Epicareer Might not Working Properly
Learn More
Please Turn on your JavaScript

Epicareer might not working properly because your browser javascript is turned off.

What is JavaScript?

JavaScript is like the magic behind making websites interactive. Basically, it makes Epicareer more enjoyable and engaging.
How do i turn this on?
Find tutorial for your browser below :
  1. Make sure the webpage is open.
  2. In the Safari app on your Mac, choose Safari > Preferences, then click Security.
  3. Make sure the Enable JavaScript checkbox is selected.
  4. Click Websites.
  5. On the left, click Content Blockers.
  6. Make sure Off is chosen in the pop-up menu next to the website.
  7. On the left, click Pop-up Windows.
  8. Make sure Allow is chosen in the pop-up menu next to the website.
Visit Site here
  1. Open Chrome on your computer.
  2. Click. then Settings.
  3. Click Privacy and Security.
  4. Click Site settings.
  5. Click JavaScript.
  6. Select Sites can use Javascript.
Visit Site here
  1. If you're running Windows OS, in the Firefox window, click Tools > Options.
  2. Tip: If you're running Mac OS, click the Firefox drop-down list > Preferences.
  3. On the Content tab, click the Enable JavaScript check box.
Visit Site here
  1. Click the "Settings and more" icon at the top right of the Edge browser window.
  2. Click Settings.
  3. From the Settings menu, click Cookies and site permissions.
  4. Scroll down and click on JavaScript.
  5. In the JavaScript window, toggle the slider to "on" or "allowed."
  6. Close the Settings tab.
  7. Refresh the page.
Visit Site here
  1. Go to Settings.
  2. Click Advanced in the left sidebar, and click Privacy & security.
  3. Under Privacy and security, click Site settings.
  4. Click JavaScript.
  5. At the top, turn on or off Allowed (recommended).
Visit Site here
Any Question? Contact us
logo
Jobs or company...

Senior Cyber GRC Specialist

Salary undisclosed
Checking job availability...
Original
Simplified
Job Description

Job Title: Senior Cyber GRC Specialist

Job Location: Remote

Eligibility/Clearance: ship Required. Law firm experience
required

Job Description:

The Senior Cyber Governance, Risk, and Compliance (GRC) Specialist is
responsible for leading the development, enhancement and implementation
of a comprehensive cybersecurity risk management program for the firm.
Reporting to the Director of Cyber GRC, the Senior Cyber GRC Specialist
will engineer a data-driven risk and control program for assessing
cyber, technology and operational risks rigorously and continuously,
registering and tracking issues to completion, and reporting these
issues to the Cybersecurity leadership and other stakeholders. The
Senior Cyber GRC Specialist will provide strategic insights and guidance
to enhance the firm s risk management and compliance activities to
support its global operations and client requirements. This role
requires hands-on, collaborative work with IT and Cybersecurity
leadership teams and technical subject matter experts.

Responsibilities (include but are not limited to):

- Defines, documents, and manages the firm s Risk Management program,
including processes for identifying, categorizing, assessing, and
registering risks; assigning owners; determining dispositions; and
tracking issues to completion.

- Lead comprehensive risk assessments across all business units,
identifying potential threats and vulnerabilities. Develop and implement
risk mitigation strategies to safeguard the firm s assets and
reputation.

- Provide expert advice to senior management on risk-related issues,
ensuring that risk considerations are integrated into the firm s
strategic planning and decision-making processes.

- Ensure the firm s risk and control program comprehensively accounts
for emerging technologies and risk (e.g., AI).

- Manage security compliance efforts across the firm, ensuring adherence
to industry standards (e.g., ISO 27001:2022) and client requirements
(e.g., CMMC, NIST 800-171).

- Manage the firm s cyber governance forum, reporting on program
progress to the CISO and other senior stakeholders.

- Build and curate Key Performance Indicators (KPIs) and Key Risk
Indicators (KRIs) to highlight control adoption gaps, identify areas of
strong or weak performance, or quantify risks, respectively.

- Identity opportunities to automate control monitoring and work with
technical subject matter experts to define and implement requirements.

- Contribute to the development and implementation of the Business
Resilience plans; conduct Business Impact Analysis (BIA).

- Assess and provide guidance to improve the Business Continuity and
Disaster Recovery plans and procedures across business units to ensure
completeness.

- Uphold high standards of confidentiality, discretion, and integrity,
particularly with respect to all sensitive and/or confidential firm and
client information to which this position will have access.

