Governance, Risk & Compliance (GRC) Experts

Governance, Risk & Compliance (GRC) Experts

Phoenix, AZ

Contract

Job Summary :

We are seeking a dedicated and detail-oriented professional to join our team as a Governance, Risk & Compliance (GRC) [Title]. In this role, you will be responsible for supporting the development, implementation, and maintenance of our GRC framework. This includes ensuring compliance with regulatory requirements, managing risk assessments, and supporting internal audits and policy development.

Key Responsibilities :

Develop, implement, and maintain GRC frameworks, policies, and procedures.

Conduct risk assessments and ensure mitigation plans are implemented.

Monitor compliance with applicable regulations (e.g., SOX, GDPR, HIPAA, ISO 27001, etc.).

Facilitate internal and external audits; coordinate responses to audit findings.

Work with internal teams to ensure understanding and integration of GRC practices.

Track, analyze, and report on risk and compliance metrics.

Maintain a risk register and support incident response activities.

Advise on regulatory changes and emerging risks that may impact operations.

Develop and deliver training and awareness programs on GRC topics.

Collaborate with IT, legal, finance, and operations to support a culture of compliance and risk-awareness.

Qualifications :

Bachelor's degree in Business, Information Security, Law, Risk Management, or related field.

10years of experience in GRC, compliance, risk management, or audit.

Strong understanding of regulatory frameworks (e.g., ISO 27001, NIST, COSO, COBIT).

Experience with GRC tools (e.g., RSA Archer, MetricStream, ServiceNow GRC).

Excellent communication, analytical, and organizational skills.

Relevant certifications preferred (e.g., CISA, CRISC, CGEIT, CISSP, ISO Lead Implementer / Auditor).