Governance, Risk and Compliance Coordinator

Job Posting Organization:
CERN, the European Organization for Nuclear Research, is a leading scientific research organization established to probe the fundamental structure of the universe. Founded in 1954, CERN employs thousands of physicists and engineers who work collaboratively to explore the basic constituents of matter using the world's largest and most complex scientific instruments. The organization operates in multiple countries and is known for its groundbreaking contributions to particle physics and technology, fostering an environment of innovation and collaboration.

Job Overview:
The Governance, Risk, and Compliance Coordinator will play a pivotal role in the CERN Office of the CIO, focusing on the coordination of policies and adherence assessments in areas such as Governance, Risk, and Compliance (GRC). This position involves leading and coordinating GRC activities, representing the OCIO in senior management forums, and ensuring alignment with organizational goals. The successful candidate will develop and manage work plans, monitor progress, and proactively identify risks or issues that may arise. Additionally, the role requires serving as the primary contact for all audit-related matters within the CIO function, ensuring that the organization adheres to established policies and frameworks.

Duties and Responsibilities:

• Lead and coordinate Governance, Risk, and Compliance activities across the Office of the CIO (OCIO).
• Represent the OCIO in senior management forums and technical committees, ensuring alignment and visibility of GRC initiatives.
• Develop and manage OCIO work plans, monitor progress, and proactively flag risks or issues to the CIO.
• Serve as the primary point of contact for all audit-related matters within the CIO function.
• Design and implement policy frameworks in areas such as data governance, cybersecurity, and computing architecture.
• Facilitate stakeholder management and multi-party collaboration.
• Conduct thorough analysis and provide insights on risk management methodologies and enterprise risk frameworks.
• Ensure familiarity with cybersecurity standards and best practices, such as ISO 27001 and NIST.
• Engage in process analysis, definition, and improvement to enhance operational efficiency. 1
• Promote best practices for implementing ICT security" style="border-bottom: 1px dotted #007bff !important;">security standards and policies.

Required Qualifications:

• A Master's Degree or PhD in Information Technology or a related field, or equivalent relevant experience.
• Proven ability to design and implement policy frameworks in data governance, cybersecurity, and computing architecture.
• Strong stakeholder management skills, with experience in facilitating collaboration among diverse groups.
• Excellent analytical skills, with the ability to work effectively in a federated environment with distributed responsibilities.
• Understanding of risk management methodologies and enterprise risk frameworks.
• Familiarity with cybersecurity standards and best practices, such as ISO 27001 and NIST.

Educational Background:
Candidates must possess a Master's Degree or PhD in Information Technology or a related field. Equivalent relevant experience may also be considered. The educational background should include a strong foundation in information technology principles, governance frameworks, and risk management methodologies.

Experience:
Candidates should have substantial experience in designing and implementing policy frameworks, particularly in areas related to data governance, cybersecurity, and computing architecture. Experience in stakeholder management and facilitating collaboration among multiple parties is essential. A strong understanding of risk management methodologies and enterprise risk frameworks is also required, along with familiarity with cybersecurity standards and best practices.

Languages:
Fluency in spoken and written English is mandatory, with a commitment to learn French being highly desirable. Proficiency in additional languages may be considered an asset, enhancing communication within the diverse workforce at CERN.

Additional Notes:
This position is a limited duration contract for 5 years, with the possibility of extension up to 8 years and eligibility for an indefinite contract tenure. The role requires a commitment to working 40 hours per week, with hybrid job flexibility. The position may involve working during nights, Sundays, and official holidays as required by the needs of the organization. The job grade is classified as 6-7, and the reference for this job is CIO-2026-108-LD. CERN offers a competitive salary that is tax-free, along with 30 days of paid leave per year, comprehensive health insurance coverage, family allowances, and a relocation package depending on individual circumstances.