GRC Cybersecurity & AI Governance Specialist

Job Description

Location: Chicago, IL

Overview

Our client is a distinguished global provider of legal services. This is a full-time, direct hire onsite role requiring US Citizenship or Green Card. Position is located in Chicago – no relocation assistance is offered at this time. We are seeking a Senior Information Security GRC & AI Governance Specialist to lead governance, risk, compliance, and AI assurance initiatives across the organization. "Also known as GRC Manager, Security Compliance Manager, Cyber Risk Manager, AI Governance Specialist, or Information Security Governance Lead."

This role serves as a trusted security advisor, driving risk management programs, AI governance frameworks, third-party risk assessments, compliance activities, and GRC platform administration.

The ideal candidate combines strong cybersecurity expertise with hands-on experience in governance, audits, compliance, and emerging AI risk management practices.

Our client upholds strict performance standards and fosters a culture focused on continuous growth. Individuals who exhibit initiative and dedication will be offered opportunities for increased responsibilities and long-term professional advancement within the organization.

What We're Looking For

A security professional who can bridge cybersecurity, governance, compliance, and emerging AI risk management while partnering effectively with technical teams, leadership, clients, and external stakeholders

Required Qualifications

5+ years of Information Security experience

4+ years of hands-on technical security experience

Experience with security governance, risk management, compliance, and audit activities

Knowledge of ISO 27001, NIST, SOC, and related security frameworks

Experience conducting risk assessments and security reviews

Strong written and verbal communication skills

Experience developing security policies and standards

Bachelor's degree or equivalent experience

Preferred Qualifications

Experience with AI Governance, AI Risk Management, AI Audits, or AI Assurance programs

CISSP, CISM, or similar security certifications

Experience administering GRC platforms

Legal industry experience

Experience with third-party/vendor risk management

Knowledge of cloud security, SIEM, IAM, PAM, vulnerability management, and security operations

Key Responsibilities

Lead and improve Governance, Risk & Compliance (GRC) processes and control maturity programs

Support AI governance initiatives, including AI risk assessments, audits, and compliance reviews

Conduct vendor and third-party security risk assessments

Respond to client security questionnaires, audits, and security reviews

Develop and maintain security policies, standards, procedures, and guidelines

Ensure compliance with ISO 27001, NIST, SOC, and other security frameworks

Provide security architecture, risk, and compliance guidance to technical and business teams

Perform risk assessments and recommend mitigation strategies

Administer and support GRC platforms, reporting, and governance workflows

Support security awareness and training initiatives

Serve as a Security Subject Matter Expert (SME) across governance, compliance, and AI risk domains

How to Apply:

Our client has hired us to help facilitate the initial interview and recruiting process. Please attach your current version of your resume and make sure you complete our initial pre-screening questions that will be used for determining which applicants will be considered at this time. Thank you for your interest.

Company Description

We Place People is a premiere Executive Search Firm working with leading companies nationwide. We have a direct relationship with our clients and a 95% hire rate! We differentiate ourselves from other firms & work closely with our candidates throughout the interview process. WE PLACE PEOPLE is what we do best!

Full-time