Sr Director of Governance, Risk, and Compliance

Remote Full-time
About the position The Senior Director of Governance, Risk, and Compliance will report to the Global CISO within Advance Auto Parts and will focus on the measurement, analysis, oversight and reporting of cybersecurity risks and controls. The Senior Director of GRC will lead the Cyber Risk team, and will be responsible for the ownership, operation and optimization of the team's policies, standards, risk identification, assessment and reporting processes. The ideal candidate will combine expertise in both cybersecurity and risk management disciplines and have exceptional communication and stakeholder management skills. This position is based in Raleigh, NC and part of a Hybrid work arrangement, requiring four days/week in office. Responsibilities • Develop a short term and long term comprehensive GRC Strategy • Develop, communicate, and implement enterprise-wide security policies, standards, procedures, and guidelines • Provide strategic guidance to the CISO for representing risks to the Board, Audit Committee, and ERM • Lead and develop a team of high-performing cyber risk specialists • Lead the identification, evaluation, and prioritization of cyber risks across the organization • Oversee production, reporting and evolution of cyber risk metrics, including Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) • Conduct cyber risk assessments and provide reporting to a range of senior stakeholders • Conduct cyber maturity assessments and provide reporting to a range of senior stakeholders • Conduct risk analysis, providing insights on issues and direction on risk mitigation strategies • Drive automation, analytics, and continuous improvement of processes • Engage with a range of senior stakeholders across Lines of Defense to ensure appropriate oversight and reporting of cybersecurity risks • Collaborate with cross-functional teams on cyber risk assessment and remediation activities • Ensure regulatory compliance with frameworks in NIST, SOC 1/2, PCI, SOX, CCPA • Oversee security audits / Partner with Internal Audit • Represent cybersecurity in the Enterprise Risk Management committee • Create a comprehensive security awareness program • Report on and ensure compliance to our security policies and standards through a robust compliance program Requirements • Extensive knowledge of cyber risk management frameworks and methodologies • Proven experience in leadership roles, managing teams, and influencing executive stakeholders • Experience in establishing and managing regulatory compliance in NIST, PCI-DSS, SOX, SOC 1/2, CCPA, HIPAA • Strategic thinker with a strong understanding of cyber threats, vulnerabilities, and risk mitigation options • Innovative thinker and adaptable to change • Exceptional communication and presentation skills, capable of translating technical risk into business terms • Excellent analytical, problem-solving, and decision-making skills Apply tot his job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Remote Admin Work - Focus Group Sessions

Remote

**Experienced Part-Time Remote Virtual Assistant/ Data Entry Specialist – Operational Support and Data Management**

Remote

Sales Enablement and Training Manager

Remote

[Entry Level/No Experience] Fedex Data Entry Remote Jobs – Only 5 Hours

Remote

Part-Time Trash Collector-Nights-From $20/h – Indeed Jobs US

Remote

Actuarial Modeler (Pricing Analytics)

Remote

Controller

Remote

STORE MANAGER IN BLOSSVALE, NEW YORK – Amazon Store

Remote

Experienced Virtual Customer Travel Representative - Delivering Exceptional Travel Experiences Remotely at blithequark

Remote

Full Time Stylist (Georgetown)

Remote
← Back