Executive – Risk & Compliance

Job Description Summary

This position is focused on leading cyber risk management, governance, and compliance for the GE enterprise to deliver better outcomes for GE at scale. Cyber Technology and Risk is at the heart of this change, re-defining our products and building, developing, and enhancing our teams to deliver and support these critical products for GE. The VP-Cyber Security is accountable for the company’s enterprise wide cyber governance, cyber risk management, compliance, and regulatory efforts.

Job Description

Essential Responsibilities:

  • Establish, maintain, and improve enterprise risk management processes in alignment with business cyber risk teams, corporate ERM, Internal audit and compliance.
  • Lead and coordinate enterprise wide compliance activities to include audit readiness, audit coordination, key findings management, and issue management resolution
  • Oversee execution of cyber security processes for mergers, acquisition, and divestiture activities in alignment with the global business development team.
  • Support the design, implementation, monitoring and continuous improvements of GE cybersecurity governance practices to include Policy development, deployment, risk councils.
  • Develop, document, and assess measures, metrics, and internal controls related to cyber security assessments, policies and acceptance while driving accountability with GE businesses to ensure policy compliance.
  • Prepare relevant reports for critical governance forums to include GE senior leadership reviews, critical leadership councils and the GE board.
  • Provide GE business support to aid in global regulatory and privacy matters that are cross-functional (GDPR, Privacy, China Cyber law).
  • Oversee Enterprise-wide Security Awareness program in alignment with the businesses and corporate communications.
  • Execute team management activities focused on employee recruiting, development, performance management, compensation, and leadership.
  • Assess, define, and execute talent transformation plan focusing on technical talent growth, insourcing critical skillsets, talent recruitment, alignment, and growth.
  • Execute organizational oversight, aligning team for successful delivery and partnership with security and business leaders

Basic Qualifications {# of years cannot be edited]

  • Bachelor’s Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) and Minimum 12 years of professional experience.
  • Five+ years of relevant experience in implementing, managing, reviewing, and improving internal controls for governance, compliance and quality, IT audits, or assurance and risk management programs
  • Demonstrated ability to work with and report to a governance board (i.e. executive committee or similar)
  • Highly proficient in audit and/or risk management methodologies, especially but not limited to those applicable in IT environments
  • Highly skilled in designing and implementing compliance and control frameworks including business process reengineering
  • Proficient in IT governance and quality standards
  • Experience writing high quality documentation and reports
  • Demonstrated ability to work in multicultural and diverse environments

Desired Characteristics

  • IT governance and/or risk management certification
  • Experience with legal and regulatory compliance standards such as SOX, GDPR, Privacy regulatory etc.
  • Familiarity with ISMS and security frameworks, particularly NIST Cybersecurity Framework and ISO standards.
  • Experience with IT governance, risk, and compliance management in a large global environment.
  • Track record of performing internal or external audits (financial/operational/IT) in accordance with relevant professional standards
  • Familiarity with Lean principles, tool and methodologies while having some experience in integrating lean management concepts to meet your organization priorities and objectives.
  • Experience in business process and control optimization, preferably within an IT organization
  • Strong program management skills. Ability to manage complex transformation plans across internal and external teams, delivering expected results, while leading the identification and mitigation of business and technical risks.
  • Strong written and verbal communication and presentation skills, and ability to work with all levels of the organization.
  • Ability to communicate technical and security-related concepts to a broad range of technical and non-technical staff, security vendors, consultants and senior management.
  • Ability to excel in a fast paced and rapidly changing environment. Ability to lead through influence

Eligibility Requirements

  • Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job

Additional Information

GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.

GE will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).

Relocation Assistance Provided: No

More Information

Apply for this job

Leave your thoughts

Share this job