Information Security GRC Director
@ Procter & Gamble

Cincinnati, OH
$180,000
On Site
Full Time
Posted 17 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXX XXXXXXXXXXX XXXXXXXXX****** @pg.com
Recommended after applying

Job Details

About Procter & Gamble

Information Technology at Procter & Gamble integrates business, innovation, and technology to build competitive advantages for over 5 billion consumers worldwide. Working here means joining diverse IT professionals who deliver innovative strategies and technology focused on building billion-dollar brands.

The Opportunity

P&G is seeking a Governance, Risk, and Compliance Director passionate about safeguarding data, enabling business through smart risk management, and shaping the future of cybersecurity. As the Information Security GRC Director, you will mature and maintain the security risk and compliance posture while aligning security with business goals.

Responsibilities

  • Governance: Maintain and evolve security policy frameworks (NIST, ISO 27001, CIS) and establish metrics for program maturity.
  • Risk Management: Lead enterprise risk management processes including risk identification, analysis, treatment planning, and reporting.
  • Compliance: Ensure adherence to regulations (GDPR, HIPAA, CCPA, SOX) with ongoing audits and documentation.
  • Awareness & Enablement: Enhance IT risk awareness by providing training and collaborating across teams.

Job Qualifications

Required qualifications include a Bachelor’s degree in a related field and 8+ years of experience specializing in Information Security with a focus on Governance, Risk, and Compliance. In-depth knowledge of security frameworks like NIST CSF, ISO 27001, and SOC 2 is essential, along with experience in risk assessments, audits, and regulatory requirements (GDPR, HIPAA, SOX, PCI DSS). Strong communication skills and an ability to collaborate with diverse stakeholders are crucial. The role requires on-site work in Cincinnati, OH at least 3 days per week.

Preferred Skills

Certifications such as CISSP, ISACA CRISC, CGEIT, or CISA are preferred. Candidates with a history of creatively solving compliance challenges will be valued.

Compensation & Benefits

Salary ranges from $160,000 to $220,000 per year, complemented by bonus potential and benefits. Compensation varies based on experience, skills, and location.

Equal Employment Opportunity

P&G is committed to diversity and equal opportunities. Reasonable accommodation is available for individuals with disabilities.

Location

This role is based in Cincinnati OH General Offices.

Estimated Percent of Time Spent on Work

  • 25% on risk identification, analysis, and assessment
  • 40% on enterprise initiatives to reduce risk and enhance compliance
  • 25% on assessing IT controls and compliance
  • 10% on collaboration with auditors and risk awareness

Job Schedule

Full time.

Key skills/competency

  • Information Security
  • Governance
  • Risk Management
  • Compliance
  • Cybersecurity
  • NIST
  • ISO 27001
  • Audit
  • Regulations
  • Policy
Apply without a personalized resume

How to Get Hired at Procter & Gamble

🎯 Tips for Getting Hired

  • Customize your resume: Tailor skills for GRC and compliance roles.
  • Highlight certifications: Showcase CISSP, CRISC, and similar qualifications.
  • Research Procter & Gamble: Understand their IT and security culture.
  • Prepare for technical interviews: Review frameworks like NIST and ISO 27001.
  • Practice communication: Be clear on risk management experiences.

📝 Interview Preparation Advice

Technical Preparation

Review NIST and ISO frameworks.
Practice IT risk assessment techniques.
Study compliance audit procedures.
Update relevant security certifications.

Behavioral Questions

Describe previous risk leadership experiences.
Explain challenging compliance decisions handled.
Share audit coordination examples.
Discuss collaboration with diverse teams.

Frequently Asked Questions