Cyber Governance – Risk – & Compliance – GRC – Associate
| Company | HarbourVest |
|---|---|
| Location | Boston, MA, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | |
| Experience Level | Junior |
Requirements
- Demonstrable experience in the financial services industry, with an understanding of specific security challenges and regulatory requirements.
- The ability to support the development and implementation of robust cybersecurity policies and procedures that align with industry best practices and regulatory requirements.
- Strong communication skills to effectively convey cybersecurity concepts to both technical and non-technical stakeholders.
- A proactive approach to staying current with the latest cybersecurity trends and threats, ensuring the organization remains well-protected.
- The ability to build and maintain strong relationships with internal business partners of all levels.
- Certified Governance Risk & Compliance (CGRC) status required within 1 year of employment.
Responsibilities
- Drive and own the development and maintenance of cybersecurity policies, standards, and procedures to ensure compliance with industry regulations and best practices.
- Lead cyber regular risk assessments and audits to identify potential threats and vulnerabilities, as well as help develop mitigation strategies.
- Assist CISO in preparing quarterly board reports.
- Partner with Deputy CISO and Security Operations team to ensure policies and procedures remain relevant and effective as regulatory/threat landscapes evolve.
- Act as key point person to liaise global partners in Legal, Compliance, Vendor Management and Enterprise Risk teams to support the integration of cybersecurity initiatives across the organization.
- Monitor and report on the effectiveness of the cybersecurity program, including key performance indicators and metrics.
- Stay informed about the latest cybersecurity trends, threats, and regulatory requirements, and provide support in implementing relevant updates.
- Assist in managing relationships with external cyber auditors, and the Internal Compliance team to ensure adherence to laws and regulations across the globe.
Preferred Qualifications
- Passionate about results, goal driven, outspoken, accountable, and collaborative.
- Able to drive business decisions using data and comfortable reporting on metrics.
- Familiar working at a company with a global presence spanning multiple time zones.
- Demonstrates a strong commitment to ethical practices and maintaining the highest standards of honesty and transparency.
- Self-starter with demonstrable ability to work independently, think on their feet and prioritize tasks and time effectively.
- Takes the initiative to identify and address potential issues before they become significant problems.
- Is an exceptional communicator, both written and verbally.