Only USC/ GC/ EADs On W2

Job Title: GRC Consultant (1371007)

Location: Plano, TX

Duration: 12 months

• Years of Experience: 8+
• Education: Bachelor’s Degree in Information Technology, Computer Science, Cyber Security Systems, or a related field.
• Work Environment: Hybrid - Onsite and Hybrid, with at least 3 days in the office.
• Interview Process: MS Teams, 45 minutes / 2 rounds.

Job Responsibilities:

• Establish a robust governance structure to enhance decision-making and accountability.
• Identify inefficiencies and recommend improvements, leading to more streamlined and effective governance processes.
• Ensure compliance with laws and regulatory requirements by updating the relevant Policies and subsequent documents, helping to save Our Client from avoiding fines, legal issues, and operational inefficiencies.
• Improve the maturity level of Data & Technology Policies, Standards, Narratives, and Controls to meet organizational goals and objectives.
• Act as the primary contact for keeping up with Policy Governance change requests.
• Ensure appropriate documentation in the form of Policy, standards, Process Narratives, controls, and procedures are created and updated as needed.
• Collaborate with relevant stakeholders to assess potential gaps and update policies to mitigate risks and align with industry standards and regulatory requirements (e.g., COBIT, FFIEC, etc.).
• Continuously monitor and assess the effectiveness and compliance of policies, procedures, and controls.
• Ensure policies are communicated effectively and are easily accessible to all employees.
• Conduct annual reviews (or as needed) of existing policies and standards to ensure they are up-to-date, relevant, and aligned with the changing business environment and regulations.
• Stay abreast of industry-specific regulations, legal requirements, and standards. Interpret and communicate the implications of these regulations to relevant stakeholders and ensure adherence to them across the organization.
• Collaborate closely with cross-functional teams, offering guidance and support to ensure certifications are efficiently maintained, compliant with relevant standards, and aligned with the organization's security goals.
• Maintain knowledge of related security, regulatory, compliance, and industry standards.
• Maintain accurate and comprehensive documentation of policies, revisions, and associated procedures.
• Perform other job-related duties as assigned.

Qualifications What You Should have:

• Minimum Bachelor’s degree in Information Technology, Computer Science, Cyber Security Systems, or a related field with 8+ years of experience in IT Security, Audit, Compliance, and Risk Management.
• Experience in developing and maintaining IT Policies, procedures, and documentation to ensure alignment with GRC objectives and organizational goals.
• Experience working with COBIT Framework, Compliance, Risk Management, Security, or Audit frameworks (i.e., FFIEC, NIST 800-53).
• Experience performing gap analysis to identify areas of improvement in IT GRC processes.
• Ability to produce high-quality policy documentation.
• Strong oral and written communication skills and ability to work well with others in a collaborative, complex, and challenging environment, present findings, and provide recommendations.
• Must demonstrate good judgment and attention to detail while prioritizing and delivering a wide range of challenges and tasks.
• Ability to work effectively in a team and coordinate efforts across different teams to achieve IT GRC goals.
• Proficiency in standard office software suites.
• Experience working with GRC tools used for risk assessment, compliance monitoring, and reporting.
• Strong analytical and critical thinking skills are required to process complex data.
• Aptitude for identifying and solving IT GRC-related problems and implementing solutions to improve overall security and compliance posture.