GRC Architect

Remote Full-time
This is a remote position.

Key Responsibilities

Framework & Governance Design

Workflow Engineering: Define end-to-end governance workflows for risk identification, intake, validation, and mitigation.

Governance Structures: Establish clear roles and responsibilities (RACI) for risk owners, reviewers, and oversight bodies.

Escalation Logic: Design formal reporting and escalation processes for high-priority and accepted risks.

Stakeholder Engagement & Enablement

Cross-Functional Collaboration: Partner with Business, Technology, Security, and Audit functions to validate risk requirements.

Facilitation: Lead workshops to socialize the risk register and train stakeholders on new governance processes.

Onboarding: Support the initial migration and population of critical risks into the enterprise register.

Documentation & Sustainability

Audit Readiness: Produce high-quality documentation covering data definitions, scoring logic, and decision authorities.

Knowledge Transfer: Conduct formal training and handovers to internal security staff to ensure long-term framework sustainability.

Professional Deliverables

Enterprise Risk Register Framework: A standardized template and taxonomy.

Risk Scoring & Prioritization Model: Documented likelihood/impact scales and prioritization logic.

Operational Governance Model: Defined intake workflows and a roles/responsibilities matrix.

Initial Risk Population: A baseline register reflecting current cybersecurity and tech risk posture.

Final Operating Procedures: Consolidated guidance for ongoing, business-as-usual risk management.

Candidate Qualifications

Minimum Requirements:

8+ Years of direct experience in Risk Register Design and Framework development.

8+ Years of experience creating Risk Scoring and Prioritization Models.

8+ Years of experience defining Governance Processes and Workflows.

8+ Years of experience in Stakeholder Management and Enablement.

8+ Years of demonstrated expertise in technical writing, audit-ready documentation, and knowledge transfer.

Preferred Skills:

Professional certifications such as CRISC, CISM, CISSP, or CGEIT.

Deep understanding of industry frameworks (e.g., NIST 800-30, ISO 31000, COBIT).

Experience with GRC tool implementation (e.g., ServiceNow, Archer, OneTrust).

Apply To This Job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Vice President Human Resources ($145-160K Basic, Plus Great Bonus and Benefits) Multinational TMT Company

Remote

**Experienced Data Quality Specialist – Ensuring Data Integrity and Efficiency at blithequark**

Remote

**Job Title:** Evening Shift Customer Service Specialist - Dynamic Call Center Team at arenaflex

Remote

Experienced Full Stack Customer Support Specialist – Live Chat & Remote Work Opportunity

Remote

Digital Transformation Consultant (x|f|m) – Hybrid

Remote

Senior Director, Customer Experience Strategy & Programs

Remote

Lead Pyspark / SQL Engineer - Threat Detection & DataBricks

Remote

Entry level Data Entry Remote jobs at Fedex (At Work Home)

Remote

Virtual School Social Worker - part time

Remote

Manager of Enterprise Risk Management (ERM) - Remote

Remote
← Back