Join blithequark's dynamic team as a seasoned GRC professional in the field of cyber protection and compliance. We're seeking a highly skilled and experienced individual to guide GRC-related activities and ensure the seamless execution of various tasks within our crew. As a Cyber Protection & Compliance Specialist, you'll play a critical role in managing internal safety compliance requirements and implementing regulations, tactics, and frameworks at blithequark.
• *About blithequark**
blithequark is a leading organization in the industry, dedicated to delivering innovative solutions and services that meet the evolving needs of our clients. Our team of experts is passionate about creating a secure and compliant environment, and we're committed to staying ahead of the curve in terms of technology and best practices. As a member of our team, you'll have the opportunity to work with a talented group of professionals who share your passion for excellence and your commitment to making a difference.
• *Key Responsibilities**
As a Cyber Protection & Compliance Specialist, you'll be responsible for:
• Assisting the blithequark team in managing internal safety compliance requirements and implementing regulations, tactics, and frameworks
• Validating incoming third-party/internal risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement
• Coordinating the distribution of due diligence questionnaires to internal stakeholders/third parties, reviewing submitted questionnaires for completeness, and identifying potential risks arising from the current design and operational effectiveness of internal/third-party security controls
• Filing responses, associated findings, and remediation plans in blithequark's systems
• Drafting/reviewing reports for the checks performed and ensuring respective business stakeholders finalize reviews
• Serving as a strong liaison to ensure any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required
• Conducting continuous tracking of third-party vendors via blithequark systems for current/new findings and escalating any findings to closure
• Identifying opportunities for improvement within blithequark systems and strategies
• Working closely with the Chance Lead/Supervisor to schedule and execute a range of supporting activities related to the risk management program
• *Governance, Threat, and Compliance**
As a Cyber Protection & Compliance Specialist, you'll also be responsible for:
• Leading and assisting the development of cybersecurity risk and compliance-related strategies to ensure the treatment of cybersecurity risk consistent with the organization's risk appetite
• Maintaining and documenting compliance towards information security-related guidelines and processes through planning, testing, remediating, tracking, and reporting on control reviews and risk assessments
• Leading the development and delivery of compliance and risk education and ongoing communications that assist in the promotion of a culture of protection and compliance
• Staying up-to-date with regulatory changes, new guidelines, technology, and internal policy modifications to further identify new key risk areas
• Leading the team to preserve and maintain ISO 27001 certification
• *Competencies & Attributes for Success**
To be successful in this role, you'll need to possess:
• Strong understanding and competencies in GRC, cybersecurity, and compliance
• Outstanding stakeholder management skills
• Working knowledge of information security-related best practices and requirements, including ISO 27001, SOC 2 requirements, SSAE 16/18 requirements, and others
• Experience in the control of risk, controls, and compliance
• Expertise in risk evaluation methodologies – qualitative/quantitative
• Super analytical and problem-solving abilities
• Super presentation-making and delivery abilities
• *Personal Attributes**
As a Cyber Protection & Compliance Specialist, you'll need to possess:
• Robust interpersonal skills
• Ability to navigate rapid-paced environments and be flexible with working hours
• Fantastic communication skills, both verbal and written
• Ability to adapt quickly to changing conditions and promote quality change
• *Preferred Qualifications & Experience**
• Applicable Bachelor's/Master's degree from an accredited university or equivalent experience
• 4 years of experience in third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/internal audit)
• Preferred experience with a large company and/or a Big Four accounting company
• One or more certifications – CISA, CRISC, ISO27001 LA, CISSP
• Experience in AI/ML is a plus
• *About the Role**
As a Cyber Protection & Compliance Specialist, you'll have the opportunity to work on a wide range of projects and initiatives, from risk assessments and compliance reviews to education and training programs. You'll be part of a dynamic team that is passionate about creating a secure and compliant environment, and you'll have the chance to make a real difference in the organization.
• *What We Offer**
• Competitive salary and benefits package
• Opportunity to work with a talented team of professionals
• Flexible working arrangements, including remote work options
• Professional development and training opportunities
• Collaborative and dynamic work environment
• *How to Apply**
If you're a motivated and experienced professional looking for a new challenge, we encourage you to apply for this exciting opportunity. Please submit your resume and a cover letter outlining your qualifications and experience. We can't wait to hear from you!
Apply Job!
For more such jobs please click here!
Apply Now
Apply Now