Experienced Full Stack GRC Professional – Cyber Protection & Compliance Specialist

Join blithequark's dynamic team as a seasoned GRC professional in the field of cyber protection and compliance. We're seeking a highly skilled and experienced individual to guide GRC-related activities and ensure the seamless execution of various tasks within our crew. As a Cyber Protection & Compliance Specialist, you'll play a critical role in managing internal safety compliance requirements and implementing regulations, tactics, and frameworks at blithequark.

• *About blithequark**

blithequark is a leading organization in the industry, dedicated to delivering innovative solutions and services that meet the evolving needs of our clients. Our team of experts is passionate about creating a secure and compliant environment, and we're committed to staying ahead of the curve in terms of technology and best practices. As a member of our team, you'll have the opportunity to work with a talented group of professionals who share your passion for excellence and your commitment to making a difference.

• *Key Responsibilities**

As a Cyber Protection & Compliance Specialist, you'll be responsible for:

• Assisting the blithequark team in managing internal safety compliance requirements and implementing regulations, tactics, and frameworks
• Validating incoming third-party/internal risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement
• Coordinating the distribution of due diligence questionnaires to internal stakeholders/third parties, reviewing submitted questionnaires for completeness, and identifying potential risks arising from the current design and operational effectiveness of internal/third-party security controls
• Filing responses, associated findings, and remediation plans in blithequark's systems
• Drafting/reviewing reports for the checks performed and ensuring respective business stakeholders finalize reviews
• Serving as a strong liaison to ensure any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required
• Conducting continuous tracking of third-party vendors via blithequark systems for current/new findings and escalating any findings to closure
• Identifying opportunities for improvement within blithequark systems and strategies
• Working closely with the Chance Lead/Supervisor to schedule and execute a range of supporting activities related to the risk management program
• *Governance, Threat, and Compliance**

As a Cyber Protection & Compliance Specialist, you'll also be responsible for:

• Leading and assisting the development of cybersecurity risk and compliance-related strategies to ensure the treatment of cybersecurity risk consistent with the organization's risk appetite
• Maintaining and documenting compliance towards information security-related guidelines and processes through planning, testing, remediating, tracking, and reporting on control reviews and risk assessments
• Leading the development and delivery of compliance and risk education and ongoing communications that assist in the promotion of a culture of protection and compliance
• Staying up-to-date with regulatory changes, new guidelines, technology, and internal policy modifications to further identify new key risk areas
• Leading the team to preserve and maintain ISO 27001 certification
• *Competencies & Attributes for Success**

To be successful in this role, you'll need to possess:

• Strong understanding and competencies in GRC, cybersecurity, and compliance
• Outstanding stakeholder management skills
• Working knowledge of information security-related best practices and requirements, including ISO 27001, SOC 2 requirements, SSAE 16/18 requirements, and others
• Experience in the control of risk, controls, and compliance
• Expertise in risk evaluation methodologies – qualitative/quantitative
• Super analytical and problem-solving abilities
• Super presentation-making and delivery abilities
• *Personal Attributes**

As a Cyber Protection & Compliance Specialist, you'll need to possess:

• Robust interpersonal skills
• Ability to navigate rapid-paced environments and be flexible with working hours
• Fantastic communication skills, both verbal and written
• Ability to adapt quickly to changing conditions and promote quality change
• *Preferred Qualifications & Experience**

• Applicable Bachelor's/Master's degree from an accredited university or equivalent experience

• 4 years of experience in third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/internal audit)
• Preferred experience with a large company and/or a Big Four accounting company
• One or more certifications – CISA, CRISC, ISO27001 LA, CISSP
• Experience in AI/ML is a plus
• *About the Role**

As a Cyber Protection & Compliance Specialist, you'll have the opportunity to work on a wide range of projects and initiatives, from risk assessments and compliance reviews to education and training programs. You'll be part of a dynamic team that is passionate about creating a secure and compliant environment, and you'll have the chance to make a real difference in the organization.

• *What We Offer**

• Competitive salary and benefits package

• Opportunity to work with a talented team of professionals
• Flexible working arrangements, including remote work options
• Professional development and training opportunities
• Collaborative and dynamic work environment
• *How to Apply**

If you're a motivated and experienced professional looking for a new challenge, we encourage you to apply for this exciting opportunity. Please submit your resume and a cover letter outlining your qualifications and experience. We can't wait to hear from you! Apply Job! For more such jobs please click here! Apply to this job Apply tot his job Apply To this Job