Governance Risk & Compliance Manager I (Contract Talent)

Robert Half, one of FORTUNE’s World’s Most Admired Companies and a Fortune 100 Best Companies to Work For is hiring for a Governance Risk & Compliance Manager I to join the Data Privacy department.

What You'll Do:

• Works closely with direct management, peers and subject matter experts to understand business requirements related to security, privacy and regulatory compliance, and to map those requirements to current security and project requirements with low complexity requirements. Ensure the continued adoption, maturity and growth of the following functional areas by adequate planning and sustained execution of required activities:
  • Information Risk Management
  • Compliance
  • Security and Data Privacy
  • Policy Lifecycle Management
  • Security Awareness
• Work with other direct management to identify Information Security Policies that require low to intermediate complexity of updates and also track policy exceptions requested for existing policies. Support Policy awareness and monitoring activities for sustaining adequate compliance
• Ensure that new projects and existing application and system implementations comply with applicable compliance frameworks and RH’s information security and data privacy requirements.
• Act as an internal resource within Enterprise Information Security supporting EIS, ITSS, Protiviti CIO, CTO, and the Business for any security or privacy IT risk and ensure timely resolution of issues and initiatives of low complexity
• Provide guidance to with the implementation, monitoring, and reporting of control processes, documentation, and compliance measures
• Promote and manage the communication of best practices for enhanced collaboration among Information Security (InfoSec)
• Identify opportunities for security posture improvement and closely partner with the larger InfoSec organization
• Maintain the efficiency of the program as well as track results
• Actively represent and show presence in the organization as a contributor to  security awareness and expanding knowledge through news bytes, providing their position on security effectiveness/exposures
• Perform operational tasks associated with RHI Risk Management program, which will include monitoring risk decisions from stakeholders, tracking risk remediation efforts, conducting third party security assessments and responding to security and privacy customer RFI questionnaires

What You'll Need:

• Direct Management and IT Management/ Control owners
• Provide information, answers to security inquiries
• Bachelor's Degree (B.A.) or equivalent combination of education and experience in Information Risk Management, Engineering, Management Information Systems or related curriculum
• Basic understanding of systems development life cycle methodologies required
• Capacity to learn GRC methodologies, risk analytic tools and development of information risk metrics required
• Capacity to learn about executing activities related to Information Security Policy Lifecycle required
• Capacity for learning to review and respond to security and compliance questions in RFIs required
• Limited knowledge of Application Security, Infrastructure security, audit, and control methods
• Capacity to learn about gap analysis assessments, review and validation of relevant security, privacy and regulatory requirements
• 1 or more Professional certifications from ISACA (CISA, CISM), (ISC)2 (CISSP), IAPP (CIPP, CIPP/IT), not needed but a plus
• Excellent communication, teamwork and client service skills.
• Demonstrated integrity within a professional environment
• Experience interacting with external auditors, management, and internal resources to discuss and address security concerns not mandator but a plus
• Self learner and ability to work in an agile and cross functional environment.
• General project management skills.
• Results-oriented person who can achieve tangible improvements in the corporate security arena.  
• Strong analytical/troubleshooting skills
• Aptitude to prioritize tasks
• Strong organizational, time management, decision making, and problem solving skills
• A professional with a some understanding of  information risk and compliance principles, theories, and concepts. General knowledge of related disciplines
• Works on problems of diverse scope where analysis of data requires evaluation of identifiable factors
• Demonstrates good judgment in selecting methods and techniques for obtaining solutions. Interacts with senior internal and external personnel
• Normally receives moderate instruction on day-to-day work, general instructions on new assignments

The typical hourly pay rate for this position is shown below and is negotiable depending upon experience and location.

Benefits are available to contract/temporary professionals, including medical, vision, and dental, and life and disability insurance. Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan. Visit roberthalf.gobenefits.net for more information.

Robert Half Inc. is an Equal Opportunity Employer. M/F/Disability/Veteran

As part of Robert Half’s Corporate Services facility employment process, any offer of employment is contingent upon successful completion of a background check.

Robert Half is committed to being an equal employment employer offering opportunities to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to apply for a position, please contact us by sending an email to HRSolutions@roberthalf.com or call 1.855.744.6947 for assistance.

In your email please include the following:

• The specific accommodation requested to complete the employment application.

• The location(s) (city, state) to which you would like to apply.

For positions located in San Francisco, CA: Robert Half will consider qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance.

For positions located in Los Angeles County, CA: Robert Half will consider for employment qualified applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.