-
Risk and Compliance Engineer
2 days ago
Salesforce Greendale, United StatesTo get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts. · Job Category · Software Engineering · To get the best candidate experience, please consider applying for a maximum of 3 roles wit ...
-
Governance, Risk, and Compliance Lead
1 week ago
University of Chicago Greendale, United StatesUniversity of Chicago · One of the world's leading research universities, the University of Chicago inspires scholars to pursue field-defining research, while providing a transformative education for students. · View company page · Department · Provost Globus · About the Depa ...
-
IT Security Risk and Compliance Manager
2 weeks ago
Umicore Greendale, United StatesReducing harmful vehicle emissions. Giving new life to used metals. Powering the cars of the future. As a global materials and technology group, we apply our specialist knowledge to offer materials and solutions that are needed to everyday life. We strive to be a clear world lead ...
-
Senior Compliance and Risk Analyst
1 week ago
NextEra Energy , Inc. Greendale, United StatesFlorida Power & Light Company · is America's largest electric company, providing clean, affordable, and reliable electricity to more than 12 million people in Florida. We operate one of the cleanest power generation fleets in the U.S. and our reliability is among the best in the ...
-
Domo Greendale, United StatesSenior Manager, Governance, Risk and Compliance (GRC) · Domo · With Domo, you can use data and insights delivered in data experiences to multiply your business impact and drive your business forward. · View company page · Domo is a native cloud -native data experiences innova ...
-
Technical Lead I, Governance Risk and Compliance
2 weeks ago
Lincoln Electric Greendale, United StatesTechnical Lead I, Governance Risk and Compliance · Lincoln Electric · Lincoln Electric is the world leader in the design, development and manufacture of arc welding products, automated joining, assembly and cutting systems, plasma & oxy-fuel cutting equipment. · View company p ...
-
Risk Compliance Audit
1 week ago
U.S. Bank Milwaukee, United StatesAt U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each ...
-
Director of Risk Management and Performance
2 days ago
Granite Hills Hospital West Allis, United States**Responsibilities**: · Granite Hills Hospital offers high-quality, patient centered behavioral health care for the greater Milwaukee community. Our 120-bed facility features evidence-based treatment for adolescents, adults, and older adults. · The **Director of Risk Management/P ...
-
Regional Property Manager
6 days ago
CARDINAL CAPITAL MANAGEMENT INC West Allis, United States**Regional** **Property** **Manager** · **Classification **Exempt · **Rev Date **04.2024 · **Reports to **Director of Property Management · **Summary/Objective** · ***The Regional Property Manager is accountable to protect, maintain and enhance the value of real estate assets in ...
-
IT Project Manager
6 days ago
EVERSOURCE East Berlin, United StatesIT Agile PM/Scrum Masters are responsible for the oversight and success of Information Technology and related Business projects. IT Agile PM/Scrum Masters manage the budgetary, scheduling and delivery of assigned initiatives in compliance with the standards and procedures of the ...
-
Operations Manager
2 days ago
Standex New Berlin, United States**What You'll Do** · - Maintain, sustain, and develop the overall manufacturing strategy for the business. Ensure the alignment of the manufacturing organization with the company mission statement and strategic plans. · - Define and manage the organization strategy for the factor ...
-
Project Manager
6 days ago
Communications Engineering Company New Berlin, United States**OBJECTIVE**: · As a Project Manager you will be an integral part of the CEC team. We help customers run their organizations better through the technology solutions we provide-and you can be part of this essential mission. The Project Manager leads projects to ensure optimal per ...
-
Area Teacher 2
20 hours ago
Options For Youth Public Charter Schools Cudahy, United StatesJob Description · Are you interested in making a positive impact in students' lives? Do you believe that every student should have the opportunity for success? If so, Options For Youth (OFY) is the place for you OFY is looking for positive, outgoing, authentic, energetic, motivat ...
-
Manager Trade Compliance
1 week ago
Briggs & Stratton Wauwatosa, United States**Position Description**: · As the Trade Compliance Manager, your role will be to develop, implement and manage trade compliance procedures. You will manage the company's import and export compliance activities, assessing risk and implementing procedures as necessary. A focus on ...
-
Mortgage Underwriter Ii
1 week ago
UW Credit Union Wauwatosa, United StatesOverview: · UW Credit Union's Mortgage department is hiring. Join our team as a **Mortgage Underwriter II**, where you'll play a pivotal role in ensuring loan compliance with company policies and investor guidelines. You'll be responsible for conducting thorough analyses of loan ...
