In our 'always on' world, we believe it's essential to have a genuine connection with the work you do.

Are you excited by a challenge and driven by learning and growth? Then, leading CommScope's Governance, Risk, and Compliance (GRC) program may be the right next step for you! The Head of GRC will direct the development and maintenance of our security policies and control standards, aligned with the NIST Cybersecurity Framework (CSF) and Center for Internet Security (CIS) Top 18 Security Controls. Based on this structure, you will orchestrate the people, processes, and technologies vital to track and manage companywide compliance with our policies and standards, as well as applicable regulatory requirements. This is a hybrid position, and candidates will be expected to work out of our Charlotte, NC office several days a week.

Partnering across CommScope's business units, Technology, and Security teams, you will lead us in systematically identifying security risks, cataloging them, and driving management thereof. Ultimately, risk is at the core of information security, so this role acts as the fulcrum on which the security organization turns.

Your success in this role depends on several factors. First, you'll bring strong domain expertise and previous experience to the role, having served in previous GRC roles or as a BISO. At least one of your previous roles will have given you strong technical experience in security operations, engineering, incident response, or elsewhere. You'll need to be an experienced and caring leader to work effectively with your peers and energize your team as a strong manager. Structured execution, critical thinking, attention to details, and effective communications are the foundation of everything we do.

Your reward for a job well done is the satisfaction of excellence: sustaining the team and processes that deliver crucial security capabilities in service of our customers and their customers - the billions of people CommScope products and services help to connect every single day.

• Working with your peers, define the core set of enterprise security policies and controls. Develop and mature the documentation necessary to manage and govern the security program.
• Lead and handle a distributed team of GRC analysts, primarily based in India, to provide core services including third party assurance, risk management, risk governance, policy and standards writing, security communications, and other GRC capabilities. Handle the career development of your team and your talent pipeline.
• Cultivate the toolset and any professional services necessary to deliver these capabilities.
• Communicate effectively with stakeholders at all levels.
• Develop relevant metrics and scorecards and leverage resulting insights to demonstrate value and drive continual improvement. As the role evolves and enterprise maturity increases, provide more advanced support in strategic planning, leadership, and risk communications.

• At least 7+ years of previous experience, demonstrating increased responsibility among the security domains and people leadership relevant to this role.
• Technical security experience in one or more previous roles in areas such as incident response, SOC, control design and implementation, or other related security fields.
• Experience building, developing, and retaining teams of impactful technical staff and managing a 24 x 7 x 365 operational environment.
• Superb communication skills (technical and non-technical collaborators) and strong executive presence.
• Experience maintaining effective relationships with vendors, buying security products, and leveraging professional services.
• Experience writing cybersecurity-related policies and procedures. Experience developing security processes and workflows using tools such as Archer or ServiceNow.

• CISSP or other senior-level certification.
• Experience with ServiceNow.
• Previous experience as a technical Business Information Security Officer (BISO).
• Previous experience with business continuity/disaster recovery.
• Have been or are currently a PCI Qualified Security Assessor (QSA).

What Happens After You Appl

: Learn how to prepare yourself for the next steps in our hiring process by visiting https://jobs.commscope.com/content/How-We-Hire/?locale=en_US

CommScope is on a quest to deliver connectivity that empowers how we live, work, and learn. Our employees push the boundaries of communications technology that enables groundbreaking discoveries like 5G, the Internet of Things, and gigabit speeds for everyone, everywhere. With our unmatched expertise in copper, fiber, and wireless infrastructure, our global clients rely on us to outperform today and be ready for the needs of tomorrow.

If you want to grow your career alongside forward-thinking, hardworking, and caring people who strive to create what's next.....come connect to your future at CommScope.

CommScope is an Equal Opportunity Employer (EEO), including people with disabilities and veterans. If you are seeking an accommodation for the application or interview process, please contact us to submit your request at talentacquisition@commscope.com.

#LI-CS1

#LI-Hybrid