Security Governance Risk and Compliance Manager - Hybrid

Genesis10 is currently seeking a Security Governance Risk and Compliance Manager - Hybrid for a direct placement position with a Global Professional Services Firm located in New York, NY or Washington, DC.

As the official ISO ISMS/PIMS Coordinator and a full-time member of the Information Security and Privacy Forum (ISPF), this role is responsible for preparing meeting agendas, working with auditors, performing annual Risk Assessments, and managing continuous improvements. This strategic program management role works closely with the Director of Information Security to ensure improvements are prioritized, develop the Security Awareness Program, and enhance core program elements including incident response, threat intelligence, and vulnerability management.

Responsibilities:

• Act as the primary point of contact to track, triage, and provide a professional response to incoming client assessments/audits, RFPs, and Outside Counsel Guidelines
• Delegate, oversee, and upskill other members of the Information Security Team in handling these assessments
• Own and govern the standard answer and evidence bank that ensures a consistent response to these client assessment requests
• Ensure that all material findings are tracked and escalated to Information Security Department management
• Work within IT and other departments to remediate control gaps and assemble evidence
• Work with external consultants to prepare ISPF meeting agendas, metrics, and other artifacts for review by ISMS-PIMS leadership
• Lead essential ISO 27001 and ISO 27701 activities such as annual risk assessment, BCP tabletop exercises, and other periodic compliance checks
• Prepare for and lead annual internal and external ISO audits by reviewing all in scope assets and required controls
• Provide senior guidance and awareness of the GRC program to partnering departments (e.g., Risk, Procurement, Operations)
• Develop a set of manageable controls that help support compliance with client security requirements
• Develop and update policies and procedures to address evolving regulatory requirements
• Lead and manage quarterly phishing simulation campaigns
• Ensure annual review and refresh of cybersecurity training content
• Manage and deliver weekly compliance updates to senior leadership

Requirements:

• Bachelor's degree in Information Systems, Information Security, Risk Management, or a related field
• At least 5 years of experience managing an ISO 27001 or SOC2 certification program
• Proven experience in governance, risk management, or compliance roles
• In-depth knowledge of relevant industry regulations and standards
• Strong analytical and problem-solving skills
• Excellent communication and interpersonal skills applied across various levels of technical expertise and management
• Ability to work collaboratively in a team and influence stakeholders at various levels

Desired skills:

• Master's degree in Cybersecurity Risk and Strategy, or a related field
• Relevant certifications (e.g., CISA, CRISC, CISSP, PMP)

Pay range: $205,000 - $225,000 annually

Only candidates available and ready to work directly as Genesis10 employees will be considered for this position.

If you have the described qualifications and are interested in this exciting opportunity, please apply!

Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.

For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:

• Access to hundreds of clients, most who have been working with Genesis10 for 5-20 years.
• The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
• Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
• Behavioral Health Platform
• Medical, Dental, Vision
• Health Savings Account
• Voluntary Hospital Indemnity (Critical Illness & Accident)
• Voluntary Term Life Insurance
• 401K
• Sick Pay (for applicable states/municipalities)
• Commuter Benefits (Dallas, NYC, SF, and Illinois)

For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.

Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.