IT Security Director, GRC Strategy, Platforms & Architecture Lead, jobs in United States
cer-icon
Apply on Employer Site
company-logo

Wolters Kluwer · 1 day ago

IT Security Director, GRC Strategy, Platforms & Architecture Lead,

positionAustin, TX
timeFull-time
remoteHybrid
seniorityLead/Staff, Director/Executive
money$150K/yr - $269K/yr
date12+ years exp

Wolters Kluwer is seeking an IT Security Director and GRC Strategy, Platforms & Architecture Lead who will be responsible for the strategic direction, governance, and operational oversight of the organization’s GRC platforms. The role involves driving the overall GRC strategy, ensuring integration of cyber governance, controls, compliance, and risk operations through technology and collaboration with various stakeholders.

BankingFinanceInformation ServicesInformation TechnologyLegalMobilePublishingSoftware
check
H1B Sponsor Likelynote

Responsibilities

Understand and drive strategy across security governance, controls, compliance and risk operations to build scalable, functional, and timely solutions, that enable scalable processes, high quality outcomes, and enhanced risk management across the Company
Accountable for executive level reporting, communications, and influence to ensure that security Governance and IT risk operations platforms, architecture, and processes are enabled, integrated with, leveraged and decisions / outcomes are in line with Cybersecurity & Technology Controls (CTC) principles. Strong influence and communication skills are mandatory, and the leader must be able to manage a small team of contractors and employees spanning engineering and platform roles
Act as a seasoned expert and advisor to other CTC leaders in Controls, Risk Operations, and Policy Management domains through collaboration, risk finding reviews, and policy/standard review and release management to support cross-team outcomes and book of work
Support control testing and compliance initiatives spanning Policy-Regulation analysis/crosswalks and gap identification, as well as potential evidence and control design reviews to enable unified compliance at scale with common controls programs
Define and execute the enterprise GRC technology and platform strategy, ensuring alignment with security frameworks (e.g., NIST CSF, NIST 800-53, DORA, etc.)
Serve as the primary owner of the GRC platform(s), overseeing configuration, integration, upgrades, managing platform changes and roadmap and optimization to meet enterprise needs
Translate governance, risk, and compliance processes into platform workflows, dashboards, and reporting that support issue management, risk assessments, policy governance, evidence collection, risk register generation and alignment with organizational units
Collaborate with information security, IT, compliance, operations, and legal partners in the development, integration, and operation of the platform and intertwined product strategies and roadmaps
Drive automation of risk and compliance processes to reduce manual effort, improve audit readiness, and increase sustainability of controls
Develop dashboards, analytics, and reporting to provide actionable insights to executives, regulators, auditors, and business leadership
Establish platform governance standards, change control processes, and ongoing lifecycle management and own/drive cross-functional sessions and demand management mechanisms
Manage relationships with platform vendors and system integrators, including licensing, renewals, escalations, and roadmap discussions

Qualification

GRC StrategyIT Risk OperationsCompliance FrameworksGRC PlatformsExecutive CommunicationStakeholder ManagementAnalytical SkillsVendor ManagementAutomationData ReportingChange ManagementTechnical Product DeliveryProblem-Solving

Required

Bachelor's degree in computer science, information technology, or risk and governance
12-15+ years of demonstrated progressive experience in IT, Cybersecurity, IT Governance and Risk, and Platform / Tool / Product architecture and management
12-15+ years' experience in IT Security Governance, Compliance, Controls and strategy
10 years hands on experience delivering and leading wide-scale GRC platform initiatives and products
8+ years of hands on experience managing GRC platforms and solutions spanning multiple data sources, systems, and systems of record culminating and a centralized GRC ecosystem
5+ years management, enterprise-wide transition, and/or transformation programs
Strong experience with various GRC and IT Security systems and platforms such as ServiceNow, and leading IT controls, compliance, scanning, vulnerability, and IT security tools and products
Entrepreneurial mindset and proactive way to manage work
Able to deliver with limited oversight and take accountability of actions
Excellent presentation skills, both creating slides and delivering presentations to a variety of audiences
Deep understanding of IT risk, security, compliance, and audit frameworks (e.g., NIST CSF, NIST 800-53, ISO 27001, COBIT, SOX, HIPAA, PCI DSS)
Strong background in IT control testing, implementation, regulation mapping and control design / evidence requirements
Strong technical knowledge of GRC platforms (e.g., ServiceNow IRM, Archer, MetricStream, OneTrust, or similar)
Proven record of accomplishment of IT change management, system design, and technical product delivery
Experience designing automated workflows, integrations, and reporting dashboards
Excellent stakeholder management, communication, and executive reporting skills
Strong analytical and problem-solving abilities; able to balance risk, efficiency, and business needs
Familiarity with regulatory requirements in multiple jurisdictions (e.g., EU, US, APAC)
Ability to translate complex regulatory and risk requirements into system design

Preferred

Master's degree in computer science, information technology, or risk and governance
Certifications: ServiceNow Integrated Risk Management (IRM) Implementer, CRISC, CISA, CISM, CISSP, CDPSE, or similar
Robust system architecture experience and ability to connect functional and operational requirements stemming from risk management and governance into practical cross-system integrations and platforms
Experience building or transforming GRC solutions from one to another, from scratch, and/or through expansion of existing capabilities
Knowledge of IT processes such as change management, incident management, and CI/CD integration preferred

Benefits

Medical, Dental, & Vision Plans
401(k)
FSA/HSA
Commuter Benefits
Tuition Assistance Plan
Vacation and Sick Time
Paid Parental Leave

Company

Wolters Kluwer

twittertwittertwitter
Glassdoor3.7
company-logo
Wolters Kluwer is an information services company specializing in software solutions and services for the healthcare and legal sectors.
dateFounded in 1836
location
Alphen Aan Den Rijn, Zuid-Holland, NLD
people-size10001+ employees
web-link
http://www.wolterskluwer.com

H1B Sponsorship

Wolters Kluwer has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (94)
2024 (22)
2023 (23)
2022 (10)
2021 (3)

Funding

Current Stage
Public Company
Total Funding
$1.78B
2025-06-23Post Ipo Debt· $578.76M
2025-03-13Post Ipo Debt· $542.74M
2024-03-11Post Ipo Debt· $655.84M

Leadership Team

leader-logo
Jason Marx
CEO, Wolters Kluwer Tax & Accounting
linkedin
leader-logo
Nancy McKinstry
CEO
linkedin

Recent News

PharmiWeb
ESG Reporting Market to Experience Notable Growth in Forecast Span by 2031
2026-01-07
Business Wire
Wolters Kluwer CCH® Tagetik achieves IBM Cloud for Financial Services® Validated designation
2025-12-18
Business Wire
Wolters Kluwer Indicator Survey Finds Lower Concern Levels Following Significant Drop in Regulatory Penalties
2025-12-16
Company data provided by crunchbase