Experienced Full Stack GRC Professional – Cyber Protection & Compliance Specialist

Join blithequark's dynamic team as a seasoned GRC professional in the field of cyber protection and compliance. We're seeking a highly skilled and experienced individual to guide GRC-related activities and ensure the seamless execution of various tasks within our crew. As a Cyber Protection & Compliance Specialist, you'll play a critical role in managing internal safety compliance requirements and implementing regulations, tactics, and frameworks at blithequark.

About blithequark

blithequark is a leading organization in the industry, dedicated to delivering innovative solutions and services that meet the evolving needs of our clients. Our team of experts is passionate about creating a secure and compliant environment, and we're committed to staying ahead of the curve in terms of technology and best practices. As a member of our team, you'll have the opportunity to work with a talented group of professionals who share your passion for excellence and your commitment to making a difference.

Key Responsibilities

As a Cyber Protection & Compliance Specialist, you'll be responsible for:

• Assisting the blithequark team in managing internal safety compliance requirements and implementing regulations, tactics, and frameworks
• Validating incoming third-party/internal risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement
• Coordinating the distribution of due diligence questionnaires to internal stakeholders/third parties, reviewing submitted questionnaires for completeness, and identifying potential risks arising from the current design and operational effectiveness of internal/third-party security controls
• Filing responses, associated findings, and remediation plans in blithequark's systems
• Drafting/reviewing reports for the checks performed and ensuring respective business stakeholders finalize reviews
• Serving as a strong liaison to ensure any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required
• Conducting continuous tracking of third-party vendors via blithequark systems for current/new findings and escalating any findings to closure
• Identifying opportunities for improvement within blithequark systems and strategies
• Working closely with the Chance Lead/Supervisor to schedule and execute a range of supporting activities related to the risk management program

Governance, Threat, and Compliance

As a Cyber Protection & Compliance Specialist, you'll also be responsible for:

• Leading and assisting the development of cybersecurity risk and compliance-related strategies to ensure the treatment of cybersecurity risk consistent with the organization's risk appetite
• Maintaining and documenting compliance towards information security-related guidelines and processes through planning, testing, remediating, tracking, and reporting on control reviews and risk assessments
• Leading the development and delivery of compliance and risk education and ongoing communications that assist in the promotion of a culture of protection and compliance
• Staying up-to-date with regulatory changes, new guidelines, technology, and internal policy modifications to further identify new key risk areas
• Leading the team to preserve and maintain ISO 27001 certification

Competencies & Attributes for Success

To be successful in this role, you'll need to possess:

• Strong understanding and competencies in GRC, cybersecurity, and compliance
• Outstanding stakeholder management skills
• Working knowledge of information security-related best practices and requirements, including ISO 27001, SOC 2 requirements, SSAE 16/18 requirements, and others
• Experience in the control of risk, controls, and compliance
• Expertise in risk evaluation methodologies – qualitative/quantitative
• Super analytical and problem-solving abilities
• Super presentation-making and delivery abilities

Personal Attributes

As a Cyber Protection & Compliance Specialist, you'll need to possess:

• Robust interpersonal skills
• Ability to navigate rapid-paced environments and be flexible with working hours
• Fantastic communication skills, both verbal and written
• Ability to adapt quickly to changing conditions and promote quality change

Preferred Qualifications & Experience

* Applicable Bachelor's/Master's degree from an accredited university or equivalent experience

• 4 years of experience in third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/internal audit)
• Preferred experience with a large company and/or a Big Four accounting company
• One or more certifications – CISA, CRISC, ISO27001 LA, CISSP
• Experience in AI/ML is a plus

About the Role

As a Cyber Protection & Compliance Specialist, you'll have the opportunity to work on a wide range of projects and initiatives, from risk assessments and compliance reviews to education and training programs. You'll be part of a dynamic team that is passionate about creating a secure and compliant environment, and you'll have the chance to make a real difference in the organization.

What We Offer

* Competitive salary and benefits package

• Opportunity to work with a talented team of professionals
• Flexible working arrangements, including remote work options
• Professional development and training opportunities
• Collaborative and dynamic work environment

How to Apply

If you're a motivated and experienced professional looking for a new challenge, we encourage you to apply for this exciting opportunity. Please submit your resume and a cover letter outlining your qualifications and experience. We can't wait to hear from you! Apply Job! For more such jobs please click here! Apply for this job