GRC and AI Governance - Senior Manager at CFGI

📋 Description

• Lead end-to-end GRC and privacy engagements with scoping to executive reporting.
• Design and operationalize cybersecurity governance models (policies, standards, KPIs/KRIs).
• Build and mature enterprise risk programs: risk assessments, risk registers, controls libraries, testing approaches.
• Lead AI governance engagements — AI governance frameworks, risk/impact assessments, model inventories, use-case classification, EU AI Act, NIST AI RMF, ISO 42001.
• Develop security policies and standards aligned to NIST/ISO/SOC 2/CMMC/FedRAMP.
• Stand up privacy programs: data mapping, DPIAs/PIAs, DSAR, retention, consent management, privacy by design.