Vice President, IT Governance, Risk, and Compliance

SoundHound AI believes every person should be able to interact naturally with the products around them–by simply talking. With a global reach spanning two dozen languages, we build Voice AI products with conversational intelligence for various industries, including cars, restaurants, retail, healthcare, banking, financial services, and insurance. Clients use our products to optimize employee efficiency and to extend their brand in new and meaningful ways to end users.

The Vice President of IT Governance, Risk, and Compliance (GRC) is responsible for establishing and overseeing the organization's IT governance framework, managing risk, ensuring compliance with regulatory requirements, and maintaining robust corporate controls. This role requires expertise in governance, risk and compliance, audits, policy and procedure administration, and information security (Infosec) sales support to strengthen the organization's overall IT security posture.

Responsibilities

• Governance Framework: Develop, implement, and maintain an IT governance framework to ensure consistent management practices and adherence to industry standards.

• Risk Management: Identify, assess, and mitigate IT risks by implementing effective risk management strategies and processes.

• Compliance Assurance: Ensure compliance with relevant regulatory requirements, standards, and best practices by developing and enforcing IT policies and procedures.

• Audit Oversight: Lead and manage internal and external IT audits, ensuring that all audit findings are addressed and resolved in a timely manner.

• Corporate Controls: Establish and maintain robust corporate controls to safeguard the organization's IT assets and infrastructure.

• Policy & Procedure Administration: Develop and administer IT policies, procedures, and guidelines to support the organization's strategic goals and objectives.

• Infosec Sales Support: Provide information security support to the sales team, ensuring that security requirements are met in all customer engagements and contracts.

• Stakeholder Collaboration: Collaborate with senior leadership, IT teams, and other key stakeholders to align IT GRC initiatives with organizational goals and priorities.

• Continuous Improvement: Drive continuous improvement of IT GRC practices, technologies, and processes to stay ahead of emerging threats and vulnerabilities.

• Training and Development: Provide training, mentorship, and development opportunities to IT staff to enhance their skills and capabilities in governance, risk, and compliance.

Scope and Impact of Role

• Strong strategic thinking skills with the ability to develop and implement organizational growth.

• Proficiency in IT GRC tools and technologies.

• Understands the challenges facing the organization beyond the department. Develops solutions in partnership with other department leaders to solve problems for their specific department or a bigger segment of the company.

• Develops strategic plans for areas of responsibility based on corporate strategy. Strategic decisions are critical to functional/area performance and likely have medium-term impact. Manages change and develops risk mitigation plans.

Qualifications

• Education: Bachelor’s degree in Information Technology, Cybersecurity, Business Administration, or a related field. A Master’s degree or relevant certifications (CISA, CRISC, etc.) are preferred. Equivalent experience may be considered.

• Key Success Skills:

  • Strategic Vision: Ability to align IT governance and risk management strategies with organizational goals.

  • Leadership: Proven experience in leading cross-functional teams and fostering a culture of accountability and compliance. Excellent leadership, communication, and interpersonal skills.

  • Risk Management Expertise: Deep understanding of risk assessment methodologies and mitigation strategies. Strong understanding of IT governance frameworks, risk management methodologies, and compliance requirements.

  • Regulatory Knowledge: Familiarity with industry standards and regulations, such as GDPR, HIPAA, or SOX.

  • Cybersecurity Acumen: Strong grasp of cybersecurity frameworks and practices to safeguard organizational assets.

  • Analytical Thinking: Capability to analyze complex data and provide actionable insights for decision-making. 

  • Communication Skills: Excellent ability to communicate technical concepts to non-technical stakeholders.

  • Problem-Solving: Proficiency in identifying challenges and implementing effective solutions. Strong analytical and problem-solving abilities.

  • Project Management: Skilled in managing multiple projects and ensuring timely delivery within budget. Proven ability to manage and respond to complex IT audits and compliance issues.

  • Adaptability: Ability to stay updated with emerging technologies and evolving regulatory landscapes

#LI-DNI

#LI-MQ1

#LI-REMOTE