Kforce has a client that is seeking an IT GRC Manager in Tampa, FL. Key Responsibilities: * Conduct comprehensive IT risk assessments, including identifying and analyzing potential threats and vulnerabilities across applications, infrastructure, and data * Develop and maintain risk registers, documenting identified risks, their potential impact, and mitigation strategies * Collaborate with IT and business stakeholders to prioritize and remediate identified risks * Assess impact of IT changes to policies, risks, controls, and governance process (including but not limited to disaster recovery, RCM) * Maintain and update the Risk and Control Matrix * Evaluate the design and monitor the execution of management's SOX controls * Participate in business process walkthroughs to identify application controls, reports, and ITGC dependencies/risks * Review SOC reports and map control deficiencies to relevant IT risks * Ensure all control evidence of operating is maintain timely, with appropriate detail for all IT controls; own the development, reporting, completion of control remediation plans * Train and educate IT teams and control owners on the effective operation of controls * Identify the application controls, interfaces/batch jobs and reports key to supporting SOX business processes * Evaluate the design and effectiveness of application controls * Evaluate the design and effectiveness of controls intended to mitigate data transfer errors/incompleteness * Evaluate the design (completeness and accuracy) of reports used for key controls * Develop and implement a third-party risk management program * Monitor and manage risks associated with third-party relationships * Develop, maintain, and test the IT disaster recovery plan, inclusive of supporting audits and requests for understanding and evidence by 3rd parties * Perform cyber security posture evaluations