Full-Time Risk & Compliance Manager

Devoteam is seeking a Risk & Compliance Manager to develop and implement risk and compliance programs, ensuring industry standards and regulatory requirements are met. Reporting to the CISO, this role involves leading certification efforts, enhancing the risk management framework, and maintaining a robust governance structure.

Responsibilities:

• Manage end-to-end certification processes for standards like ISO 27001 and SOC2.
• Design and improve a comprehensive risk management framework.
• Build and maintain a robust governance structure, including policies and control assessments.
• Act as the primary point of contact for internal and external audits.
• Utilize GRC tools like OneTrust, RSA Archer, or ServiceNow.
• Collaborate with executives and cross-functional teams to communicate risk posture.
• Contribute to third-party risk management.

Requirements:

• 3+ years of experience in risk management, compliance, or governance.
• Proven track record of managing certification efforts (e.g., ISO 27001, SOC2).
• Strong background in risk assessment methodologies.
• Experience in managing and optimizing GRC tools.
• Excellent English communication skills.
• Strong organizational and project management skills.

Preferred:

• Professional certifications such as CISM, CRISC.
• Familiarity with ISO 27001, NIST 800-53/CSF, SOC2.

Benefits:

• International career opportunities.
• Attractive compensation package.
• Opportunities for training and certification.

What is the last date for applying to the job?

Which countries are accepted for this remote job?