$100K - $150K(Ladders Estimates)
Job Description and Requirements
The Synopsys Information Security Services (ISS) Team is expanding and seeking a Senior Manager of GRC to enable and transform its risk management, compliance and security capabilities and resources. Synopsys is investing in these areas to address an cybersecurity threat landscape, as well as regulatory compliance requirements as the company continues to grow.
The ISS Governance, Risk & Compliance (GRC) Senior Manager is a critical position within the organization and has GRC responsibilities from a technology and security perspective across the organization globally. Working closely with the Director of Information Security Services and stakeholders across the organization, this position will be responsible for building and enhancing the GRC portfolio of efforts to raise the overall security and compliance posture for Synopsys. This individual will be directly responsible for implementing, maintaining and improving policies, procedures and internal controls to assure compliance with applicable regulatory and legal requirements as well as best practices. The GRC Senior Manager will drive risk analysis for internal and external third-party risk assessments by designing controls and implementing industry best practice processes for teams and technologies utilized across the organization.
The role will work across multiple frameworks and regulatory standards including, but not limited to, NIST CSF, ISO, GDPR, SOX, etc. This individual will liaise with all business groups including but not limited to Finance, Legal, Audit and other stakeholders globally to implement new solutions and processes as well as document and remediate outstanding issues. The role will also have responsibility for the implementation and ownership of a GRC system that will be used to further the automation of the program.
Education and Experience:
University degree or equivalent certified education and experience,
Fluent verbal and written English interpersonal and communication skills
5+ years' experience of GRC implementation, processes, and practices
Prior management experience of IT team
Experience with GRC tools, technology, and implementation
Ability to manage capital and operating budgets
Ability to interact with IT vendors and negotiate pricing and service
Security credentials: CISSP (Preferred)
Vendor Management: 3-5 years (Preferred)
Valid Through: 2019-10-18