GRC Team Lead

At Nouryon, our global team of Changemakers takes positive action every day, to reach higher goals collectively and individually. We create innovative and sustainable solutions for our customers to answer societys needs – today and in the future.

Purpose/Key Objectives of the Job:

• The purpose of this role is to lead Nouryon’s Governance, Risk, and Compliance (GRC) program.
• Enhance short/long-term GRC program strategy to align with regulatory and business needs.
• Lead GRC in cross-functional projects and initiatives.
• Apply advanced GRC knowledge/experience to mature and improve processes, controls library, and metrics reporting.
• Manage and review team members day to day work product.

About The Job (Job Responsibilities):

• Track and support compliance with various findings.
• Build, track and support a cyber security risk program.
• Build, track and support a cyber security compliance program.
• Develop, track and support metrics and reports on KPIs, SLAs and other internal metrics.
• Develop policy, processes, procedures and guidelines.
• Build, track and support compliance to various frameworks such as ISO 27001, NIST CSF/800-53, etc.
• Responsible for Penetration Testing program.
• Track and help improve the GRC program maturity.
• Provide other support to the Office of the CISO.

We believe you bring (Education & Experience)

• Former leader role in GRC with knowledge of regulatory and industry requirements and standards.
• 10+ years’ experience working in an enterprise environment.
• Experience with multiple GRC tools such as Archer, ServiceNow GRC, etc.
• Preferred one or more of: CISSP, CRISC, CISA, CISM.
• Must have experience conducting/implementing/managing risk/compliance management frameworks. Must possess strong written and verbal communication skills.
• Proficiency with all Microsoft (MS) Office programs is necessary, including familiarity with SharePoint.
• Conducting and/or coordinating information security risk assessments for technology and security frameworks.
• Facilitating multiple stakeholders to agree on appropriate security solutions and verifying that security risks are mitigated appropriately.
• Verifying that required security controls are built into new products Performing deep dives on Information security-related processes and systems.
• Identifying system limitations that could lead to regulatory risks in new products and services and provide guidance for resolution and risk mitigation. Staying abreast of innovative business and technology trends in Information Security, risk, and controls and advising leadership on technology initiatives.
• Carrying out risk assessments and gap analysis of multi-networks and cloud environments using compliance standards and frameworks such as CSF and NIST.
• Creating, managing, and enforcing compliance requirements for business process and information systems and assisting in the development of Authority wide cybersecurity compliance program.
• Designing and/or implementing Information Security solutions in an enterprise environment. Leading initiatives for re-architecting and reengineering of security controls to enhance the security posture of the Authority. Strong knowledge of Vulnerability Management Remediation.

nouryon.com/careers/how-we-hire/

We look forward to receiving your application!

We kindly ask our internal candidates to apply with your Nouryon email via Success Factors.

We’re looking for tomorrow’s Changemakers, today.

If you’re looking for your next career move, apply today and join Nouryon’s worldwide team of Changemakers in providing essential solutions that our customers use to manufacture everyday products such as personal care, cleaning, paints and coatings, agriculture and food, pharmaceuticals, and building products. Our employees are driven by the wish to make an impact and actively drive positive change. If that describes you, we will gladly make way for your ambitions. From day one we support you with your personal growth, through challenging positions and comprehensive learning and development opportunities, in a dynamic, international, diverse, and proactive working environment.

website

#WeAreNouryon #Changemakers