Vice President of Cyber Governance, Risk & Compliance (Hybrid)

A retail company in New Jersey is actively seeking an experienced IT professional to join their staff in a Hybrid role as their new Vice President of Cyber Governance, Risk & Compliance. In this role, the Vice President of Cyber Governance, Risk & Compliance (Hybrid) will be responsible for safeguarding information system assets by identifying and managing risks and solving potential and actual security regulatory gaps.

• Lead a global team of cross-functional security professionals to create new processes, procedures, design highly reliable, scalable, extensible, maintainable and operable compliance program
• Creating a global cybersecurity risk strategy, roadmaps, budget and introduce proven innovative frameworks that will shape our cyber transformation goals
• Translate Information Security Risk to business impact statements
• Lead the implementation of information risk management principles as part of the various front line IT projects, including reviews of all new 3 rd parties and vendors
• Partner with internal delivery teams and provide compliance guidance on Policies, Standards and Procedures
• Support audits, regulatory exams and enterprise risk initiatives
• Developed and Manage client risk assessments, vendor due diligence, and SOC audits
• Lead the annual SWIFT, PCI and SOX audit examination
• Identify and lead the resolution of highly complex regulatory problems, lead control design that is scalable and adherence to regulatory standards
• Analyze technology, industry, and market trends and determine potential impacts to and opportunities for the enterprise
• Continually evaluate new GRC technologies and devise plans for implementation of policies and standards
• Manage and develop cross functional teams to drive global capabilities that comply with local risk and compliance requirements
• Maintain technical knowledge by attending educational workshops, seminars and reviewing publications
• Create a strategy around proven security awareness programs, continuity table tops
• Partner with the Technology teams to develop sustainable solutions supporting the Risk program including enhanced controls and streamlining/automation initiatives
• Perform other duties, as needed

• 10+ years of experience in an Information Security Compliance and Risk Management role
• Bachelor's Degree
• ISACA's Certified in Risk and Information Systems Control™ (CRISC ® ) certification
• CISA-Certified Information Systems Auditor
• Experience managing and mentoring direct reports and staff
• Experience reviewing contracts for Information Security requirements and concerns.
• Experience in the Security Controls aspects of multiple platforms, operating systems, software, communications, and network protocols
• Strong familiarity with Federal Compliance standards, such as NIST 800-53, FIPS and privacy regulation like GDPR and CCPA
• Great interpersonal skills
• Excellent communication skills (written and verbal)
• Strong attention to detail
• Highly organized

• Advanced Degree