Company Description

About Trident:
Trident Consulting is an award-winning IT/engineering staffing company founded in 2005 and headquartered in San Ramon, CA. We specialize in placing high-quality vetted technology

Some of our recent awards include:
2022, 2021, 2020 Inc. 5000 fastest-growing private companies in America
2022, 2021 SF Business Times 100 fastest-growing private companies in Bay Area

Job Description

Job Title: Cybersecurity GRC Lead

Location: Burlington, MA (Hybrid – Onsite M/W/F required)

Employment Type: Full-Time

Compensation & Benefits: Base Salary: $118,500 – $148,100 | 10% annual bonus | Comprehensive benefits package

About the Company:
Our client is a leading, publicly traded medical technology and healthcare innovation company focused on developing cutting-edge solutions that improve patient outcomes worldwide. Known for its strong commitment to research, regulatory excellence, and product innovation, the organization operates in a highly regulated environment and partners closely with global stakeholders across engineering, quality, and compliance. This is an opportunity to join a forward-thinking company driving meaningful advancements in healthcare technology while maintaining the highest standards of cybersecurity and governance.

About the Role:
We are seeking a highly experienced Cybersecurity GRC Lead to drive governance, risk, and compliance initiatives within a regulated technology environment. This role focuses on continuous control monitoring, audit readiness, and cross-functional coordination to ensure cybersecurity compliance across products, systems, and operations.

This is a strategic leadership role centered on governance and oversight—not hands-on technical execution. You will work closely with Engineering, IT, Security, Quality, and Regulatory teams to ensure all cybersecurity requirements are properly tracked, executed, and documented.

Key Responsibilities:

Governance & Program Oversight

• Own and manage the cybersecurity GRC program, including control schedules and compliance activities
• Maintain policies, procedures, and control documentation
• Define roles, responsibilities, and escalation paths across teams
• Provide regular reporting on KPIs, KRIs, and risk posture to leadership

Risk Management & Compliance

• Track cybersecurity requirements from internal, customer, and regulatory sources
• Manage cybersecurity risk assessments and remediation tracking
• Maintain and update the risk register

Cross-Functional Coordination & Audit Readiness

• Act as the central point of coordination across Engineering, IT, Security, Quality, and Regulatory teams
• Support audit and inspection readiness by ensuring all required artifacts are current and accessible
• Coordinate responses to security questionnaires, audits, and customer requests

Control Assurance

• Oversee execution of recurring controls such as access reviews, vulnerability scans, and patch management
• Ensure proper tracking of remediation activities and SLA adherence
• Coordinate supplier and third-party security requirements

Continuous Improvement

• Drive improvements in GRC processes, reporting, and documentation
• Enhance dashboards, templates, and evidence tracking systems

Required Qualifications:

• 5+ years of experience in cybersecurity, GRC, or risk management within regulated environments
• Strong experience in healthcare, medical devices, life sciences, or similar regulated industries
• Deep understanding of frameworks such as NIST, IEC standards, and regulatory expectations
• Proven ability to lead cross-functional initiatives without direct authority
• Experience supporting audits, inspections, and customer security assessments
• Strong analytical, communication, and stakeholder management skills
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related field

Qualifications

Additional Information

All your information will be kept confidential according to EEO guidelines.