Job Description:
Title: GRC Project Manager
Location: Remote Eastern Hours (must be available to start between 6-7am)
travel up to once a quarter to Conshohocken, PA
Schedule: M-F, day hours 40/week (w/ flexibility to support global teams if needed)
Type: Long-term contract, 1 year with extension opportunity
Pay on contract: $60-80/hr (experience dependent)
Apply Here: Please send your resume, relevant certification(s), and availibility for a phone call to Emma at emungo@apexsystems.com
About The Client
This global healthcare organization is a leading provider of pharmaceutical distribution, logistics, and patient‑focused support services. They partner with manufacturers, pharmacies, hospitals, and healthcare providers to ensure critical medications and medical products reach the patients who need them. Their work spans the entire pharmaceutical supply chain, supporting innovation, improving access to therapies, and strengthening healthcare delivery worldwide.
Technical Skills & Experience:
This role requires a strong technical background, executive presence, and the ability to collaborate across global teams in a fast-paced environment. The ideal candidate will have deep knowledge of GRC frameworks and tools, along with the ability to drive alignment between business objectives and security requirements.
Key Responsibilities:
- Develop, refine, validate, and manage project plans to ensure on-time and on-budget delivery of GRC-related initiatives.
- Oversee the implementation and enhancement of GRC frameworks, ensuring alignment with organizational goals and regulatory requirements.
- Utilize project management and Scrum methodologies to coordinate internal and external resources effectively.
- Communicate project status, risks, and pending issues to leadership in a timely and concise manner.
- Build and manage project roadmaps, ensuring alignment with cybersecurity and risk management objectives.
- Collaborate with stakeholders to identify and address gaps in governance, risk, and compliance processes.
- Build consensus among process leads on project scope, task execution, staffing, and issue resolution.
- Partner with vendors and consultants on behalf of the business area to ensure successful project outcomes.
- Manage project budgets, monitor financial performance, and provide regular updates to leadership.
- Proactively identify risks and manage issues to resolution, ensuring project success.
- Ensure compliance with relevant regulations, standards, and frameworks (e.g., ISO 27001, NIST, GDPR, SOX).
Required Skills & Experience:
- Strong knowledge of GRC frameworks and tools, including experience with regulatory compliance and risk management processes.
- Familiarity with cybersecurity principles, including vulnerability management, incident response, and infrastructure security.
- Ability to assess and improve governance structures, risk assessment methodologies, and compliance programs.
- Technical background with the ability to understand how technologies intersect and support GRC objectives.
- Strong leadership and organizational skills, with the ability to juggle multiple priorities and initiatives.
- Excellent communication and interpersonal skills, with the ability to engage effectively at all levels of the organization.
- Proven ability to work collaboratively with cross-functional teams and build consensus among stakeholders.
- Experience working with global teams, including flexibility to accommodate early EST hours (6-7 AM) to align with European time zones.
Preferred Qualifications:
- Knowledge of GRC tools (e.g., Archer, ServiceNow GRC, or similar platforms).
- Experience with regulatory standards such as NIST Cybersecurity Framework, ISO 27001, GDPR, SOX, or similar.
- Familiarity with Cyber Defense and Vulnerability Management concepts.
- PMP, CISM, CISSP, or similar certifications are a plus.
Personality Traits:
- Assertive and proactive, with the ability to drive engagement with teams and stakeholders.
- Personable and collaborative, with excellent relationship-building skills.
- Highly organized and detail-oriented, capable of managing multiple activities simultaneously.
- Comfortable communicating complex concepts to both technical and non-technical audiences.
General Requirements:
- Availability to work early EST hours (6-7 AM) to support global teams, particularly in Europe. Flexibility to align with their timeframes is essential.
- Strong executive presence and communication skills to engage effectively with senior stakeholders.
- Technical expertise in cybersecurity, with an emphasis on IAM, GRC, Cyber Defense, and vulnerability management
