Current jobs related to Manager, Technology Governance, Risk and Compliance - Chicago - ShipBob Inc
-
Governance Risk and Compliance Project Coordinator
3 months ago
Chicago, United States TransUnion Risk and Alternative Data Solutions Full timeTransUnion's Job Applicant Privacy Notice Personal Information We Collect Your Privacy Choices What We'll Bring: TransUnion is a global information and insights company which provides solutions that help create economic opportunity, great experiences and personal empowerment for hundreds of millions of people in more than 30 countries. We call this...
-
Chicago, Illinois, United States InRule Technology, Inc. Full timeSenior Security GRC Analyst at InRule Technology, Inc.InRule Technology, a prominent innovator in delivering cutting-edge solutions for diverse industries globally, is seeking a dedicated Senior Security GRC Analyst. This role is essential in advancing our sophisticated AI Decisioning platform, which seamlessly combines declarative logic, non-declarative...
-
Governance Risk and Compliance Specialist
1 month ago
Chicago, Illinois, United States Wipro Full timeAbout Wipro :Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a premier technology services and consulting firm dedicated to creating innovative solutions that meet the complex digital transformation needs of our clients.We utilize our comprehensive portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to...
-
Governance Risk and Compliance Specialist
1 month ago
Chicago, Illinois, United States Wipro Full timeAbout Wipro :Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a prominent technology services and consulting firm dedicated to creating innovative solutions that meet the complex digital transformation needs of our clients.We utilize our comprehensive range of capabilities in consulting, design, engineering, operations, and emerging technologies to...
-
Governance Risk and Compliance Specialist
1 month ago
Chicago, Illinois, United States Wipro Full timeAbout Wipro :Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) stands as a prominent technology services and consulting firm dedicated to crafting innovative solutions that meet the intricate digital transformation requirements of our clients.We harness our extensive array of capabilities in consulting, design, engineering, operations, and emerging...
-
Governance Risk and Compliance Specialist
1 month ago
Chicago, Illinois, United States Wipro Full timeAbout Wipro :Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) stands as a premier technology services and consulting firm dedicated to crafting innovative solutions that meet the intricate digital transformation demands of our clients.We harness our extensive range of capabilities in consulting, design, engineering, operations, and emerging technologies to...
-
Governance Risk and Compliance Analyst
4 weeks ago
Chicago, Illinois, United States Wipro Full timeAbout Wipro :Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a prominent technology services and consulting firm dedicated to crafting innovative solutions that meet clients' intricate digital transformation requirements.We harness our extensive range of capabilities in consulting, design, engineering, operations, and emerging technologies to assist...
-
Senior Director, Risk Management and Compliance
2 weeks ago
Chicago, Illinois, United States Teachers Insurance and Annuity Association Full timeJob SummaryWe are seeking a highly experienced and skilled professional to join our team as a Senior Director, Risk Management and Compliance. This role will be responsible for leading our client services and technology risk management efforts, ensuring the effective identification, assessment, and mitigation of risks that could impact our business.Key...
-
Compliance Governance
3 months ago
Chicago, United States Northern Trust Full timeAbout Northern Trust: Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring...
-
IT Governance and Compliance Lead
1 month ago
Chicago, Illinois, United States Coeur Mining Full timeCoeur Mining: IT Governance, Risk, and Compliance Manager PositionCoeur Mining stands as a prominent entity in the precious metals sector, operating various mines and projects throughout the United States and Canada. With a focus on advancement and innovation, Coeur fosters a vibrant work atmosphere in Chicago, where employees can flourish and advance their...
-
Technology Risk Management Specialist
2 weeks ago
Chicago, Illinois, United States BMO Full timeJob SummaryWe are seeking a highly skilled Technology Risk Analyst to join our team at BMO. As a key member of our risk management team, you will be responsible for overseeing, monitoring, and reporting on information and technology risks for a designated portfolio.Key ResponsibilitiesDevelop and monitor the risk management and governance framework and...
-
Compliance and Governance Expert
4 weeks ago
Chicago, Illinois, United States Wipro Full timeAbout WiproWipro Limited is a leading technology services and consulting company focused on building innovative solutions that address clients' most complex digital transformation needs.We leverage our holistic portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to help clients realize their boldest ambitions...
-
Technology Risk Management Specialist
1 month ago
Chicago, Illinois, United States Early Warning Services Full timeAre you prepared to contribute to a vibrant team at Early Warning Services, a pivotal entity in the U.S. financial landscape for over three decades, recognized for its innovative offerings like Zelle and PazeSM? We collaborate with various institutions to enhance access to financial services and protect transactions for millions of consumers and small...
