Job Details

A company is looking for a Director of IT Security & Compliance, responsible for leading enterprise-wide security compliance and IT audit initiatives.Key ResponsibilitiesLead and manage external certification audit processes and serve as the primary contact for auditorsDefine and lead the enterprise third-party risk management program, assessing vendor risks and ensuring complianceDevelop and implement internal risk assessment processes and manage corrective action plans for audit findingsRequired QualificationsBachelor's degree in Information Security, Information Technology, Accounting, or a related field10+ years of experience in IT security, compliance, IT audit, and/or third-party risk managementStrong experience with SOC 1 / SOC 2, ISO 27001, HITRUST, and IT General Controls (ITGCs)Proven experience managing IT audits and vendor risk assessmentsExperience with GRC platforms and risk scoring methodologies