensure effective risk management
Policy Management:
Maintain and update information security policies to ensure alignment with industry standards
Create and maintain operating procedures to support policy implementation
Additional Responsibilities
Schedule meetings with stakeholders as needed.
Provide regular project status updates.
Assist in collecting evidence for audits compliance reviews.
Follow up on outstanding items ensure timely resolution.
Requirements
Minimum 8 years experience in managing Cybersecurity compliance programs from start-to-finish.
Proficiency industry-standard compliance programs (e.g., ISO 27001, CIS v8.1, NIST 800-53, NIST 800-171, CMMC, FedRAMP, SOC 2).
Demonstrated ability prioritizing tasks within fast-paced evolving environment.
Strong analytical thinking verbal written communication skills.
Excellent interpersonal skills ability work effectively others as team.
Ability work independently effectively managing prioritizing multiple tasks.
Strong understanding IT security concepts emphasis Security Risk Assessment.
Relevant professional certifications such as PMP, CISSP, CISM, CISA.
Preferred Qualifications
Exceptional verbal and written communication skills, tailored for both technical and non-technical audiences
Seniority level
Mid-Senior level
Employment type
Contract
Job function
Engineering and Information Technology
Industries
Software Development
#J-18808-Ljbffr
San Jose, CA (Onsite)
Duration:
6+ months contract
Job Title:
Cybersecurity Governance, Risk and Compliance (GRC) Program Manager
As a senior member of our cybersecurity team, you will play a critical role in ensuring the organization's alignment with regulatory requirements, industry standards, and internal policies. You will lead and manage various cybersecurity projects and initiatives, drive process improvements, and collaborate with key stakeholders to maintain a robust cybersecurity posture.
Key Responsibilities
Project Management:
Assist in planning, executing, and delivering cybersecurity projects and initiatives
Manage project timelines, resources, and budgets to ensure successful project delivery
Governance & Compliance:
Coordinate with teams to maintain regulatory compliance with industry standards (e.g., SOC2, NIST 800-171, ISO 27001, NIST 800-53)
Develop and distribute information security reports to stakeholders
User Access Reviews:
Collaborate with stakeholders to perform quarterly user access reviews and monthly user activities
Ensure timely completion and accurate documentation of user access reviews
Subject Matter Expertise:
Develop and manage the Compliance Program
Coordinate Audit Evidence Gathering
Oversee User Access Reviews
Develop Policies and Processes
Manage Change Management Processes
Conduct Risk Assessments and Mitigation
Third-Party Risk Management:
Own and maintain Third-Party Risk Management evaluation practices to ensure effective risk management
Policy Management:
Maintain and update information security policies to ensure alignment with industry standards
Create and maintain operating procedures to support policy implementation
Additional Responsibilities
Schedule meetings with stakeholders as needed.
Provide regular project status updates.
Assist in collecting evidence for audits compliance reviews.
Follow up on outstanding items ensure timely resolution.
Requirements
Minimum 8 years experience in managing Cybersecurity compliance programs from start-to-finish.
Proficiency industry-standard compliance programs (e.g., ISO 27001, CIS v8.1, NIST 800-53, NIST 800-171, CMMC, FedRAMP, SOC 2).
Demonstrated ability prioritizing tasks within fast-paced evolving environment.
Strong analytical thinking verbal written communication skills.
Excellent interpersonal skills ability work effectively others as team.
Ability work independently effectively managing prioritizing multiple tasks.
Strong understanding IT security concepts emphasis Security Risk Assessment.
Relevant professional certifications such as PMP, CISSP, CISM, CISA.
Preferred Qualifications
Exceptional verbal and written communication skills, tailored for both technical and non-technical audiences
Seniority level
Mid-Senior level
Employment type
Contract
Job function
Engineering and Information Technology
Industries
Software Development
#J-18808-Ljbffr