SENIOR GOVERNANCE, RISK & COMPLIANCE MANAGER WE'RE LOOKING FOR A WORLD-CLASS SENIOR GOVERNANCE, RISK & COMPLIANCE MANAGER TO CREATE AND SHAPE UP A LONG-TERM GRC FUNCTION WITHIN THE ORGANIZATION. WE ARE REVOLUTIONIZING A GLOBAL SPORT AND WE WANT YOU TO BE PART OF IT! As the Senior Manager of GRC, you are accountable for; maintaining security policies and procedures and ensuring compliance across the business, managing the implementation of and compliance with security control frameworks, managing policy exceptions and a risk register, performing threat, vulnerability, and risk assessments, managing a Vendor Security Risk Management program, and establishing and managing the Training and Awareness program. NO H1B or C2C CANDIDATES CAN BE CONSIDERED FOR THIS ROLE - ONLY US CITIZENS AND GREEN CARD HOLDERS ELIGIBLE. Senior Governance, Risk and Compliance Manager Sports & Entertainment On-site at our West Palm Beach offices with occasional travel across America, Europe, Asia, and Middle East $110,000 - $130,000 + benefits including a 15% bonus! To apply please email / ****** WHO ARE WE? We are a sports tour start-up who are looking to re-energize a global sport enjoyed by millions ! We are committed to developing the sport at every level and exposing more people to the positive virtues of the game through its unique blend of intense competition and entertainment. WHAT WILL YOU BE DOING? Manage security policies and ensure integration and compliance across the business. Develop and manage multiple risk management programs and initiatives, based on best practice frameworks (e.g., ISO, NIST, and CIS). Assess compliance with control structures and present risk-based reports to stakeholders. Maintain a risk register that will facilitate broader risk awareness and tracking for accountability and reporting. Develop and manage an overall information security risk dashboard, including key metrics, which will be used to visually communicate levels of risk across the enterprise. Recommend GRC tools or process improvements that will enhance security. Plan and manage the execution of risk assessments, report findings, and collaborate with stakeholder partners to remediate or mitigate risks to an acceptable level. WE NEED YOU TO HAVE EXPERIENCE IN…. 6-8 years career-progressive experience in Information Security / Audit / IT domains. Min. 4 years experience implementing an information security control framework. CISSP, CISM, CISA, CRISC or other equivalent information security certification. Must demonstrate functional knowledge in testing controls, performing risk assessments, and managing residual risk through remediation or mitigation. Strong experience in threat and vulnerability analysis, risk treatment, vendor risk management, audit remediation, risk monitoring, and reporting. Proven experience and background in growing and managing teams. Experience in assessing risks in the Google Cloud Platform, Microsoft Azure, or AWS environment(s). IT WOULD BE GREAT IF YOU HAVE EXPERIENCE IN ONE OF THE FOLLOWING..... Come from a start-up background or have a start-up mentality Experience with information security products/tools/solutions with an emphasis in cloud security. Strong knowledge of Security Controls, Directory Services, infrastructure, and technical standards. Strong knowledge of endpoint security controls and best practices. Be a visionary thinker with a view of becoming a Thought Leader in the GRC world TO BE CONSIDERED…. Please either apply by clicking online or emailing me directly to ******. I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to follow me on Twitter @SearchablePM or connect with me on LinkedIn! I look forward to hearing from you. Governance, Risk, Compliance, CISO, CISSP, CISM, CISA, CRISC, Security, Audit, ISO, NIST, CIS