Director, Governance, Risk and Compliance
2 weeks ago
Position Summary
The Director of Governance, Risk & Compliance will report to the Chief Information Security Officer and will lead the Governance, Risk & Compliance workstream on the Information Security team. This role is responsible for enhancing and expanding Ryan Specialty’s GRC portfolio to improve the company’s overall security and compliance posture. The ideal candidate will have detailed working knowledge of security technologies and leading practices, and familiarity in leading a team in maintaining compliance for a regulated business environment. This role will be responsible for leading all information security compliance efforts, working with relevant internal teams to ensure that all compliance obligations are understood, all relevant processes are fully established, and compliance is continuously tracked, measured, and reported on. Additionally, this role will lead the continuing maturation of Ryan Specialty’s cyber risk management efforts, consisting of internal risk management and external Third-Party risk management programs.
Candidates for this role must be collaborative in nature, acting as a true enabler of the business and partner to technology and other departmental leaders and teams, able to drive security outcomes through influence and partnership. Additionally, candidates must have an ability to seamlessly move from deep, detailed conversations to executive level briefings that explain challenging compliance, risk, and technical concepts succinctly.
Essential Functions
Lead, in partnership with CISO, the Cyber Governance, Risk and Compliance program, including articulating cyber risks in a business context, their impacts, and recommending mitigation
Collaborate with the VP of IT Risk Management to manage Information Security risks, including maintaining a risk register, assisting with self-assessments, and contributing to risk management strategies and processes
Create, maintain and continuously mature information security policies, standards, and controls; work with senior leaders to ensure that any impacts and associated work to remain compliant is included in Product and Technology roadmaps.
Implement and oversee procedures and controls to assure compliance with applicable regulatory, legal, and contractual requirements
Continue to mature the third party risk management process
Support the business, procurement and legal teams regarding security requirements, including review of contractual elements pertaining to security, completing questionnaires, meeting with auditors, etc.
Collaborate with regulatory compliance on the privacy program
Participate in or lead security efforts related to M&A, including due diligence assessments and post-acquisition activities to fully integrate acquired entity into all security controls and processes
In conjunction with IT Risk Management, oversee the remediation of information security related findings identified by Internal Audit, IT Risk, and Third Party Risk Assessments
Own the security awareness training program, including selection of courses, phishing campaigns, awareness campaigns and reporting
Provide reporting and metrics to senior leadership
Work within and across teams on cross functional projects
If required, provide leadership for incident response activities
Education/Experience/Skills
8+ years of cross-discipline Information Security/Information Technology experience
5+ years of leading a GRC function
Experience applying security frameworks such as NIST CSF, CIS, etc. for self-assessments and working with auditors
Subject matter expertise in developing and executing company-wide program, policies, procedure, and controls
The ability to translate modern security technology practices (e.g., passwordless, CI/CD, encryption, etc.) to the language of auditors
Understanding of the risks in cloud-native and on premise architectures
Compliance and audit strategies for cloud environments (IaaS, SaaS, etc.)
Excellent executive presentation and communication skills
Ability to lead through influence, including at executive levels
Strong critical thinking skills with ability to challenge normal operations
Experience working in a team-oriented, collaborative environment
Completion of prior successful external audits, such as SOC 2, SOX, HIPAA
Prior experience automating compliance controls
Certification showing expertise in audit or risk management (e.g., CISA, CISM, CRISC)
Insurance and/or financial services background is beneficial, but not required
Disclaimer
Ryan Specialty is an Equal Opportunity Employer.
#J-18808-Ljbffr
-
Director - Compliance Solutions
5 days ago
Chicago, United States Waystone Governance Ltd. Full timeJob DescriptionJob DescriptionSalary: For over 20 years, Waystone has been at the cutting edge of specialist services for the asset management industry – partnering with institutional investors, investment funds and asset managers. We work with our clients to help build, support, and protect investment structures and strategies worldwide. Our success...
-
Director - Compliance Solutions
2 weeks ago
Chicago, United States Waystone Governance Ltd. Full timeJob DescriptionJob DescriptionSalary: For over 20 years, Waystone has been at the cutting edge of specialist services for the asset management industry – partnering with institutional investors, investment funds and asset managers. We work with our clients to help build, support, and protect investment structures and strategies worldwide. Our success...
-
Executive Director
5 days ago
Chicago, United States Waystone Governance Ltd. Full timeJob DescriptionJob DescriptionSalary: For over 20 years, Waystone has been at the cutting edge of specialist services for the asset management industry – partnering with institutional investors, investment funds and asset managers. We work with our clients to help build, support, and protect investment structures and strategies worldwide. Our success...
-
Executive Director
2 weeks ago
Chicago, United States Waystone Governance Ltd. Full timeJob DescriptionJob DescriptionSalary: For over 20 years, Waystone has been at the cutting edge of specialist services for the asset management industry – partnering with institutional investors, investment funds and asset managers. We work with our clients to help build, support, and protect investment structures and strategies worldwide. Our success...
-
Chicago, United States Cyber Crime Full timeCybersecurity Consultant- Governance, Risk, and Compliance team EY EY provides consulting, assurance, tax and transaction services that help solve our client’s toughest challenges and build a better working world for all. View company page EY Israel’s Advanced Security Center (ASC) provides a broad range of cybersecurity services to cross-industry...
-
Control Manager, Exams, Issues,
1 week ago
Chicago, United States JPMorgan Chase & Co. Full timeJob Description: The Client Onboarding & Documentation (CO&D) organization is seeking a highly talented, seasoned Executive Director, to lead three key functional pillars of the CO&D Global Controls Team. The Executive Director will be responsible for leading Global Exam Management, Issue Management, and Advisory & Governance. Job...
