Our client, a global leader in alternative investments, is seeking an experienced Vice President of Governance, Risk & Compliance (GRC) to lead key components of its cybersecurity program. Reporting directly to the Chief Information Security Officer (CISO), this executive role will ensure the firm maintains a strong security posture while meeting regulatory and client obligations across business lines.

Key Responsibilities

• Lead the development and enforcement of cybersecurity governance frameworks (e.g., NIST CSF, ISO 27001) and IT security policies.
• Oversee risk management processes, including cyber risk assessments, risk register updates, and third-party risk programs.
• Ensure compliance with regulatory frameworks (SEC, FINRA, GLBA, SOX, NYDFS 500, GDPR, CCPA, DORA).
• Manage audit readiness and SOC 1/2 engagements, evidence lifecycle, and internal control testing.
• Collaborate cross-functionally with Legal, Compliance, Enterprise Risk, and Audit teams.

Qualifications

• 8+ years of cybersecurity, IT risk, or compliance experience in financial services (e.g., asset management, banking, insurance).
• Strong expertise in financial regulatory frameworks and SOC audits.
• Experience with GRC platforms such as ServiceNow, Archer, or AuditBoard.
• Proven leadership, communication, and stakeholder management skills.
• Bachelor’s degree required; CISSP, CISM, CRISC, or related certifications preferred.

Attributes for Success

• Technically curious, pragmatic, and collaborative.
• Strong integrity and a high level of professionalism.
• Adept at balancing security rigor with business needs.

This is a unique opportunity to influence cybersecurity governance at a global investment firm known for its risk-controlled, value-driven strategies and inclusive culture.
Equal Employment Opportunity Statement
Kinect is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, disability, genetic information, or any other status protected under federal, state, or local law

• Lead the development and enforcement of cybersecurity governance frameworks (e.g., NIST CSF, ISO 27001) and IT security policies.
• Oversee risk management processes, including cyber risk assessments, risk register updates, and third-party risk programs.
• Ensure compliance with regulatory frameworks (SEC, FINRA, GLBA, SOX, NYDFS 500, GDPR, CCPA, DORA).
• Manage audit readiness and SOC 1/2 engagements, evidence lifecycle, and internal control testing.
• Collaborate cross-functionally with Legal, Compliance, Enterprise Risk, and Audit teams