Hybrid IT Risk & Governance Lead (GRC)

The IT Risk and Governance Specialist is responsible for the development, implementation, and ongoing oversight of IT governance programs. This role ensures the effectiveness of the IT governance framework and the continuous evaluation of IT’s internal control environment.

This role requires 3 days onsite hybrid in Downtown Chicago each week

Key Responsibilities

• Oversee the design, implementation, and continuous improvement of IT governance programs and internal control frameworks
• Perform comprehensive gap analyses between existing controls and regulatory requirements, mapping IT processes to industry standards
• Develop advanced dashboards and analytical reports that demonstrate control adherence and identify strategic improvement opportunities
• Define and evolve key performance indicators (KPIs), key risk indicators (KRIs), and advanced metrics supporting IT leadership decision-making
• Serve as a trusted advisor to IT, compliance, audit, and business stakeholders on control-related matters

Qualifications

• Strong analytical, data analysis, and reporting capabilities
• Ability to operate effectively across multiple levels of management, including executive leadership
• GRC experience
• Working knowledge of IT governance frameworks and industry standards such as: ITIL, COBIT, NIST Cybersecurity Framework (CSF)