Cybersecurity GRC Product Owner

Clorox is seeking an experienced leader to spearhead their enterprise Cybersecurity Governance, Risk, and Compliance (GRC) program. The role encompasses cyber risk management, governance, compliance, and human risk management. The ideal candidate will have 10+ years of experience in Cybersecurity GRC and Privacy, with relevant industry certifications and experience with IT GRC tools.

Requirements

• 10 plus years of experience as a product owner or in a similar role within Cybersecurity GRC and Privacy
• Relevant industry certifications such as CISSP, CISA, CISM, or CRISC
• Experience with IT GRC tools (e.g., ServiceNow IRM, OneTrust)
• Knowledge of security and privacy frameworks and regulations, including ISO, NIST, CIS, SOC 2, HIPAA, CCPA, PCI DSS, and GDPR
• Advanced understanding of information security concepts, including cloud security, compliance, access controls, and disaster recovery
• Proven ability to coordinate cross-functional teams and stakeholders globally to achieve operational goals and deliver technology initiatives
• Track record of mentoring and managing teams of experienced technologists, setting clear priorities to achieve organizational goals
• Hands-on experience in software development with a focus on cybersecurity outcomes and leadership in information security and risk management
• Strategic planning and roadmap development skills to implement strategic plans and manage product roadmaps
• Strong communication and leadership abilities to guide and inspire teams, along with expertise in risk management, privacy, data security, and incident response

Benefits

• Robust health plans
• Market-leading 401(k) program with a company match
• Flexible time off benefits (including half-day summer Fridays depending on location)
• Inclusive fertility/adoption benefits