Massachusetts Information Technology Jobs

Search for Jobs in Information Technology
MassHire JobQuest Logo

Job Information

Kforce Governance Lead - Privacy, Risk and Governance in Cambridge, Massachusetts

Kforce has a client in search of a Governance Lead-Privacy, Risk and Governance in Cambridge, MA.Key Responsibilities:

  • Develop and execute an enterprise-wide governance strategy and roadmap that mitigates cyber and regulatory compliance risk through the right balance of controls, employee training, monitoring and testing

  • Build out and maintain current governance tools and processes within information security in ServiceNow GRC to provide visibility and transparency

  • Advance ServiceNow GRC maturity and use against defined goals

  • Facilitate documentation and maintenance of IT security controls and relevant processes

  • Directly responsible for enhancing governance framework of IT security policies, procedures and controls to assure compliance with applicable regulatory, legal and audit requirements as well as good business practices

  • Collaborate with IT leadership, control owners and business partners to ensure effective internal cyber security controls are implemented and maintained

  • Lead effective organizational change management initiative to introduce new controls and processes to the organization, including training and awareness as appropriate

  • Develop and maintain collaborative relationships with IT business partners, IT leadership and Internal Audit stakeholders

  • Support Compliance - participate in the development, implementation and ongoing compliance monitoring for the programs and regulations with which Biogen is obligated to comply; examples include SOX, Privacy (GDPR, CCPA), GxP

The successful candidate will demonstrate the following qualities:

  • Direct experience building, maintaining and operationalizing a the NIST governance framework and optimization of that framework in a GRC tool (e.g. ServiceNow)

  • A minimum of eight years of related work experience in IT compliance, audit, or enterprise risk management and governance with required knowledge, skills, and abilities

Technical aptitude and understanding of IT systems and their connection to data collection and processing:

  • Experience with most of these major technologies: Solaris, Linux, Unix, Windows servers, Oracle, Microsoft SQL server, ServiceNow

  • Familiarity with Identity and Access Management tools, Active Directory and Single Sign-On concepts

  • Experience with automated monitoring tools for firewalls, baselines, log monitoring and other automated computer security processes

  • Experience with auditing/analyzing both internally supported and vendor-supported software

  • Keenly developed business partnering and collaboration skills, adept at establishing and sustaining effective working relationships, both within and between departments

  • Ability to operate effectively in a matrixed environment: Building and managing peer and management-level relationships through achievement of results, accountable to schedule, and allocation of resources and meeting customer needs

  • Solution and results oriented; Strong analytical and problem-solving skills

  • Proven ability to be an effective senior leader to a diverse team of employees and contractors; motivating and unifying a team to achieve common goals

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.Compensation Type:Hours