GRC Risk Register Lead

InstantServe LLC

$90K — $120K *
Business Services
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of experience in risk management or governance processes.
  • Proven experience designing risk register frameworks and scoring models.
  • Strong understanding of cybersecurity and technology risk postures.
  • Demonstrated ability to engage and enable stakeholders effectively.
  • Exceptional documentation and knowledge transfer skills.

Responsibilities

  • Define governance workflows for risk management processes.
  • Establish roles for risk owners and governance bodies.
  • Design processes for escalation and reporting on risks.
  • Engage with stakeholders to validate risk workflows.
  • Facilitate workshops to communicate risk governance processes.
  • Support the onboarding of risks into the enterprise register.
  • Produce clear documentation on risk management frameworks.

Benefits

  • Opportunity to influence enterprise risk management strategy.
  • Engagement with cross-functional teams across business and technology.
  • Room for professional development and knowledge transfer.
  • Access to a structured framework for ongoing risk assessment.
  • Involvement in high-impact projects that enhance company resilience.
Full Job Description
• Define end to end governance workflows for: o Risk identification and intake o Risk review and validation o Risk acceptance, mitigation, or transfer o Ongoing monitoring and periodic reassessment • Establish roles and responsibilities for risk owners, reviewers, and governance bodies. • Design escalation and reporting processes for high risk and accepted risks. • Engage key stakeholders across business, technology, security, and governance functions to validate risk requirements and workflows. • Facilitate working sessions or workshops to socialize the risk register and governance processes. • Support onboarding of initial risks into the enterprise risk register. • Produce clear, audit ready documentation covering: o Risk register structure and data definitions o Risk scoring methodology o Governance workflows and decision authorities • Provide knowledge transfer to designated security staff to ensure sustainability beyond the contract term. The contractor shall provide the following deliverables during the engagement: 1. Enterprise Risk Register Framework o Standardized risk register template and taxonomy 2. Risk Scoring and Prioritization Model o Documented likelihood and impact scales o Scoring methodology and prioritization logic 3. Risk Governance Model o Defined workflows for risk intake, review, acceptance, and monitoring o Roles and responsibilities matrix 4. Initial Population of Risk Register o Initial set of documented risks reflecting current cybersecurity and technology risk posture 5. Final Documentation Package o Consolidated guidance and operating procedures for ongoing risk management Experience with Risk Register Design and Framework Experience with Risk Scoring and Prioritization Model Experience with Governance Processes and Workflows Experience with Stakeholder and Enablement Demonstrated skill with documentation and knowledge transfer

Similar Jobs

More Business Services Jobs

Find similar GRC Risk Register Lead jobs: