Vertical HR Description • Identify assess and prioritize risks that could impact SARCs objectives including operational financial and reputational risks. • Develop and implement risk mitigation strategies and controls to minimize risk exposure. • Monitor compliance with applicable laws regulations and policies • Investigate and resolve compliance issues • Stay up-to-date on GRC & Privacy trends and developments • Work closely with other departments to ensure a comprehensive approach to GRC • Prepare reports on GRC activities and compliance status • Ensure SARCs compliance with all relevant laws regulations and industry standards including data protection export control and labor laws. • Foster collaboration and cross functional partnerships to spread GRC awareness and participation • Coordinate and facilitate internal and external audits ensuring that SARC is prepared and responsive to audit requirements. • Develop and implement audit plans risk assessments and control evaluations. Requirements • Bachelors degree in business law security or a related field • 5 years of experience in GRC or a related field • Experience with GRC software and tools such as RSA Archer BitSight or similar platforms • Strong understanding of GRC principles and best practices • Understanding of compliance with SOC2 ISO27001 GDPR SOX NIST CSF • Excellent analytical and problem-solving skills • Ability to work independently and as part of a team • Excellent communication and presentation skills • Strong attention to detail and accuracy