{"version":"0.1","company":{"name":"YubHub","url":"https://yubhub.co","jobsUrl":"https://yubhub.co/jobs/title/sr-cyber-security-grc-specialist"},"x-facet":{"type":"title","slug":"sr-cyber-security-grc-specialist","display":"Sr. Cyber Security GRC Specialist","count":1},"x-feed-size-limit":100,"x-feed-sort":"enriched_at desc","x-feed-notice":"This feed contains at most 100 jobs (the most recently enriched). For the full corpus, use the paginated /stats/by-facet endpoint or /search.","x-generator":"yubhub-xml-generator","x-rights":"Free to redistribute with attribution: \"Data by YubHub (https://yubhub.co)\"","x-schema":"Each entry in `jobs` follows https://schema.org/JobPosting. YubHub-native raw fields carry `x-` prefix.","jobs":[{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_f8c5a32f-1c7"},"title":"Sr. Cyber Security GRC Specialist","description":"<p>At Bayer, we&#39;re seeking a Sr. Cyber Security GRC Specialist to support the development, implementation, and ongoing operation of Cyber Security Governance, Risk, and Compliance (GRC) activities within the organisation.</p>\n<p>As a Sr. Cyber Security GRC Specialist, you will partner with Cyber Security, IT, compliance, and business stakeholders to help measure adherence to Bayer policies and procedures aligned to industry standards; assess the effectiveness of security and compliance processes; track key IT security deliverables; and contribute to audit readiness.</p>\n<p>Your tasks and responsibilities will include:</p>\n<ul>\n<li>Supporting Cyber Security risk management activities to identify, assess, and help mitigate risks, including contributing to the operation and continuous improvement of the Cyber Security framework;</li>\n<li>Developing and maintaining key performance indicators (KPIs), dashboards, and metrics to measure the effectiveness of initiatives;</li>\n<li>Collaborating with cross-functional teams to help integrate Cyber Security assurance principles into business processes and systems;</li>\n<li>Providing guidance and day-to-day support across the organisation on Cyber Security assurance topics, following established standards and practices;</li>\n<li>Monitoring regulatory changes and industry trends and summarising impacts to policies, controls, and risk posture;</li>\n<li>Coordinating evidence collection and responding to auditor inquiries in partnership with control owners and subject matter experts;</li>\n<li>Contributing to strategic initiatives by supporting planning, tracking milestones, and producing high-quality deliverables;</li>\n<li>Supporting continuous improvement of the data classification framework that categorises data based on sensitivity and risk;</li>\n<li>Partnering with stakeholders at all levels of the organisation to help ensure appropriate classification of data assets across the organisation;</li>\n<li>Assisting with periodic reviews and updates to classification policies to align with regulatory changes and business needs;</li>\n<li>Supporting identification and management of the organisation&#39;s critical data assets (&#39;crown jewels&#39;);</li>\n<li>Helping implement and maintain security requirements and protection measures for high-value data assets in partnership with relevant teams;</li>\n<li>Participating in assessments and control reviews related to crown jewel data to support compliance with security standards;</li>\n<li>Supporting data discovery and inventory activities to improve visibility of data assets across the organisation;</li>\n<li>Utilising data discovery tools and techniques to help identify sensitive data and its locations;</li>\n<li>Maintaining an up-to-date inventory of data assets, including classification and documented protection measures;</li>\n<li>Working closely with IT, compliance, and legal teams to help ensure alignment on data protection requirements and implementation plans;</li>\n<li>Serving as a point of contact for data security inquiries by triaging requests and connecting teams with the right standards, processes, and subject matter experts;</li>\n<li>Promoting strong collaboration and alignment with broader GRC capabilities and ways of working.</li>\n</ul>\n<p>The primary location for this role will be Creve Coeur, MO (St. Louis, MO metro area).</p>\n<p>If you&#39;re interested in this opportunity, please submit your application.</p>\n<p style=\"margin-top:24px;font-size:13px;color:#666;\">XML job scraping automation by <a href=\"https://yubhub.co\">YubHub</a></p>","url":"https://yubhub.co/jobs/job_f8c5a32f-1c7","directApply":true,"hiringOrganization":{"@type":"Organization","name":"Bayer","sameAs":"https://talent.bayer.com","logo":"https://logos.yubhub.co/talent.bayer.com.png"},"x-apply-url":"https://talent.bayer.com/careers/job/562949976820204","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":"$114,400 - $171,600","x-skills-required":["Cyber Security","Risk Management","Compliance","Data Classification","Data Protection","Security Standards","Auditing","Strategic Planning","Team Collaboration","Communication"],"x-skills-preferred":["CISSP","CISM","CRISC","Security+"],"datePosted":"2026-04-18T22:10:56.879Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Creve Coeur"}},"employmentType":"FULL_TIME","occupationalCategory":"IT","industry":"Pharmaceuticals","skills":"Cyber Security, Risk Management, Compliance, Data Classification, Data Protection, Security Standards, Auditing, Strategic Planning, Team Collaboration, Communication, CISSP, CISM, CRISC, Security+","baseSalary":{"@type":"MonetaryAmount","currency":"USD","value":{"@type":"QuantitativeValue","minValue":114400,"maxValue":171600,"unitText":"YEAR"}}}]}