Description Kenvue is currently recruiting for: Cyber Governance, Risk and Compliance (GRC) Lead This is based at São Paulo, Brazil .
Who we are At Kenvue , we realize the extraordinary power of everyday care.
Built on over a century of heritage and rooted in science, we're the house of iconic brands - including Neutrogena, Aveeno, Tylenol, Listerine, Johnson's and BAND-AID Brand Adhesive Bandages that you already know and love.
Science is our passion; care is our talent.
Our global team is made up of ~ 22,000 diverse and brilliant people, passionate about insights, innovation and committed to delivering the best products to our customers.
With expertise and empathy, being a Kenvuer means having the power to impact the life of millions of people every day.
We put people first, care fiercely, earn trust with science and solve with courage - and have brilliant opportunities waiting for you!
Join us in shaping our future-and yours.
For more information, click here .
What you will do The Cyber Governance, Risk and Compliance (GRC) Lead will develop and implement cyber GRC policies and procedures to ensure compliance with industry standards and regulations.
They will be responsible for managing the Cyber Issue Register and providing support to peers and business partners.
Additionally, they will collaborate with cross-functional teams to establish governance processes and procedures for the overall Cyber program: Key Responsibilities • Develop, implement, and maintain cybersecurity policies, procedures, and standards to address emerging threats and maintain a strong security posture, while ensuring compliance with industry standards and regulations.
• Develop and maintain an effective cybersecurity governance framework to ensure alignment with organizational goals and industry best practices.
• Provide support and governance of the Cyber Issue & Risk Register, manage backlog of enhancements, and prioritize improvements, as necessary.
• Establishing governance processes and procedures for the overall Cyber program.
• Stay up to date on industry trends, best practices, new and upcoming laws, and regulations related to cyber GRC.
• Develop, prepare, and present reports on cyber GRC activities and initiatives, as needed.
• Lead and manage cyber GRC projects from inception to completion.
• Create and maintain documentation and provide training to end-users as needed.
• Anticipate and resolve issues/barriers that impede progress, and proactively communicate with and seek assistance from key stakeholders.
What we are looking for Required Qualifications • Bachelor's degree in computer science, Information Systems, or a related field, or equivalent experience.
• At least 3 years of experience in cyber governance, risk management, and compliance.
• In-depth knowledge of industry standards and regulations, such as NIST CSF, 800-53, ISO 27001, and GDPR.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team.
Desired Qualifications • Bachelor's degree in computer science, Information Systems, or a related field, or equivalent experience.
• At least 3 years of experience in cyber governance, risk management, and compliance.
• In-depth knowledge of industry standards and regulations, such as NIST CSF, 800-53, ISO 27001, and GDPR.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team.
What's in it for you • Competitive Total Rewards Package* • Paid Company Holidays, Paid Vacation, Volunteer Time & More!
• Learning & Development Opportunities • Employee Resource Groups *Note: Total Rewards at Kenvue include salary, bonus (if applicable) and benefits.
Your Talent Access Partner will be able to share more about our total rewards offerings and the specific salary range for the relevant location(s) during the recruitment & hiring process Kenvue is proud to be an Equal Opportunity Employer.
All qualified applicants will receive consideration for employment based on business needs, job requirements, and individual qualifications, without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, protected veteran status, or any other legally protected characteristic, and will not be discriminated against on the basis of disability.
