Information Governance, Risk, and Compliance Sr. Specialist
Trinity Industries is searching for a talented team player to fill the role of Information Governance, Risk and Compliance Sr. Specialist in our Dallas, Texas office.
The Information Governance, Risk, and Compliance (GRC) Sr. Specialist leads one or more primary functions within the Information GRC (IGRC) organization. Reporting into the Sr. Director, IGRC within the Information Risk Management organization this individual is responsible for the day-to-day execution of core IGRC work activities and leading the technical execution of junior analysts to accomplish enterprise objectives in support of legal, regulatory, and information security requirements.
The primary job functions of this role include the facilitation of risk assessments and risk management functions, performance of and reporting on compliance evaluations, the creation and documentation of enterprise policies, processes, and standards, and enterprise document management. The secondary job functions of this role include eDiscovery support and records management support.
Join our team today and be a part of Delivering Goods for the Good of All.
What you will do:
- Perform exception management activities related to enterprise policies and directives
- Perform risk assessment activities in support of vendor due diligence, third party risk management, and IT project operations
- Document, communicate, and consult on enterprise Information Risk Management and data privacy policies, processes, procedures, standards, and requirements
- Provide executive level reporting and summarization of IGRC program
- Establish and maintain enterprise document management systems
- Perform compliance assessments on new and existing systems, technologies, processes, and functions
- Maintain current awareness of present and emerging regulatory concerns and information security trends
- Populate and maintain enterprise information risk register and maturity assessments
- Interface and interact with business leadership to include Legal, Compliance, IT, and Operations
- Work in collaboration with the Cyber Defense Center to assess computer hardware, software, and systems for security risks or violations
- Develop strategies to address security awareness and training across a global enterprise including remote staff and geographically separated locations
What you’ll need:
- 8+ years’ experience in GRC organizations required
- Experience with manufacturing or digital services desired
- CISM, CISA, CISSP, or equivalent certifications highly desired
- Experience with technical editing desired
- Excellent oral and written communication skills
- Experience with multi-national/global enterprises
- Significant experience with three or more of the following:
- NIST CSF
- NIST RMF
- SOX
- GDPR
- HIPAA
- PCI-DSS
- COBIT
- High personal integrity and confidentiality
- High attention to detail
Why Join Trinity?
Trinity Industries offers a comprehensive benefits program. Eligible employees are offered Trinity’s standard company benefits package, which includes paid time off, tuition reimbursement, paid holidays, 401(k) with match and additional retirement contributions, medical, dental, vision, flexible spending accounts, life and disability insurance. Little known fact about Trinity Industries: Once people come to work here, they tend to stay. Trinity is employee-focused and involved in our communities, which is probably why working for Trinity feels more like family than a large corporation. Add in the industry leading industrial products we build, and you can see why our employees are proud to call Trinity home. What legacy will you build?
EEO Employer
EEO/Disabled/Veterans. If you are interested in applying for employment with Trinity and need special assistance or an accommodation to use our website or to apply for a position, please send an e-mail with your request to trinityrecruiting@trin.net. Applicants and employees of Trinity are protected under Federal law from discrimination. Click here to find out more.