-
Iris Consultant
6 days ago
Molina Healthcare Oak Creek, United StatesJob Summary · Do you want a career where you build lasting relationships with the people you partner with? Do you want to make a difference in the lives of people with long-term health care needs? Then TMG wants to hear from you · We're currently looking for someone with a social ...
-
IT Principal
1 week ago
WEC Energy Group (WEC) Milwaukee, United StatesWBS, a subsidiary of WEC Energy Group, is seeking an IT Principal - Risk and Compliance (Principal IT Solutions Analyst) in our Milwaukee, Wisconsin location. This position offers flexibility for a hybrid work arrangement (remote/on-site) with time spent in the Milwaukee office. ...
-
IT Principal
1 week ago
WEC Energy Group (WEC) Milwaukee, United StatesWEC Business Services LLC, a subsidiary of WEC Energy Group, is seeking am IT Principal - Risk and Compliance (Principal IT Solutions Analyst) in our Milwaukee, Wisconsin location. This position offers flexibility for a hybrid work arrangement (remote/on-site) with time spent in ...
-
Audit Project Manager
2 days ago
U.S. Bank National Association Milwaukee, United StatesAt U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each ...
-
General Counsel
6 days ago
Association of Equipment Manufacturers Milwaukee, United StatesJoin the Association of Equipment Manufacturers (AEM) as our in-house General Counsel. At AEM, we value growth, innovation, and well-being. Our culture fosters a sense of belonging, camaraderie, and mutual respect. · As the Association's chief legal officer and corporate secretar ...
Director, Governance, Risk and Compliance - Greendale, United States - Ryan Specialty
Description
Director, Governance, Risk and Compliance - CorporateRyan Specialty
Ryan Specialty is an international specialty insurance firm that provides innovative solutions for brokers, agents and insurance carriers.
View company page
The Director of Governance, Risk & Compliance will report to the Chief Information Security Officer and will lead the Governance, Risk & Compliance workstream on the Information Security team.
This role is responsible for enhancing and expanding Ryan Specialty's GRC portfolio to improve the company's overall security and compliance posture.
The ideal candidate will have detailed working knowledge of security technologies and leading practices, and familiarity in leading a team in maintaining compliance for a regulated business environment.
This role will be responsible for leading all information security compliance efforts, working with relevant internal teams to ensure that all compliance obligations are understood, all relevant processes are fully established, and compliance is continuously tracked, measured, and reported on.
Additionally, this role will lead the continuing maturation of Ryan Specialty's cyber risk management efforts, consisting of internal risk management and external Third-Party risk management programs.
Candidates for this role must be collaborative in nature, acting as a true enabler of the business and partner to technology and other departmental leaders and teams, able to drive security outcomes through influence and partnership.
Additionally, candidates must have an ability to seamlessly move from deep, detailed conversations to executive level briefings that explain challenging compliance, risk, and technical concepts succinctly.
Essential Functions:
Lead, in partnership with CISO, the Cyber Governance, Risk and Compliance program, including articulating cyber risks in a business context, their impacts, and recommending mitigation
Collaborate with the VP of IT Risk Management to manage Information Security risks, including maintaining a risk register, assisting with self-assessments, and contributing to risk management strategies and processes
Create, maintain and continuously mature information security policies, standards, and controls; work with senior leaders to ensure that any impacts and associated work to remain compliant is included in Product and Technology roadmaps.
Implement and oversee procedures and controls to assure compliance with applicable regulatory, legal, and contractual requirementsContinue to mature the third party risk management process
Support the business, procurement and legal teams regarding security requirements, including review of contractual elements pertaining to security, completing questionnaires, meeting with auditors, etc.
Collaborate with regulatory compliance on the privacy programParticipate in or lead security efforts related to M&A, including due diligence assessments and post-acquisition activities to fully integrate acquired entity into all security controls and processes
In conjunction with IT Risk Management, oversee the remediation of information security related findings identified by Internal Audit, IT Risk, and Third Party Risk Assessments
Own the security awareness training program, including selection of courses, phishing campaigns, awareness campaigns and reporting
Provide reporting and metrics to senior leadership
Work within and across teams on cross functional projects
If required, provide leadership for incident response activities
Education/Experience/Skills:
8+ years of cross-discipline Information Security/Information Technology experience
5+ years of leading a GRC function
Experience applying security frameworks such as NIST CSF, CIS, etc. for self-assessments and working with auditors
Subject matter expertise in developing and executing company-wide program, policies, procedure, and controls
The ability to translate modern security technology practices (e.g., passwordless, CI/CD, encryption, etc.) to the language of auditors
Understanding of the risks in cloud -native and on premise architectures
Compliance and audit strategies for cloud environments (IaaS, SaaS, etc.)
