Who We Are
Artmac Soft is a technology consulting and service-oriented IT company dedicated to providing innovative technology solutions and services to customers.
Job Description
Job Title : Cybersecurity GRC Architect
Job Type : W2
Experience : 10-20 Years
Location : New York City , NY
Job Overview
We are looking for an experienced
Cybersecurity GRC Manager/Director to lead and improve our cybersecurity efforts. This role will ensure our cybersecurity program aligns with business goals, meets industry standards, and follows regulatory requirements. You will be responsible for managing risk, developing security policies, and overseeing our organization's cybersecurity strategy.
Key Responsibilities - Security Strategy Development
- Review and update our cybersecurity strategy to align with business goals and standards like ISO 27001 and NIST CSF 2.0.
- Work with teams to develop and improve cybersecurity programs and resources.
- Governance and Reporting
- Create metrics to measure our cybersecurity performance and risk management.
- Report regularly to the executive team and board on the security status and risks.
- Risk Management
- Develop and improve our approach to managing cybersecurity risks.
- Integrate threat intelligence and ensure we follow all compliance requirements.
- Incident Response
- Review and improve our incident response plan to ensure it's aligned with business needs.
- Lead response efforts in case of cybersecurity incidents.
- Policy Development and Compliance
- Help improve security policies (e.g., Data Governance, Vulnerability Management).
- Ensure compliance with industry standards and regulations.
- Cybersecurity Posture Assessment
- Lead assessments of our cybersecurity practices using the NIST Cybersecurity Framework (CSF) 2.0.
- Identify gaps and develop action plans to improve our security.
- Continuous Improvement
- Work on improving our cybersecurity efforts based on feedback, assessments, and new threats.
- Stay updated with emerging cybersecurity trends and technologies.
- Collaboration and Leadership
- Lead and mentor cybersecurity teams.
- Work with other departments to ensure cybersecurity is part of everything we do.
Qualifications - Education: Bachelor's degree in Cybersecurity, IT, or a related field. Advanced certifications (e.g., CISSP, CISM, ISO 27001) are a plus.
- Experience:
- 10-15 years of experience in cybersecurity or risk management.
- Strong experience in creating and managing security strategies and risk management frameworks.
- Familiar with NIST CSF 2.0, ISO 27001, and other compliance standards.
- Technical Skills:
- Knowledge of cloud security, data governance, and third-party risk management.
- Familiarity with tools for managing risk, cybersecurity governance, and reporting.
Skills And Traits
- Excellent at communicating with both technical and non-technical teams.
- Strong leadership and mentoring skills.
- Able to handle multiple tasks and priorities.
- Ethical, with a strong sense of integrity.
Education
- Bachelor's degree or equivalent combination of education and experience.
