Director, Governance, Risk & Compliance (Hybrid-Atlanta)

Cargill’s size and scale allows us to make a positive impact in the world. Our purpose is to nourish the world in a safe, responsible and sustainable way. We are a family company providing food, ingredients, agricultural solutions and industrial products that are vital for living. We connect farmers with markets so they can prosper. We connect customers with ingredients so they can make meals people love. And we connect families with daily essentials — from eggs to edible oils, salt to skincare, feed to alternative fuel. Our 160,000 colleagues, operating in 70 countries, make essential products that touch billions of lives each day. Join us and reach your higher purpose at Cargill.

The Director of Governance, Risk & Compliance job leads the execution of the tactical and strategic plans related to risk management, quantifying enterprise risk appetite and tolerance, establishing and improving security policies, and maintaining a cyber risk register. This job leads and guides the team responsible for leading enterprise risk management interface on information security, performing compliance tests, partnering and influencing key teams across the technology organization to ensure execution performance, and communicating company level metrics and progress on risk management goals.

1. Establishes and articulates the organization's risk appetite and tolerance levels to guide the decision-making process, and establishes value risk measures and prioritizes enterprise cybersecurity risks.
2. Reviews and validates fit for purpose security policies and standards in line with risk tolerance and regulatory requirements, and assures appropriate implementation, communication and enforcement of policies and standards.
3. Leads the cyber risk register, quantifying risk implications, prioritizing risks and ensuring timely updates and reporting.
4. Oversees and allocates resources necessary for compliance testing to assess adherence to internal policies and external regulations, identifying systemic compliance gaps, resolving root causes and proposing improvement options, including cost benefit analysis.
5. Reviews and monitors the execution of risk management strategies and initiatives to ensure effectiveness and alignment with organizational goals, and oversees performance monitoring processes to assure that performance measures both leading and lagging remain effective indicators of satisfactory risk management.
6. Prepares and communicates metrics related to risk management progress and coordinates with internal and external stakeholders to report on risk management metrics, ensuring transparency and accountability.
7. Engages company enterprise risk management, audit and leadership teams to assure cyber risks are appropriately integrated into broader risk management practices and enterprise risk management framework, defining the cybersecurity strategy for collecting, analyzing and prioritizing risk management initiatives, aligned to the enterprise risk management framework.
8. Cultivates collaboration with cybersecurity peers, risk managers in other functions, government affairs, external experts, industry consortia, and other partners to gather internal and external requirements, map current and emerging compliance rules, balance competing priorities, develop risk mitigation strategies, evaluate cost benefit cases, and advocate for solutions that meet business objectives.
9. Manages team members to achieve the organization's goals by allocating resources, ensuring productivity, communicating performance expectations, creating goal alignment, giving and seeking feedback, providing coaching, measuring progress and holding people accountable, supporting employee development, recognizing achievement and lessons learned, and developing enabling conditions for talent to thrive in an inclusive team culture.

Required Qualifications

1. Bachelor’s degree in computer science, information systems, cybersecurity, or a related field
2. Around 10 years of relevant work experience
3. Five years of supervisory experience
4. Expert understanding of risk management, quantifying enterprise risk appetite and tolerance and security policies
5. Experienced in cross-functional collaboration with program management and procurement to ensure financial and delivery commitments are maintained

Preferred Qualifications

1. Experience leveraging broad oversight of team activities to ensure compliance with risk and security or regulatory policies, standards, procedures and guidelines
2. Competent in leading and managing a global team independently
3. High aptitude in thinking strategically and incorporating business needs into technical roadmaps
4. Proficient in translating security-related matters into business terms that are clear and understandable to executives
5. Capacity to think outside the box when designing systems and solutions
6. Proven experience providing direction, delegating and removing obstacles for the team
7. Develop and deliver multimode communications that convey a clear understanding of the unique needs of different audiences

This role is Hybrid in Atlanta, Georgia.

Equal Opportunity Employer, including Disability/Vet.