Control Design & Modernization Specialist
Role Overview As part of Client's GRC Modernization Program, we are seeking experienced Control Design & Modernization Specialists to help transform and standardize the control environment across Enterprise Security & Fraud (ES&F). This role is focused on designing the future-state control framework. Successful candidates will review existing policies, standards, risk assessments, audit observations, regulatory requirements, and current controls to identify opportunities for simplification, standardization, automation, and Continuous Controls Monitoring (CCM). Working closely with control owners, risk partners, and subject matter experts, you will design actionable, measurable, and scalable controls that support Client's evolving risk, regulatory, and business needs. Key Responsibilities Control Assessment & Discovery Review policies, standards, procedures, risk assessments, audit findings, regulatory requirements, and existing control inventories. Assess current-state controls to identify gaps, overlaps, redundancies, and opportunities for improvement. Evaluate existing control frameworks against industry best practices and regulatory expectations. Future-State Control Design Design and document future-state controls that are risk-based, measurable, testable, and scalable. Develop clear control objectives, control activities, ownership models, evidence requirements, and implementation guidance. Rationalize and standardize controls across multiple ES&F functions to improve consistency and effectiveness. Design controls with automation and Continuous Controls Monitoring (CCM) capabilities in mind. Stakeholder Engagement Facilitate workshops and working sessions with security, technology, risk, compliance, audit, and business stakeholders. Challenge legacy approaches and drive alignment on future-state control designs. Build consensus across diverse stakeholder groups and ensure control designs meet business and regulatory expectations. GRC Modernization Support Contribute to the development of enterprise control libraries, control standards, taxonomies, and framework mappings. Support broader GRC modernization initiatives focused on improving control effectiveness, reducing complexity, and enabling scalable assurance. Identify opportunities to leverage automation, analytics, AI, and modern GRC practices to enhance control maturity.
location: Malvern, Pennsylvania
job type: Contract
salary: $59.18 - 64.18 per hour
work hours: 8am to 5pm
education: Bachelors responsibilities:
Role Overview
- As part of Client's GRC Modernization Program, we are seeking experienced Control Design & Modernization Specialists to help transform and standardize the control environment across Enterprise Security & Fraud (ES&F). This role is focused on designing the future-state control framework. Successful candidates will review existing policies, standards, risk assessments, audit observations, regulatory requirements, and current controls to identify opportunities for simplification, standardization, automation, and Continuous Controls Monitoring (CCM). Working closely with control owners, risk partners, and subject matter experts, you will design actionable, measurable, and scalable controls that support Client's evolving risk, regulatory, and business needs.
- Review policies, standards, procedures, risk assessments, audit findings, regulatory requirements, and existing control inventories.
- Assess current-state controls to identify gaps, overlaps, redundancies, and opportunities for improvement.
- Evaluate existing control frameworks against industry best practices and regulatory expectations.
- Design and document future-state controls that are risk-based, measurable, testable, and scalable.
- Develop clear control objectives, control activities, ownership models, evidence requirements, and implementation guidance.
- Rationalize and standardize controls across multiple ES&F functions to improve consistency and effectiveness.
- Design controls with automation and Continuous Controls Monitoring (CCM) capabilities in mind.
- Facilitate workshops and working sessions with security, technology, risk, compliance, audit, and business stakeholders.
- Challenge legacy approaches and drive alignment on future-state control designs.
- Build consensus across diverse stakeholder groups and ensure control designs meet business and regulatory expectations.
- Contribute to the development of enterprise control libraries, control standards, taxonomies, and framework mappings.
- Support broader GRC modernization initiatives focused on improving control effectiveness, reducing complexity, and enabling scalable assurance.
- Identify opportunities to leverage automation, analytics, AI, and modern GRC practices to enhance control maturity.
Qualifications Required Qualifications 8+ years of experience in cybersecurity, risk management, governance, compliance, controls design, internal audit, or related disciplines. Proven experience designing, enhancing, or transforming controls within financial services or other highly regulated industries. Robust experience translating policies, standards, risks, audit findings, and regulatory requirements into effective control designs. Deep understanding of control lifecycle management, including control design, implementation, testing, monitoring, remediation, and continuous improvement. Demonstrated ability to lead workshops and influence senior stakeholders. Robust analytical, documentation, and problem-solving skills. Excellent written and verbal communication skills. Preferred Qualifications Experience supporting large-scale GRC modernization, control transformation, or cybersecurity governance initiatives. Experience designing controls for Continuous Controls Monitoring (CCM) and automated assurance capabilities. Knowledge of AI Governance, AI Risk Management, and emerging AI-related regulatory requirements. Experience developing control libraries, taxonomies, framework mappings, and enterprise control standards. Robust knowledge of: NIST Cybersecurity Framework (CSF) NIST 800-53 ISO 27002 CIS Controls COBIT Consulting, risk advisory, internal audit, or Big Four experience robustly preferred. Professional certifications such as CISSP, CISM, CISA, CRISC, CIA, or CPA preferred.
Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status. At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact [email protected].
Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including: medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility). This posting is open for thirty (30) days. Any consideration of a background check would be an individualized assessment based on the applicant or employee's specific record and the duties and requirements of the specific job.
Recommended Jobs
Director of Finance & Operations
Job Description Job Description Salary: DIRECTOR OF FINANCE AND OPERATIONS, GWYNEDD-MERCY ACADEMY ELEMENTARY Gwynedd-Mercy Academy Elementary is a private, Catholic, co-educational academy …
Opener/Morning -Crew Member
Job Description Job Description JOB DESCRIPTION Looking to love where you work? Or just looking to learn the secret to delicious coffee? Here at Dunkin’ we’ll teach you life skills from day …
Commission Based Sales Representative Pittsburgh, PA
Job Description Job Description We seek an Outside Sales Representative in Pittsburgh, PA, that can build and maintain strong relationships; among a large and varied customer base within the rest…
Director Business Development-DMPK
Job Description Job Description Business Development Director Location: Home Based Locations: Boston Area Position Summary: The Business Development Director will work within a defined…
Travel Registered Nurse PICC Job
Job Overview TLC Nursing Associates, Inc. is seeking an experienced Registered Nurse (RN) – PICC to specialize in the placement, management, and removal of peripherally inserted central catheter…
Retail Brand Ambassador
Job Description Job Description Brand Ambassador - Downingtown, PACompetitive Pay with Uncapped Commission & Performance Incentives At Renuity, innovation and excellence drive everything we d…
Scheduler/Biller
Temple University's Kornberg School of Dentistry is searching for a Scheduler/Biller! As the second-oldest dental school in the U.S., the Maurice H. Kornberg School of Dentistry upholds a legacy of…
Senior Network Infrastructure Engineer
Job Description Job Description Working from our Philadelphia based headquarters, this individual supports, monitors, tests and troubleshoots hardware and software problems pertaining to the mult…
Cloud Storage Engineer
Job Description Job Description About Us AGE Solutions is a premier technology and professional services company, providing in-depth consulting, advanced technology solutions, and essential serv…
Compassionate Caregiver (CNA/HHA) Needed - Jenkintown
Compassionate Caregivers Needed – Join Our Family at Visiting Angels! Serving Seniors in Montgomery County & Philadelphia Are you a caring, reliable, and compassionate individual looking to …