Information Security Officer – GRC & AI Governance
Location: Dublin City Centre (Hybrid – 2 days per week)
We are seeking an Information Security Officer to join a growing security function and play a key role in strengthening the organisation's governance, risk, compliance, and AI governance capabilities.
This position is ideally suited to a security professional with a strong GRC background that may have worked in professional services and looking to move inhouse.
Someone who can work effectively across both technical and business stakeholders. The successful candidate will help drive security governance, manage risk, support regulatory compliance, and oversee the secure adoption of emerging technologies, including AI solutions and third-party applications.
Key Responsibilities
- Conduct risk assessments and ensure appropriate controls are implemented and monitored.
- Develop, review, and maintain security policies, standards, and procedures.
- Lead and support AI governance initiatives, including AI risk assessments, policy development, and responsible AI practices.
- Assess security, privacy, and operational risks associated with AI technologies and emerging digital solutions.
- Evaluate the security posture of third-party applications, SaaS platforms, and technology suppliers throughout the onboarding and review lifecycle.
- Work closely with technology, procurement, legal, and business stakeholders to strengthen governance and risk management processes.
- Monitor emerging security, privacy, and AI regulations and ensure ongoing compliance.
Required Experience
- 3–7 years' experience within Information Security, Governance, Risk, and Compliance (GRC), Information Security, or Risk Management roles.
- Strong understanding of security frameworks such as ISO 27001, NIST, CIS, or similar.
- Experience conducting risk assessments, compliance reviews, and security governance activities.
- Experience managing third-party risk, supplier security assessments, and vendor due diligence.
- Understanding of AI governance principles, AI risk management, and emerging regulatory requirements.
- Excellent stakeholder management, communication, and reporting skills.
- Relevant certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Implementer/Auditor, or similar would be advantageous.
What's on Offer
- Exposure to AI governance, risk management, and emerging technology initiatives.
- Broad stakeholder engagement across technology and business functions.
- Strong career development opportunities within a progressive organisation.
