Director / Lead Cybersecurity Compliance (SME)
Responsibilities & Duties
Job Summary:
As the Director or Lead Cybersecurity Compliance Specialist, you will own the compliance vision and strategy. You will provide subject matter expertise on global regulations, lead governance initiatives, and interface with regulators, auditors, and executive leadership.
Key Responsibilities:
-
Define and drive the organization’s cybersecurity compliance strategy.
-
Ensure enterprise-wide adherence to applicable frameworks and laws (e.g., ISO, NIST, GDPR, CCPA, SOX, HIPAA).
-
Oversee complex audits, regulatory reviews, and due diligence activities.
-
Lead development of enterprise-wide policies and GRC frameworks.
-
Advise senior leadership on risk exposure and regulatory impact.
-
Coach internal teams, lead training programs, and influence culture.
-
Represent the organization in external forums, regulatory bodies, and industry associations.
Qualifications:
-
10+ years of experience in cybersecurity compliance, audit, or regulatory affairs.
-
Deep understanding of national and global data privacy and cybersecurity laws.
-
Proven leadership of enterprise-level compliance or GRC programs.
-
Strong track record in audit management and stakeholder engagement.
-
Certifications: CISA, CISM, CISSP, CGEIT, ISO Lead Auditor (any combination).
-
Experience in regulated industries (finance, healthcare, government) preferred.
-
Excellent strategic thinking, board-level reporting, and negotiation skills.