-
Governance, Risk and Compliance Officer
2 months ago
Chicago, United States Chicago Legal Search, Ltd. Full timeJob DescriptionJob DescriptionFinancial services company has an immediate need for a governance, risk and compliance analyst to join its team. Bachelor’s degree required, preferably in Finance or other business-related concentration, 2-5 years of financial services industry experience, FINRA Series 6 and 62 required; Series 26 preferred. CAMA Certification...
-
Technology Risk Management Specialist
1 month ago
Chicago, Illinois, United States Early Warning Services Full timeAre you prepared to contribute to a vibrant team at Early Warning Services, a pivotal entity in the U.S. financial landscape for over three decades, recognized for innovative offerings like Zelle and PazeSM? We collaborate with a variety of institutions to enhance access to financial services and protect transactions for millions of consumers and small...
-
Technology Risk Management Specialist
1 month ago
Chicago, Illinois, United States Early Warning Services Full timeAre you prepared to contribute to a forward-thinking organization at Early Warning Services, a prominent entity in the U.S. financial landscape for over three decades, recognized for innovative offerings like Zelle and PazeSM? We collaborate with a multitude of institutions to enhance access to financial services and protect transactions for countless...
-
Lead Governance Risk Consultant
3 weeks ago
Chicago, United States CDW Full timeA culture of diverse perspectives. Coworkers who collaborate to go above and beyond. Motivated individuals who lead by example. This is what CDW is about. Our legacy of innovative thinking and vision for customer-centric technology positions us for continued success in our industry-and for you in your career. What you will do: Your role at CDW is of the...
-
Government Sales Professional
4 weeks ago
Chicago, Illinois, United States Origami Risk LLC Full timeAbout the Role:As a Sales Executive - SLED Government, you will be responsible for driving sales strategy and production of new business and client retention in the SLED Government space.This role requires experience and expertise in cultivating relationships and driving new revenue opportunities with SLED Agencies.Key Responsibilities:Accountable for...
-
Senior Director, Risk Management and Compliance
3 weeks ago
Chicago, Illinois, United States Teachers Insurance and Annuity Association Full timeJob SummaryWe are seeking a highly experienced and skilled professional to join our team as a Senior Director, Risk Management and Compliance. This role will be responsible for leading our client services and technology risk management efforts, ensuring the effective identification, assessment, and mitigation of risks that could impact our business.Key...
-
Information Governance Principal
2 weeks ago
Chicago, Illinois, United States Request Technology, LLC Full timePrincipal, Information GovernanceRequest Technology, LLC is seeking a seasoned professional to lead our information governance efforts. As a Principal, Information Governance, you will be responsible for developing and implementing policies, procedures, and controls to ensure the effective management of information across the organization.Key...
Manager, Technology Governance, Risk and Compliance
4 months ago
Manager, Technology Governance, Risk and Compliance
As a member of the ShipBob Team, you will benefit from an environment where everything is achievable. We aim to be a place where you can:
Write Your Career Story . Because we are solving some of the most difficult problems in global commerce, you have the opportunity to write the story that will make your career.
Experience Global Impact and Global Connection.
At ShipBob we benefit from diverse cultures and perspectives in service of the global community.
Grow With An Ownership Mindset.
We believe that great innovation comes from great transparency. We are more resilient and more creative when we have an inclusive and transparent culture where everyone knows our strengths and opportunities.
Location:
Remote in these states: AZ, CA, CO, FL, GA, KS, KY, IA, ID, IL, IN, MA, ME, MI, MN, MO, NC, NH, NJ, NV, NY, OH, OR, PA, RI, SC, SD, TN, TX, VA, VT, WA, WI
Role Description:
The Manager, Tech GRC will be responsible for managing and scaling programs and developing solutions that help ShipBob evaluate, measure, monitor and report on the state of information management and third-party information security risk. This role will partner with key stakeholders such as Legal/Privacy, Procurement and SFN management to ensure information security risks are accurately assessed and contract language appropriately protects ShipBob from information security risks posed by third-party entities. This role will also work with key functional leaders across the enterprise to understand and document information management at ShipBob including as data creation, classification, protection, transmission and retention. This position will report directly to the Director, Tech Governance Risk and Compliance.
The opportunities for you to solve:
Management
Manage assessment intake and oversight to ensure pipeline of assessments is managed in a timely and efficient manner.
Contribute to the team’s continuous improvement efforts by identifying opportunities and owning the development and implementation.
Develop and mature processes for Information Management and Third-Party Risk Management based on industry best practices/generally accepted frameworks/standards.
As the team grows, oversee day-to-day activities of junior team members and consultants.