Excellent executive presentation and communication skills
Ability to lead through influence, including at executive levels
Strong critical thinking skills with ability to challenge normal operations
Experience working in a team-oriented, collaborative environment
Completion of prior successful external audits, such as SOC 2, SOX, HIPAA
Certification showing expertise in audit or risk management (e.g., CISA, CISM, CRISC)
Insurance and/or financial services background is beneficial, but not required
Disclaimer Ryan Specialty is an Equal Opportunity Employer.
Position Summary:
The Director of Governance, Risk & Compliance will report to the Chief Information Security Officer and will lead the Governance, Risk & Compliance workstream on the Information Security team.
This role is responsible for enhancing and expanding Ryan Specialty's GRC portfolio to improve the company's overall security and compliance posture.
The ideal candidate will have detailed working knowledge of security technologies and leading practices, and familiarity in leading a team in maintaining compliance for a regulated business environment.
This role will be responsible for leading all information security compliance efforts, working with relevant internal teams to ensure that all compliance obligations are understood, all relevant processes are fully established, and compliance is continuously tracked, measured, and reported on.
Additionally, this role will lead the continuing maturation of Ryan Specialty's cyber risk management efforts, consisting of internal risk management and external Third-Party risk management programs.
Candidates for this role must be collaborative in nature, acting as a true enabler of the business and partner to technology and other departmental leaders and teams, able to drive security outcomes through influence and partnership.
Additionally, candidates must have an ability to seamlessly move from deep, detailed conversations to executive level briefings that explain challenging compliance, risk, and technical concepts succinctly.
Essential Functions:
Lead, in partnership with CISO, the Cyber Governance, Risk and Compliance program, including articulating cyber risks in a business context, their impacts, and recommending mitigation
Collaborate with the VP of IT Risk Management to manage Information Security risks, including maintaining a risk register, assisting with self-assessments, and contributing to risk management strategies and processes
Create, maintain and continuously mature information security policies, standards, and controls; work with senior leaders to ensure that any impacts and associated work to remain compliant is included in Product and Technology roadmaps.
Implement and oversee procedures and controls to assure compliance with applicable regulatory, legal, and contractual requirementsContinue to mature the third party risk management process
Support the business, procurement and legal teams regarding security requirements, including review of contractual elements pertaining to security, completing questionnaires, meeting with auditors, etc.
Collaborate with regulatory compliance on the privacy programParticipate in or lead security efforts related to M&A, including due diligence assessments and post-acquisition activities to fully integrate acquired entity into all security controls and processes
In conjunction with IT Risk Management, oversee the remediation of information security related findings identified by Internal Audit, IT Risk, and Third Party Risk Assessments
Own the security awareness training program, including selection of courses, phishing campaigns, awareness campaigns and reporting
Provide reporting and metrics to senior leadership
Work within and across teams on cross functional projects
If required, provide leadership for incident response activities
Education/Experience/Skills:
8+ years of cross-discipline Information Security/Information Technology experience
5+ years of leading a GRC function
Experience applying security frameworks such as NIST CSF, CIS, etc. for self-assessments and working with auditors
Subject matter expertise in developing and executing company-wide program, policies, procedure, and controls
The ability to translate modern security technology practices (e.g., passwordless, CI/CD, encryption, etc.) to the language of auditors
Understanding of the risks in cloud -native and on premise architectures
Compliance and audit strategies for cloud environments (IaaS, SaaS, etc.)
Excellent executive presentation and communication skills
Ability to lead through influence, including at executive levels
Strong critical thinking skills with ability to challenge normal operations
Experience working in a team-oriented, collaborative environment
Completion of prior successful external audits, such as SOC 2, SOX, HIPAA
Prior experience automating compliance controls
Certification showing expertise in audit or risk management (e.g., CISA, CISM, CRISC)
Insurance and/or financial services background is beneficial, but not required
Disclaimer Ryan Specialty is an Equal Opportunity Employer.
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.