Governance, Risk, and Compliance (GRC) Resource

Job Description for Governance, Risk, and Compliance (GRC) Resource

Overview

The Governance, Risk, and Compliance (GRC) resource plays a crucial role in ensuring that an organization adheres to regulatory requirements, manages risks effectively, and upholds governance standards. This position involves a blend of strategic planning, risk assessment, policy formulation, and compliance monitoring.

Key Responsibilities

• Review IT and cybersecurity policies annually or as required by regulators. Manage and maintain data security plans, ensuring PII data is not transmitted without approval. Implement data and security policies effectively.
• Conduct risk assessments of on-premises and cloud infrastructure twice a year.
• Monitor the effectiveness of security measures.
• Ensure compliance with user access management for all IT assets.
• Conduct quarterly vulnerability and configuration assessments, addressing any findings.
• Perform red teaming activities annually.
• Identify, assess, and manage risks across functions and departments.
• Develop risk management strategies and mitigation plans.
• Ensure compliance with laws, regulations, and industry standards.
• Maintain compliance policies and procedures.
• Conduct regular compliance audits and address gaps.
• Provide employee training on compliance topics.
• Stay updated on regulatory changes and implement them timely.
• Prepare and submit compliance reports as required.

Qualifications

Education

• Bachelor’s degree in Business Administration, Finance, Law, or a related field.
• Advanced degrees or certifications in Governance, Risk Management, or Compliance are preferred.

Experience

• Minimum of 5 years of experience in governance, risk management, and compliance roles.
• Proven track record of developing and implementing GRC frameworks.
• Experience in conducting risk assessments and compliance audits.
• Familiarity with industry standards and regulatory requirements relevant to the organization’s sector.

Skills and Competencies

• Analytical Skills: Ability to analyze complex data and identify trends, risks, and opportunities.
• Communication Skills: Strong verbal and written communication skills, with the ability to present information clearly and concisely.
• Attention to Detail: High level of accuracy and attention to detail in all tasks.
• Problem-Solving: Strong problem-solving skills and the ability to develop effective solutions.
• Leadership: Ability to lead and influence stakeholders at all levels of the organization.
• Project Management: Strong project management skills, with the ability to manage multiple projects simultaneously.
• Ethical Judgement: Commitment to upholding the highest ethical standards and integrity.

Working Conditions

• Full-time position based in the head office.
• Occasional travel may be required for audits, assessments, or training sessions.