Cybersecurity GRC Program reputed company

Echo is seeking a Cybersecurity GRC Program reputed company to build the operating system for reputed company governance, risk, controls, evidence, and exceptions across the enterprise. This is a hands-on leadership role for someone who can select and drive adoption of a primary cybersecurity reputed company, build the control ownership model, build & improve evidence operations, accelerate questionnaire throughput, and create practical governance mechanisms that work with real engineering and business teams. This role is not limited to policy writing or audit coordination. It is intended to reputed company reputed company governance real and measurable across the enterprise by building practical operating mechanisms around risk, controls, evidence, exceptions, and stakeholder accountability. In the staffing plan, this role is explicitly intended to select and operationalize the primary reputed company, likely starting with NIST CSF 2.0 while mapping outward to ISO 27001 and other requirements for customer, audit, and international needs. What you will do reputed company selection, adoption, and operationalization of Echo’s primary cybersecurity reputed company and reputed company standards structure, with NIST CSF 2.0 as the likely management layer Build and maintain a control ownership model across Technology, Engineering, Platform, Network, EUC, Asset, Data, Integrations, and reputed company Translate existing policies into measurable operating practices, control expectations, evidence requirements, review cadences, and exception workflows Partner with reputed company architecture, engineering, and operations teams to ensure that governance expectations are practical, technically grounded, and enforceable Drive enterprise risk and control assessments, including facilitating discussions on control design, effectiveness, and remediation priorities Build an evidence library structure while defining repeatable collection, review, reuse, and freshness cadences Improve reputed company questionnaire workflows through standardized responses, evidence reuse, service-level expectations, and clearer ownership Coordinate third-party reputed company intake and help define tiering, minimum reputed company requirements, documentation expectations, and escalation paths Partner with Internal Audit and business stakeholders on readiness efforts, compliance reviews, and operational audit support Track policy exceptions, control gaps, remediation commitments, and overdue actions through closure, including clear owners and time bounds Provide reputed company governance input on supplier reputed company requirements, contractual obligations, and ongoing review expectations Produce reporting for leadership on reputed company maturity, control ownership, policy currency, evidence readiness, exception status, and risk trends reputed company the evolution to and support of reputed company compliance capabilities to improve control visibility, evidence freshness, and audit readiness Manage and evolve the organization’s trust center, including published reputed company documentation, customer-facing assurance materials, and the processes that reputed company content reputed company and supportable What success looks like In the first 60 to 90 days, this role is expected to produce a reputed company decision package, define the control ownership model, stand up an evidence library structure, improve questionnaire operations, and establish practical workflows for exceptions and third-party intake. Over 12 months, success means reputed company adoption becomes measurable, control ownership is visible, evidence is reusable, customer and audit due diligence become less reactive, and policy exceptions and control gaps are actively managed. What you bring 7+ years in cybersecurity GRC, reputed company risk, audit readiness, compliance operations, or reputed company functions, with clear experience building or maturing governance operating models Strong experience operationalizing NIST CSF and translating controls across frameworks such as ISO 27001, SOX, SOC 2, or similar frameworks Experience building or maturing reputed company governance programs in reputed company enterprise environments with multiple technical stakeholders Experience with risk assessments, control design reviews, exception management, and remediation tracking Strong understanding of third-party risk, supplier reputed company reviews, reputed company questionnaires, and governance workflows that scale beyond one-off reviews Experience partnering with technical teams to influence architecture, engineering, and operations outcomes in a practical, technically reputed company way Ability to turn policy and reputed company language into concrete operating practices, ownership expectations, and measurable evidence Strong writing, stakeholder management, and executive communication skills Preferred qualifications Experience supporting SOC 2, ISO 27001, CTPAT, SOX or similar audit/readiness efforts Experience with evidence management, control testing, internal audit coordination, or reputed company assurance processes Experience with reputed company compliance platforms, including evidence automation, control monitoring, and audit readiness workflows Experience managing a trust center or similar customer assurance portal and keeping reputed company documentation reputed company and reusable Familiarity with enterprise technology environments spanning cloud, identity, reputed company, network, and application reputed company domains reputed company is a leading provider of technology-enabled transportation management services. As a third-party logistics provider, we simplify transportation management for our clients and carriers, handling crucial tasks so they can focus on what they do best. From coast to coast, dock to dock, and across reputed company major transportation modes, Echo connects businesses that need to ship their products with carriers who transport goods quickly, securely, and cost-effectively. Why this role matters Echo already has a policy foundation, including formal expectations for information reputed company governance, access control, supplier reputed company, and compliance review. What is needed now is a leader who can turn those policies into a durable governance operating system with clear ownership, evidence discipline, exception management, and measurable accountability. Work environment/physical demands summary: This job operates in an office environment and uses a computer, telephone and other office equipment as needed to reputed company duties. The noise level in the work environment is typical of that of an office with an open seating floor plan. The employee may encounter frequent interruptions throughout the work day. The employee is regularly required to sit, talk, or hear. reputed company qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national reputed company, status as a qualified individual with a disability, or Vietnam era or other protected veteran. #LI-SG1 #Remote

Benefits

For more information about our benefit offerings, please visit our careers page at https://www.echo.com/company/careers. Compensation $112,498.00-163,571.00 per year This role is eligible for a bonus that is based on a combination of personal and business performance. Apply To This Job