VP, Cloud Control Framework Governance Leader

Job Description:

Role Summary/Purpose:

The VP, Cloud Control Framework Governance Leader is responsible for leading the development, implementation, and on-going management of Governance, Risk, and Compliance (GRC) and Integrated Risk Management (IRM) processes using the ServiceNow platform. This role will focus on technology-related risks and controls in public cloud environments. Leveraging influence and collaboration, this role will work closely with various stakeholders to ensure that the organization’s risk and compliance requirements are met efficiently and effectively. The role will require process-oriented leadership, cross-functional awareness, and a strong background in risk management, compliance, and audit in order to develop adaptable and scalable processes. 

Our Way of Working

We’re proud to offer you choice and flexibility. At Synchrony, our way of working allows you to have the option to work from home, near one of our Hubs or come into one of our offices. Occasionally you may be required to commute to our nearest office for in person engagement activities such as business or team meetings, training and culture events. 

Essential Responsibilities: 

• Define the implementation and optimization strategy for ServiceNow IRM, focusing on establishing a centralized governance framework and implementing continuous monitoring of compliance and risk indicators. 

• Oversight and integration of ServiceNow IRM with existing systems to drive efficiency. 

• Develop a ServiceNow IRM implementation roadmap that aligns with industry standards and organizational goals. 

• Utilize ServiceNow IRM to map controls to both external industry frameworks and internal policies, including cross-mapping controls to meet requirements across multiple regulatory frameworks (e.g., NIST CSF, CRI-CP, SOX, HIPAA, PCI) and integrating internal policies with external regulations, industry standards and best practices. 

• Evaluate ServiceNow IRM's risk assessment capabilities to conduct automated risk assessments using both asset and process-centric methodologies. 

• Determine qualitative and quantitative risk scores informed by service performance data. 

• Collaboration with a small team of Governance professionals based in US and India to ensure proper implementation of cloud controls.  

• Provide technical leadership to the GRC development team, guiding them in implementing solutions. 

• Provide fact-based insights utilizing data visualization tools like Tableau to create insightful risk and compliance dashboards. 

• Champion adherence to internal requirements, regulatory requirements, and industry best practices. 

• Leadership of the end-to-end delivery of GRC projects, focusing on the design and implementation of security and compliance processes to support regulatory requirements and reduce organizational risk. 

• Develop and deliver training for internal users on how to use ServiceNow IRM and foster a risk management-oriented culture. 

• Perform other duties and/or special projects as assigned. 

Qualifications/Requirements:

• Minimum of 8+ years of experience in a technology governance or engineering role; OR in lieu of a degree, 12+ years of experience in technology governance roles.  

• 5+ years of experience implementing GRC/IRM functions. 

• 7+ years of experience in audit, compliance, or risk management with a proven track record of implementing GRC programs, process improvements, and platforms. 

• 3+ years of operating in a cloud environment, preferably AWS and/or Azure 

• Understanding of risks and controls in cloud environments including regulatory / compliance frameworks (e.g., NIST CSF v2.0, CRI-CP v2.0, COBIT2019, PCI v4.0) 

• Experience driving cross-functional collaboration. 

• Experience managing large complex GRC projects, including resource allocation, timeline management, and status reporting. 

• Experience demonstrating verbal and written communication skills to facilitate workshop sessions, collaborate across teams, and engage with stakeholders. 

• Ability to travel up to 10%   

Desired Characteristics: 

• In-depth experience with ServiceNow

• Strong background in developing and optimizing risk management and compliance processes. Proven ability to design workflows that support consistent application of security and compliance policies. 

• Agile implementation skills to review requirements, user stories, and testing.

• ServiceNow Certified Implementation Specialist – GRC/IRM 

• ServiceNow Certified Administrator – CSA 

• AWS (Cloud Practitioner, Associate Solutions Architect) 

• ISACA Certifications (CRISC, CISM, CISA) 

• ISC2 Certifications (CISSP) 

• Strong leadership and team management skills. 

• In-depth understanding of cloud governance and compliance principles. 

• Experience with policy development and enforcement. 

• Ability to work in a fast-paced, dynamic environment. 

• Strong analytical, problem-solving, and decision-making abilities. 

• Effective communication and collaboration skills. 

Grade/Level: 13

The salary range for this position is 130,000.00 - 210,000.00 USD Annual and is eligible for an annual bonus based on individual and company performance.

Actual compensation offered within the posted salary range will be based upon work experience, skill level or knowledge.

Salaries are adjusted according to market in CA, NY Metro and Seattle.

Eligibility Requirements:

• You must be 18 years or older

• You must have a high school diploma or equivalent

• You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process

• You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.

• New hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles.  Once this new hire time in position requirement is met, the associate will have a minimum 6 months’ time in position before they can post for future non-exempt roles.  Employees, level 8 or greater, must have at least 18 months’ time in position before they can post.  All internal employees must consistently meet performance expectations and have approval from your manager to post (or the approval of your manager and HR if you don’t meet the time in position or performance expectations).

Legal authorization to work in the U.S. is required.  We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. 

Our Commitment:

When you join us, you’ll be part of a diverse, inclusive culture where your skills, experience, and voice are not only heard—but valued. We celebrate the differences in all of us and believe that our individual, unique perspectives is what makes Synchrony truly a great place to work. Together, we’re building a future where we can all belong, connect and turn ideals into action. Through the power of our 8 Diversity Networks+, with more than 60% of our workforce engaged, you’ll find community to connect with an opportunity to go beyond your passions.

This starts when you choose to apply for a role at Synchrony. We ensure all qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status.

Reasonable Accommodation Notice:

• Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

• If you need special accommodations, please call our Career Support Line so that we can discuss your specific situation. We can be reached at 1-866-301-5627.   Representatives are available from 8am – 5pm Monday to Friday, Central Standard Time

Job Family Group: