Senior GRC Specialist

Are you ready to lead and advance governance, risk, and compliance programs for our client? This is a remote-first role with the opportunity to influence organizational strategy and strengthen their cGRC maturity. Please note that you must be located within or nearby NYC, Boston, North Carolina, Florida or Connecticut as you'll be required to interview in-person during the process.What you'll doLead development, implementation, and ongoing improvement of cGRC policies, frameworks, and processesConduct enterprise-wide risk assessments, including third-party/vendor evaluations, and recommend mitigation strategiesManage compliance with regulatory requirements (e.g., NIST CSF, ISO 27001, GDPR, SOC1/2) and internal policiesOversee internal and external audits, ensuring timely and accurate documentation and responsesProvide guidance, training, and strategic recommendations to senior management and cross-functional teamsTrack and report metrics on IT security risks, vendor compliance, and program effectivenessPromote a strong security and compliance culture throughout the organizationWhat we're looking for5–7 years of experience in GRC, risk management, or complianceRelevant certifications such as CISSP, CISM, CRISC, or equivalentStrong understanding of regulatory standards and industry best practicesExperience with GRC tools and softwareExcellent analytical, problem-solving, and communication skillsKnowledge of emerging AI regulations, risks, and governance frameworks is a plus#J-18808-Ljbffr