Apply now »

GRC Analyst

Chicago, IL, US, 60601

James Hardie Building Products Inc. is the North American leader in fiber cement home siding and exterior design solutions. Hardie® products offer long lasting beauty and endless design possibilities with trusted protection and low maintenance. The company pioneered modern fiber cement building products and continues to invest in innovation to transform the industry. James Hardie is a high-performance organization, with an unwavering commitment to Zero Harm. The company proudly employs a diverse workforce of over 3,000 employees across operations in North America.

 

Make your dream career a reality. It’s possible!

 

100% remote or Hybrid from our downtown Chicago office / your Chicagoland home office

 

We are seeking a highly skilled and motivated GRC Cybersecurity Manager to join our dynamic team. The ideal candidate will be responsible for managing governance, risk, and compliance (GRC) activities, ensuring James Hardie adheres to regulatory requirements and industry best practices. This role also includes developing and delivering comprehensive security awareness training programs to enhance our organization's security posture.

 

What You’ll Do: 

Governance:

    • Develop, implement, and maintain cybersecurity policies, standards, and procedures.
    • Ensure alignment with industry standards and regulatory requirements (e.g., ISO 27001, NIST, GDPR).
    • Conduct regular reviews and updates of security policies and procedures.

Risk Management:

    • Identify, assess, and prioritize cybersecurity risks.
    • Develop and implement risk mitigation strategies.
    • Conduct regular risk assessments and vulnerability assessments.
    • Monitor and report on the effectiveness of risk management efforts.

Compliance:

    • Ensure compliance with relevant laws, regulations, and industry standards.
    • Coordinate and support internal and external audits.
    • Maintain documentation and evidence of compliance activities.

As needed:

    • Develop and deliver engaging security awareness training programs for all employees.
    • Create training materials, including presentations, videos, and interactive modules.
    • Conduct regular phishing simulations and other security awareness exercises.
    • Measure and report on the effectiveness of security awareness training programs.
    • Stay updated on the latest cybersecurity threats and trends to ensure training content is current and relevant.
    • Interface with internal and external auditors to facilitate audit processes.
    • Collaborate with internal controls teams to ensure alignment with cybersecurity policies and procedures.
    • Provide necessary documentation and support for audit and compliance reviews.

 

What You’ll Bring: 

  • Bachelor's degree in Cybersecurity, Information Technology, or a related field.
  • 6+ years of experience in GRC, cybersecurity, or a related role.
  • Strong knowledge of cybersecurity frameworks and standards (e.g., ISO 27001, NIST).
  • Experience with risk management and compliance activities.
  • Excellent communication and presentation skills.
  • Ability to develop and deliver effective training programs.
  • Relevant certifications (e.g., CISSP, CISM, CRISC) are a plus.
  • Strong analytical and problem-solving skills.
  • Ability to work independently and as part of a team.
  • Attention to detail and strong organizational skills.
  • Proficiency in using GRC tools and software.

 

What You’ll Receive:
As of the date of this posting, a good faith estimate of the current pay scale for this position is $105,000 to $125,000. Placement in the range depends on several factors such as experience, skills, geography and internal equity and may change over time. This position qualifies for benefits and you will be eligible to participate in a bonus plan.
 

At James Hardie, we recognize that our success depends on our people. We've worked hard to build a generous and competitive benefits program that demonstrates our commitment to our employees.

  • Comprehensive low-cost co-pay Health Insurance; medical, dental, prescription, and vision insurance benefits for every 30+ hour full-time employee. Insurance starts on day one!
  • Life insurance
  • Short-term and long-term disability insurance
  • 401(k) Retirement plan that will match 100% of employees saved dollars up to the first 6% of your salary
  • 11 paid holidays per year, paid vacation including Jury Duty and bereavement leave
  • (Paid sick leave)
  • Wellness Program, Employee Assistance Program, Parental Leave
  • Employee Stock Purchase Plan
  • Community Involvement & Sustainable Solutions - Fire Resistant Siding to Help Rebuild the Grizzly Flats Community | James Hardie

 

James Hardie will comply with any applicable state and local laws regarding employee leave benefits, including, but not limited to providing time off pursuant to the Colorado Healthy Families and Workplaces Act, in accordance with its plans and policies.

 

 

Applications are being accepted on an ongoing basis.

    
    
    Apply now and come “home” to Hardie!
     


#LI-LD1 
 

James Hardie Building Products Inc. is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, gender, sex, age, national origin, religion, sexual orientation, gender identity/expression, genetic information, veteran's status, marital status, pregnancy, disability, or any other basis protected by law.


Nearest Major Market: Chicago
Job Segment: Cyber Security, Compliance, Developer, Sharepoint, Risk Management, Security, Legal, Technology, Finance

Apply now »