Risk Assessments and Analysis
Work with business to understand the “what” and “how” of third-party entities/services to accurately categorize, assess level of risk, and scope of assessment. Third parties include ShipBob Partners and entities providing third party services to ShipBob.
Document data flow and classification of data being shared with third party entities/services.
With Legal, identify data retention requirements and ensure appropriate backup obligations are agreed to with third party entities.
Perform timely assessments of third-party controls to identify, document, and communicate key deficiencies to the business and Information Security management.
Coordinate with Information Security Engineers to incorporate technical reviews into overall assessment (as needed).
Coordinate with Legal to incorporate Privacy reviews into overall assessment (as needed).
Report on assessment outcomes, risk level, and associated recommendations to remediate issues.
Support periodic re-assessment activities to ensure third-party adherence to security requirements and to assess evolving risks and current threats.
Findings Management, Reporting and Analytics
Monitor third-party corrective action plans against agreed upon timelines.
Review third-party remediation evidence for closure of findings.
Monitor the effectiveness of the third-party risk assessment process in accordance with agreed metrics and performance measures to drive continuous improvements.
Assist with development and reporting of Key Performance Indicator metrics.
Maintain timely, accurate, and complete third-party inventory and data within the identified system of record.
With Procurement, track and monitor annual spend with third-party vendors to manage budget, identify areas for cost savings and reduce duplication of investment.
Contract Review
Working with Procurement and Legal, review contracts to ensure appropriate data security terms are included to protect ShipBob from data and content security risks.
Provide comments and acceptable alternatives to vendor contract revisions, in alignment with defined guidance.
Stay abreast of existing and upcoming regulatory legislation and oversight requirements to assess potential impacts to the ShipBob Third-Party Risk Management program.
What you’ll bring to the table:
Security+, CISSP, CISA, CISM, CRISC or related certifications strongly preferred but equivalent knowledge will be considered.
6+ years working in information security and/or third-party risk management, with experience in a technical setting.
3+ years’ experience with understanding and assessing third-party information security/technical risks and controls.
Experience in performing data security contract reviews.
Knowledge of controls frameworks and industry standard frameworks (NIST CSF, SSAE 18/SOC, ISO27001, etc.)
Solid knowledge in areas such as cloud
security, network security, application security and vulnerability management.
Comfortable working in a highly iterative environment and experience with continuous improvement initiatives.
Excellent verbal and written communication skills to effectively collaborate with internal and external stakeholders including Privacy, Legal, Procurement, and the business.
Able to assess risk and translate it to business relevant considerations and facts.
Demonstrate pride in work, showing focus and a sense of urgency to reach goals on time.
Detail-oriented individual with organizational, critical thinking, analytical, and problem-solving skills; able to maintain a balance between the details and the larger picture.
Able to learn and apply new concepts quickly and to proactively enhance personal, professional, and business growth through new knowledge and experiences.
Able to independently and effectively handle multiple competing priorities and make good use of resources (e.g. time, people, money).
Demonstrated ability to be proactive, take ownership of and solve problems.
Strong leadership, project, and team-building skills, including the ability to lead cross-functional teams and drive projects and initiatives.
We recognize that people come with a wealth of experience and talent beyond just the technical requirements of a job. If your experience is close to what you see listed here, please still consider applying. Diversity of experience and skills combined with passion is a key to innovation and excellence; therefore, we encourage people from all backgrounds to apply to our positions.
About You:
At ShipBob, we’re looking to bring on board people who embody our core values:
Be
Mission-Driven.
We want team members that are passionate about helping entrepreneurs improve their business, and bring that passion every day.
Be
Humble . We have ambitious goals, and our team members understand that success or failure depends on us working together and leaving egos at the door.
Be
Resilient.
Logistics is a complicated business. So is software. We value team members that never give up and keep iterating until a problem is solved.
Be a
Creative Problem Solver.
As a startup, we value smart, innovative solutions to complex problems. We fall in love with the problem, not our “favorite” solution.
Be Safety Minded.
It’s not just talk; it’s the way you work.
About Us:
ShipBob is a cloud-based logistics platform that partners with thousands of e-commerce businesses to help make their entrepreneurial dreams a reality. We offer a full suite of fulfillment solutions for our merchants, including the ability to improve their transit times, shipping costs and deliver a best in class experience to their customers.
As one of the fastest growing tech companies in Chicago backed by blue-chip investors like Menlo Ventures, Bain Capital Ventures, Hyde Park Venture Partners and SoftBank Vision Fund 2, our goal is to continue to be the best fulfillment technology in the industry.
ShipBob provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr
