Gilder Search Group
Cybersecurity GRC Lead
Gilder Search Group, Atlanta, Georgia, United States, 30383
We have an immediate need for a Cybersecurity GRC Lead for a contract to hire position located in Atlanta, GA. In this position, you will assist with TISAX automotive audit interviews in NE, NA, NNA, Gap assessment remediation, and work closely with business, regional lead, and quality lead for audit evidence.Responsibilities:
Actively participate in TISAX audits with external auditors.Ensure SEC Cybersecurity Disclosure Compliance.Track incidents that are in scope for SEC.Administer SEC PowerApp and ensure P1 and P2 incidents are tracked, monitored, documented, key parties are notified, and incidents are closed in the PowerApp tool.Kickoff and maintain SEC Materiality Checklist and SEC Compliance Monitoring.Update SEC workflows and Incident Response Plans based on any new SEC cybersecurity disclosure mandates.Conduct EU Artificial Intelligence (AI) Act Compliance Activities, including AI inventory/catalog and AI Risk Assessment.Manage AI Governance work and other governance, risk, compliance activities, aligning AI RMF to NIST CSF Framework.Oversee organization-wide Security Awareness Program, including phishing simulations, computer-based training, proactive communications on latest threats, workshops, and newsletters.Collaborate with the Cybersecurity GRC team and communications to build programs and initiatives that promote a security mindset in the organization.Work with our vendor for GRC tool implementation.Assist with Internal Audits, remediate findings, and work closely with key business stakeholders.Participate actively in Incident Response Tabletop exercises and update with lessons learned.Perform cybersecurity risk assessments (NIST CSF) and control assessments to ensure systems and applications (on-prem and in the cloud) comply with the Company's policies, applicable regulatory and legal requirements, and leading industry practices.Update Business Impact Analysis (BIAs) plans to determine Cybersecurity key systems to assess.Mature the Cybersecurity Risk Management Program by managing the cybersecurity risk register, issue management, and ensuring appropriate risk management strategies are in place.
#J-18808-Ljbffr
Actively participate in TISAX audits with external auditors.Ensure SEC Cybersecurity Disclosure Compliance.Track incidents that are in scope for SEC.Administer SEC PowerApp and ensure P1 and P2 incidents are tracked, monitored, documented, key parties are notified, and incidents are closed in the PowerApp tool.Kickoff and maintain SEC Materiality Checklist and SEC Compliance Monitoring.Update SEC workflows and Incident Response Plans based on any new SEC cybersecurity disclosure mandates.Conduct EU Artificial Intelligence (AI) Act Compliance Activities, including AI inventory/catalog and AI Risk Assessment.Manage AI Governance work and other governance, risk, compliance activities, aligning AI RMF to NIST CSF Framework.Oversee organization-wide Security Awareness Program, including phishing simulations, computer-based training, proactive communications on latest threats, workshops, and newsletters.Collaborate with the Cybersecurity GRC team and communications to build programs and initiatives that promote a security mindset in the organization.Work with our vendor for GRC tool implementation.Assist with Internal Audits, remediate findings, and work closely with key business stakeholders.Participate actively in Incident Response Tabletop exercises and update with lessons learned.Perform cybersecurity risk assessments (NIST CSF) and control assessments to ensure systems and applications (on-prem and in the cloud) comply with the Company's policies, applicable regulatory and legal requirements, and leading industry practices.Update Business Impact Analysis (BIAs) plans to determine Cybersecurity key systems to assess.Mature the Cybersecurity Risk Management Program by managing the cybersecurity risk register, issue management, and ensuring appropriate risk management strategies are in place.
#J-18808-Ljbffr