Full-Time Director, IT Risk & Compliance

• Manage and mentor a team of risk analysts and security professionals.
• Develop and maintain a comprehensive Enterprise IS/IT Risk Management framework, including risk assessments, threat modeling, and vulnerability management.
• Conduct regular risk assessments across the organization, including business impact analyses (BIA) and threat and vulnerability assessments (TVAs).
• Oversee the implementation of risk mitigation controls and monitor their effectiveness.
• Develop and maintain key risk indicators and key performance indicators (KPIs) to track and measure risk levels.
• Advise senior management on risk-related decisions and provide recommendations for improving the company's overall security posture.
• Stay abreast of emerging threats and vulnerabilities and advise on appropriate countermeasures.
• Collaborate with internal and external stakeholders, including IT, legal, compliance, and business units.
• Ensure compliance with relevant industry regulations and standards.
• Participate in incident response activities and post-mortem analysis.
• Develop and deliver presentations and reports to senior management and the Board of Directors.
• Ensure compliance with applicable laws, regulations, and industry standards.
• Develop and maintain IT policies, procedures, and standards.
• Conduct internal and external audits to assess compliance.
• Manage relationships with external auditors and regulatory bodies.
• Stay abreast of changes in regulatory requirements and industry best practices.
• Demonstrate a commitment to diversity, equity, and inclusion through continuous development, modeling inclusive behaviors, and proactively managing bias.
• All other duties as assigned.

What is the last date for applying to the job?

Which countries are accepted for this remote job?