Requirements:

- Requires 10+ years of experience in risk management, preferably within
a law firm or professional services environment. Proven track record of
successfully managing complex risk projects and initiatives.

- Strong analytical and problem-solving skills, with the ability to
synthesize complex information and develop actionable insights.

- Ability to think strategically and align risk management practices
with organizational goals.

- Superior time-management skills, relentless follow-through, and
metronome-like, consistent delivery.

- Effective written and oral communications skills.

- CMMC and NIST 800-171 experience a plus.

Education:

- Bachelor's degree in Computer Science or Engineering preferred;
advanced degree, CISSP, CISM, CRISC, CISA or other comparable
certifications preferred.

Arena Technical Resources, LLC, (ATR) is an Equal Opportunity Employer
(EOE) who will provide equal employment opportunity to employees and
applicants for employment without regard to race, ethnicity, religion,
color, sex, pregnancy, national origin, age, veteran status, ancestry,
sexual orientation, gender identity or expression, marital status,
family structure, genetic information, or mental or physical disability

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job
Job Description

Job Title: Senior Cyber GRC Specialist

Job Location: Remote

Eligibility/Clearance: ship Required. Law firm experience
required

Job Description:

The Senior Cyber Governance, Risk, and Compliance (GRC) Specialist is
responsible for leading the development, enhancement and implementation
of a comprehensive cybersecurity risk management program for the firm.
Reporting to the Director of Cyber GRC, the Senior Cyber GRC Specialist
will engineer a data-driven risk and control program for assessing
cyber, technology and operational risks rigorously and continuously,
registering and tracking issues to completion, and reporting these
issues to the Cybersecurity leadership and other stakeholders. The
Senior Cyber GRC Specialist will provide strategic insights and guidance
to enhance the firm s risk management and compliance activities to
support its global operations and client requirements. This role
requires hands-on, collaborative work with IT and Cybersecurity
leadership teams and technical subject matter experts.

Responsibilities (include but are not limited to):

- Defines, documents, and manages the firm s Risk Management program,
including processes for identifying, categorizing, assessing, and
registering risks; assigning owners; determining dispositions; and
tracking issues to completion.

- Lead comprehensive risk assessments across all business units,
identifying potential threats and vulnerabilities. Develop and implement
risk mitigation strategies to safeguard the firm s assets and
reputation.

- Provide expert advice to senior management on risk-related issues,
ensuring that risk considerations are integrated into the firm s
strategic planning and decision-making processes.

- Ensure the firm s risk and control program comprehensively accounts
for emerging technologies and risk (e.g., AI).

- Manage security compliance efforts across the firm, ensuring adherence
to industry standards (e.g., ISO 27001:2022) and client requirements
(e.g., CMMC, NIST 800-171).

- Manage the firm s cyber governance forum, reporting on program
progress to the CISO and other senior stakeholders.

- Build and curate Key Performance Indicators (KPIs) and Key Risk
Indicators (KRIs) to highlight control adoption gaps, identify areas of
strong or weak performance, or quantify risks, respectively.

- Identity opportunities to automate control monitoring and work with
technical subject matter experts to define and implement requirements.

- Contribute to the development and implementation of the Business
Resilience plans; conduct Business Impact Analysis (BIA).

- Assess and provide guidance to improve the Business Continuity and
Disaster Recovery plans and procedures across business units to ensure
completeness.

- Uphold high standards of confidentiality, discretion, and integrity,
particularly with respect to all sensitive and/or confidential firm and
client information to which this position will have access.

Requirements:

- Requires 10+ years of experience in risk management, preferably within
a law firm or professional services environment. Proven track record of
successfully managing complex risk projects and initiatives.

- Strong analytical and problem-solving skills, with the ability to
synthesize complex information and develop actionable insights.

- Ability to think strategically and align risk management practices
with organizational goals.

- Superior time-management skills, relentless follow-through, and
metronome-like, consistent delivery.

- Effective written and oral communications skills.

- CMMC and NIST 800-171 experience a plus.

Education:

- Bachelor's degree in Computer Science or Engineering preferred;
advanced degree, CISSP, CISM, CRISC, CISA or other comparable
certifications preferred.

Arena Technical Resources, LLC, (ATR) is an Equal Opportunity Employer
(EOE) who will provide equal employment opportunity to employees and
applicants for employment without regard to race, ethnicity, religion,
color, sex, pregnancy, national origin, age, veteran status, ancestry,
sexual orientation, gender identity or expression, marital status,
family structure, genetic information, or mental or physical disability

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Report this job