-
Crypto Director of Risk and Compliance
1 day ago
Chicago, United States Crypto Recruiters Full timeHybrid in West Loop : Crypto Risk Director This is a hands-on, high-impact role that requires experience in risk management, specifically in the fintech and payments industry. The Crypto Risk Director will be responsible for the development and ongoing maintenance of a company-wide risk strategy that accommodates the operational, legal, market, credit,...
-
Crypto Director of Risk and Compliance
6 days ago
Chicago, United States Crypto Recruiters Full timeHybrid in West Loop : Crypto Risk Director This is a hands-on, high-impact role that requires experience in risk management, specifically in the fintech and payments industry. The Crypto Risk Director will be responsible for the development and ongoing maintenance of a company-wide risk strategy that accommodates the operational, legal, market, credit,...
-
Senior Compliance Analyst- Governance, Risk
7 days ago
Chicago, United States The Federal Home Loan Bank of Chicago Full timeManaging core Compliance processes, while modernization and streamlining procedures leveraging our core GRC tool Riskonnect. Lead critical meetings and projects to ensure the Federal Home Loan Bank of Chicago is meeting regulatory obligations. Lead l Compliance, Compliance Analyst, Risk, Analyst, Senior, Accounting, Banking
-
Senior Analyst, Governance Risk and Compliance
18 hours ago
Chicago, United States GoHealth Full timeGoHealth Intro: As a leading health insurance marketplace, Go Healths mission is to improve access to healthcare in America. For customers, enrolling in a health insurance plan is confusing and difficult, and seemingly small differences between plan Senior Analyst, Risk, Compliance, Analyst, Health, Evaluation
-
Manager IT Risk Management
3 weeks ago
Chicago, United States Insight Global Full timeThe Manager - IT Risk Management leads the team responsible for identifying, measuring, reporting, and treating IT and cybersecurity risks both internally and externally with partners, vendors, and customers. This position will work across a diverse landscape, its customers, and 3rd parties to mature and operationalize global IT risk management capabilities....
-
General Counsel
6 days ago
Chicago, United States Origami Risk LLC Full timeOverview: The General Counsel is a valued member of Origami’s executive team. The General Counsel provides strategic legal advice and strategies across a wide range of matters encompassing all functions of a fast-growing technology business, including general corporate, corporate governance, commercial contracts, data privacy and security, intellectual...
-
Director of Compliance
2 weeks ago
Chicago, United States Coinflow Labs Full timeCoinflow, a Chicago-based fintech startup, is poised to disrupt the payment solutions industry by accelerating money movement. Our work environment is straightforward: you're here to grow your career and solve tough challenges at scale. We value collaboration and give you the support and autonomy you need to succeed. Our team is all about getting innovative,...
-
Director of Compliance
2 weeks ago
Chicago, United States Coinflow Labs Full timeCoinflow, a Chicago-based fintech startup, is poised to disrupt the payment solutions industry by accelerating money movement. Our work environment is straightforward: you're here to grow your career and solve tough challenges at scale. We value collaboration and give you the support and autonomy you need to succeed. Our team is all about getting innovative,...
-
Director of Compliance
2 weeks ago
Chicago, United States Coinflow Labs Full timeCoinflow, a Chicago-based fintech startup, is poised to disrupt the payment solutions industry by accelerating money movement. Our work environment is straightforward: you're here to grow your career and solve tough challenges at scale. We value collaboration and give you the support and autonomy you need to succeed. Our team is all about getting innovative,...
-
Compliance Risk Manager
4 days ago
Chicago, United States CIBC Bank USA Full timeThe Compliance Risk Manager will be responsible for the execution and maintenance of programs within the Regulatory Compliance Management (RCM) framework for CIBC Bank USA. Primary programs within the framework include risk assessments, issues manage Risk, Manager, Compliance, Compliance Officer, Business, Management, Accounting
-
Director of Security Compliance
2 weeks ago
Chicago, United States Burns & McDonnell Full timeDescription 1898 & Co. is looking for its next leader within the Security & Risk Consulting group focused on helping our clients secure their operational technology and assets. The Director of Security Compliance within the Industrial Cybersecurity Consulting group will lead the group of Governance and Compliance Consultants that provide consulting service...
-
Director, Enterprise Risk Management
3 weeks ago
Chicago, Illinois, United States Adtalem Global Education Full timeJob Description Opportunity at a Glance The Director of Enterprise Risk Management is responsible for the leadership, innovation, governance, and management processes necessary to identify, evaluate, treat, and monitor the company's operational, strategic, transformational, and high-impact event risks across the organization. In addition, this individual...
-
Chicago, United States The Federal Home Loan Bank of Chicago Full timeExecute the day-to-day processes to keep our bank in compliance with regulatory requirements. Provide feedback and engage partners to Improve and streamline processes to make our bank more efficient. Support learning projects that improve Compliance Compliance, Compliance Analyst, Risk, Management, Analyst, Accounting, Banking
-
Director of Risk Management
2 weeks ago
Chicago, United States LaSalle Network Full timeLaSalle Network has partnered with a leading light industrial manufacturing company based in Oak Brook, IL. They are looking for a Director of Risk Management who is dedicated to fostering a safe and healthy work environment while effectively managing workers' compensation claims and mitigating risks. Overseeing a team of 2, they are seeking an experienced...