Director, Cybersecurity Policy, Risk & Compliance

• Permanent Position
• Opportunity to work with a dynamic, industry-leading company
• Up to $19,000 + Bonus + comprehensive Benefits package

• Lead the development and lifecycle management of cybersecurity and technology risk policies, standards, and control libraries across a multi-entity public sector ecosystem.
• Engage with senior-level stakeholders to contextualize and align policies with operational realities.
• Oversee control design and attestation processes, ensuring robust compliance tracking and deviation management.
• Drive policy awareness and risk culture initiatives through education campaigns, self-assessment programs, and governance innovation.
• Analyze evolving risks and proactively update frameworks to reflect new technologies, threats, and regulatory shifts.
• Build strong relationships across CIO, CISO, and governance functions in both central and decentralized environments.
• Lead and manage a high-performing team of governance professionals.

• Min 15 years of experience in cybersecurity, risk and compliance within large enterprises or public sector environments.
• Deep familiarity with IM8, NIST CSF, COBIT, ISO27001, or equivalent frameworks.
• Proven ability to translate policy into actionable control programs across diverse stakeholder groups.
• Strong domain knowledge in cybersecurity governance, technology risk, and regulatory alignment.
• Recognized certifications such as CISSP, CISA, CRISC, CGEIT, or equivalent.
• Exceptional leadership and stakeholder management skills, comfortable with influencing across matrixed, senior-level environments.

Careerally