Zepz is hiring a Remote IT Governance Risk and Compliance Manager
About the role:\n\nWe are seeking an experienced and qualified proactive Manager of IT Governance, Risk, and Compliance to join our dynamic team and play a pivotal role building out a team focused on strengthening our commitment to protecting sensitive data, assist to manage and coordinate technology and product risks while and ensuring compliance with industry standards and regulations, including but not limited to Digital Operational Resilience Act, Operational Resilience and General Data Protection Regulation. In this role, you will be instrumental in developing, implementing, and managing our iGRC function. Your primary responsibility will be to lead and enhance our governance, risk management, and compliance frameworks, aligning them with industry best practices and relevant regulations. You will collaborate closely with cross-functional teams to identify, assess, and mitigate risks while also ensuring our adherence to various security and privacy standards, certifications, and regulatory requirements. You will be expected to guide and direct junior staff and be a subject matter expert on the subject of IT GRC.\nWhat you will own:\n\nReporting to the Director, Terence Govender, you will:\n\nIT Governance:\n\nIn conjunction with the Director of IT GRC Evaluate relevant practices, Implement and maintain the IT governance framework, based on the COBIT framework.\n\nDevelop and communicate relevant policies, standards, and guidelines to promote a compliant well governed operating environment. \n\nCreate awareness and education programs to foster a Governance culture that meets the business requirements of effective but light touch governance.\n\nIn conjunction with the Director of ITGC - Establish and Manage IT Governance forums as required.\n\nRisk Management:\n\nExtract risk reports from the Risk system and advise the Product and Engineering teams on outstanding issues and items requiring remediation.\n\nIn conjunction with the second line of defense (2LOD) and Domain owners, Conduct risk assessments and identify potential risks that the team may face.\n\nCollaborate with internal stakeholders to develop risk mitigation strategies and action plans.\n\nCompliance Management:\n\nOversee the compliance program, ensuring alignment with industry standards and regulations, such as DORA, Operational Resilience, Business continuity and Disaster recovery and Safeguarding.\n\nManage compliance audits, assessments, and certifications, coordinating with internal and external auditors as needed - understanding IT General controls (ITGC) ISAE and other Multistate audit requirements.\n\nStay up-to-date with changes in relevant regulations that impact the organization and update internal policies and procedures accordingly.\nWhat you bring to the table: \n\nProven 5+ years experience in governance, risk management, and compliance roles, preferably in high-tech software organizations with financial services being an advantage.\n\nExperience in managing compliance audits and working with internal and external auditors.\n\nStrong analytical, problem-solving, and decision-making skills.\n\nExcellent communication and interpersonal abilities, with the ability to influence and collaborate across different teams and levels of the organization.\n\nRelevant certifications such as COBIT 5 and above certification TIL 3 and above certification + SO 27001/2 would be advantages\n\nOur Recruitment Process: \n\nRecruiter screening call - 30 Minutes \n\nHiring manager interview - 1 Hour (situational and competency based assessment) \n\nFinal interview - 90 Minutes (presentation & panel discussion) \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to Education and Education jobs that are similar:\n\n
$70,000 — $90,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐ We hire old (and young)\n\n
๐ Please reference you found the job on Remote OK, this helps us get more companies to post here, thanks!
When applying for jobs, you should NEVER have to pay to apply. You should also NEVER have to pay to buy equipment which they then pay you back for later. Also never pay for trainings you have to do. Those are scams! NEVER PAY FOR ANYTHING! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. A good idea is to check the domain name for the site/email and see if it's the actual company's main domain name. Scams in remote work are rampant, be careful! Read more to avoid scams. When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.