Job Title:
Specialist, Governance, Risk and ComplianceJob Description
This role involves managing a Risk Management program with 5-6 years of experience, focusing on internal business and third-party risk mitigation. Responsibilities include monitoring, managing, and auditing risks, establishing training, supporting audits, and driving reviews. The candidate must think creatively, balancing security risks with technical and cost-effective solutions while meeting company and regulatory standards. The role also requires collaboration across teams, delivering risk management training, interpreting contractual requirements, and developing necessary documentation. Effective communication with stakeholders and managing client audits and assessments through a committed methodology are key accountability areas.Requirements:
5 - 6 years’ experience in actively contributing in establishment and Management of a Risk Management program for Internal Business and Third Parties to detect and mitigate risks which would include establishing capability to monitor, manage and audit risks and associated actions, establish training & awareness, driving reviews and supporting internal and external audits.
Ability to think out-of-the-box and maintain balance of security risk Vs solution within the best technical and cost opportunity limits, to meet the company standard, regulatory and the contractual obligations.
Ability to work in a team and develop strong relationship bond with the Business and Cross-Platform teams while always wearing a “ready on the toes” attitude to support the organization at his best efforts.
Ability to achieve positive & successful results for Information Security Risk Management activity, apprising the leadership about the specific risks from their vertical, through direct interaction and tactical influence over stakeholders
Responsibilities:
Drive Information Security Risk Management activity globally for all the business engagements and third parties
Maintain and Improve the risk management frameworks at Concentrix
Work with business teams and support teams to drive Risk Assessments for their respective spans including third parties
Deliver training to teams on Risk Management
Interpret the business contractual requirements (Technology & Information Security) to align Risk Management program
Develop the documents as required or guiding the team responsible in development of the required documentation
Support and manage Internal and External risks
Handle and respond to client audits, reviews and assessments through time-bound and committed methodology
Communicate effectively the risks, vulnerabilities, threats and findings of the assessments and reviews to senior management and relevant stakeholders and co-ordinate and govern the closure, as required
Accountability:
Drive Information Security Risk Management activity globally for all the business engagements and third parties
Maintain and Improve the risk management frameworks at Concentrix
Work with business teams and support teams to drive Risk Assessments for their respective spans including third parties
Deliver training to teams on Risk Management
Interpret the business contractual requirements (Technology & Information Security) to align Risk Management program
Develop the documents as required or guiding the team responsible in development of the required documentation
Support and manage Internal and External risks
Handle and respond to client audits, reviews and assessments through time-bound and committed methodology
Communicate effectively the risks, vulnerabilities, threats and findings of the assessments and reviews to senior management and relevant stakeholders and co-ordinate and govern the closure, as required
Location:
COL Bogota - Oficinas y terrazas deLanguage Requirements:
Time Type:
Full timeIf you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents