- Define and execute a GRC roadmap, leading governance, risk, and compliance programs.
- Design and maintain the enterprise risk register, partnering with business leaders to identify, quantify, and mitigate risks.
- Manage compliance with frameworks (ISO 42001,ISO 27001, ISO 27701, ISO 27017, and SOC2, and CIS Controls) and drive continuous compliance.
- Build and manage a right-sized vendor risk program, assessing vendor maturity and reviewing security contracts.
- Enable ZoomInfo transaction velocity and ensure customer service by building customer trust.
- Leverage Agentic AI and GRC platforms (ServiceNow GRC, Vanta, and others) to automate processes, generate metrics, and deliver executive dashboards.
- Act as the key liaison between Security, Legal, Product, and executive leadership to align risk posture with business objectives.
Risk Management