Discover a world of difference at Worldwide.
Director, Governance, Risk and Compliance
Discover a world of difference at Worldwide., Durham, North Carolina, United States, 27701
Information Technology Role at Worldwide Clinical Trials
We're a global, midsize CRO that pushes boundaries, innovates and invents because the path to a cure for the world's most persistent diseases is not paved by those who play it safe. It is built by those who take pioneering, creative approaches and implement them with quality and excellence. We are Worldwide Clinical Trials, and we are a global team of over 3,500+ experts, bright thinkers, dreamers and doers and, together, we are changing the way the world experiences CROs
in the best possible way. Our mission is to work with passion and purpose every day to improve lives and we are looking for others who value this same pursuit. What The Information Technology Department Does At Worldwide
The IT department is made up of seasoned professionals united in one common goal: to keep Worldwide's technical infrastructure operating at the highest levels for our employees and our customers. We are a global team comprised of numerous professionals including cyber security, artificial intelligence, IT helpdesk, application support, and more. What You Will Do
Build and manage a cross-functional GRC team. Develop and maintain security policies aligned with ISO 27002, HIPAA, GxP, and GDPR. Manage IT risk register and coordinate mitigation planning with stakeholders. Support internal and external audits including SOC2 and client assessments. Lead RFP/RFI response process and collaborate with legal, sales, and marketing teams. Oversee third-party risk reviews and vendor security assessments. Operate and scale a control testing and attestation program. Coordinate risk boards and governance forums with business leadership. Develop GRC metrics and reporting dashboards for leadership and audit readiness. What You Will Bring To The Role
Strong knowledge of security and compliance frameworks (ISO 27002, HIPAA, GxP, SOC2). Experience managing audits, control testing, and risk registers. Familiarity with third-party risk platforms and compliance automation tools. Excellent communication and coordination skills across legal, IT, and business units. Experience working in clinical, corporate, or regulated commercial environments. Your Experience
Bachelor's degree in Information Security, Business, or related field (Master's preferred). Minimum of 12 years of experience in information security governance, risk, or compliance. Experience leading enterprise audit or compliance functions. Certifications such as CISA, CRISC, or CISSP are highly desirable. Worldwide is an equal opportunity employer that is committed to enabling professionals from all backgrounds and experiences to succeed and, to that end, we prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and creativity. We know that when our employees feel appreciated and included, they can be more creative, innovative, and successful.
We're a global, midsize CRO that pushes boundaries, innovates and invents because the path to a cure for the world's most persistent diseases is not paved by those who play it safe. It is built by those who take pioneering, creative approaches and implement them with quality and excellence. We are Worldwide Clinical Trials, and we are a global team of over 3,500+ experts, bright thinkers, dreamers and doers and, together, we are changing the way the world experiences CROs
in the best possible way. Our mission is to work with passion and purpose every day to improve lives and we are looking for others who value this same pursuit. What The Information Technology Department Does At Worldwide
The IT department is made up of seasoned professionals united in one common goal: to keep Worldwide's technical infrastructure operating at the highest levels for our employees and our customers. We are a global team comprised of numerous professionals including cyber security, artificial intelligence, IT helpdesk, application support, and more. What You Will Do
Build and manage a cross-functional GRC team. Develop and maintain security policies aligned with ISO 27002, HIPAA, GxP, and GDPR. Manage IT risk register and coordinate mitigation planning with stakeholders. Support internal and external audits including SOC2 and client assessments. Lead RFP/RFI response process and collaborate with legal, sales, and marketing teams. Oversee third-party risk reviews and vendor security assessments. Operate and scale a control testing and attestation program. Coordinate risk boards and governance forums with business leadership. Develop GRC metrics and reporting dashboards for leadership and audit readiness. What You Will Bring To The Role
Strong knowledge of security and compliance frameworks (ISO 27002, HIPAA, GxP, SOC2). Experience managing audits, control testing, and risk registers. Familiarity with third-party risk platforms and compliance automation tools. Excellent communication and coordination skills across legal, IT, and business units. Experience working in clinical, corporate, or regulated commercial environments. Your Experience
Bachelor's degree in Information Security, Business, or related field (Master's preferred). Minimum of 12 years of experience in information security governance, risk, or compliance. Experience leading enterprise audit or compliance functions. Certifications such as CISA, CRISC, or CISSP are highly desirable. Worldwide is an equal opportunity employer that is committed to enabling professionals from all backgrounds and experiences to succeed and, to that end, we prioritize attracting diverse talent and cultivating an inclusive environment that encourages collaboration and creativity. We know that when our employees feel appreciated and included, they can be more creative, innovative, and successful.