WORK WITH US

GRC Manager

Israel · Full-time

About The Position

REE is changing the electric mobility and aims at becoming the standard for EVs.

We work with leading automotive players worldwide and technology companies to ensure the development, engineering, and manufacturing.

We are hiring a talented GRC Manager professional to join our team


The Governance, Risk, and Compliance Manager is responsible for assessing and documenting REE’s compliance and risk posture while working on developing and implementing its Information Security Management Program. 

Responsibilities:

  • Manage REE’s Information Security Management Program
  • Design and implement Data Protection methodologies and guidelines.
  • Verify alignment with global Data Protection laws such as the GDPR
  • Test the effectiveness of technical and administrative security controls
  • Be the compliance and technical interface between legal, Product and R&D in order to translate regulations to technological requirements as part of the privacy and security by design framework
  • Participates in audit planning activities to develop audit scopes
  • Design audit programs and test plans to determine the adequacy and effectiveness of internal controls and compliance with REE’s policies, procedures and applicable regulations
  • Partner with various business units to ensure controls are adequate, appropriate, and effective
  • Support internal and external audit processes for relevant compliance programs such as SOX and ISO
  • Perform security and compliance assessments on new and existing systems, processes, technology
  • Develop policies & procedures
  • Perform business impact analysis on an ongoing basis
  • Perform periodic gap analysis assessments to validate compliance
  • Maintain up-to-date understanding of legislation and regulations that impact information Security like. Data Protection Act (2018), GDPR, CCPA, Schrem II, etc. 

Requirements

  • 5+ years experience as a compliance/GRC manager
  • Significant experience with legal and regulatory compliance standards, laws and frameworks such as SOX (ITGC), ISO 27XXX, GDPR, CCPA, PCI-DSS, etc.
  • Strong familiarity with ISMS and security frameworks, particularly NIST Cybersecurity Framework.
  • Strong understanding of fundamental information security concepts and technology.
  • Experience with IT governance, risk, and compliance management in a large global environment.
  • Ability to manage and prioritize simultaneous projects, related to different stakeholders, internal and external to the company
  • High level of professionalism with a focus on organizational skills and attention to detail
  • Ability to anticipate and proactively initiate future projects
  • Excellent written and verbal communication skills, including experience producing reports and presentations (native English).

Apply for this position

Subscribe to our Newsletter

Scroll to Top