Global Lead, Governance, Risk, Compliance

IntroductionWelcome to Gallagher - a global community of people who bring bold ideas, deep expertise, and a shared commitment to doing what’s right. We help clients navigate complexity with confidence by empowering businesses, communities, and individuals to thrive. At Gallagher, you’ll find more than a job; you’ll find a culture built on trust, driven by collaboration, and sustained by the belief that we’re better together. Whether you join us in a client-facing role or as part of our brokerage division, our benefits and HR consulting division, or our corporate team, you’ll have the opportunity to grow your career, make an impact, and be part of something bigger. Experience a workplace where you’re encouraged to be yourself, supported to succeed, and inspired to keep learning. That’s what it means to live The Gallagher Way.OverviewThe Global Lead of Governance, Risk, and Compliance (GRC) for our Global Safety & Security program will establish, lead, and mature our global physical security governance framework. This senior leadership role will ensure that our physical security program operates in compliance with international regulations, industry standards, and internal policies while effectively managing physical security risk across our worldwide operations. This position will serve as the primary authority on physical security compliance, audit readiness, and risk mitigation strategies.How You'll Make An ImpactGovernance & Policy ManagementDevelop, implement, and maintain a comprehensive global physical security governance framework aligned with enterprise risk management and corporate governance standardsCreate initial set of core physical security policies, standards, and procedures for global deploymentEstablish policy management processes including review cycles, approval workflows, and version controlDefine roles, responsibilities, and accountability structures for physical security across the organization (RACI frameworks)Establish a governance committee with cross-functional representation to oversee policy adherence and updatesBuild relationships and establish regular collaboration with Legal, HR, Compliance, Enterprise/Regional Risk Management, and Operations teamsRisk ManagementCreate and implement a departmental physical security risk register to track identified threats and vulnerabilitiesDevelop and maintain Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) to measure control effectivenessManage the risk exception and acceptance process, ensuring clear documentation, approvals, and remediation trackingAlign regional and functional risk activities with corporate enterprise risk management processesCompliance & Regulatory ManagementOversee compliance alignment with frameworks like ISO 27001, SOC2, GDPR, and insurance industry regulatory obligationsMap physical security compliance across jurisdictions, identify gaps with regulations, and document system requirements (e.g., CCTV, access control, biometrics)Develop compliance monitoring, control testing protocols, and a system to track regulatory changesCoordinate internal and external audits, evidence collection, and remediation plansThird-Party & Vendor Risk ManagementDocument vendor relationships, develop risk assessment criteria, and monitor vendor performanceCreate standard physical security requirements for vendor contractsMetrics & ReportingDefine physical security metrics, implement incident tracking, and measure program maturityDevelop executive dashboards and reporting templatesAbout YouRequired: Bachelor's degree in Corporate/Information Security, Criminal Justice, Crisis Management, Business, or related field + 9 years of experience in one or all of the following disciplines; corporate security management, security and asset policy development, and physical security infrastructure design, within a multi-location global corporate environment or 15+ years of applicable experience. Excellent written and verbal communication skills with ability to concisely and effectively address questions while providing subject matter expertise on policy to associates and management across diverse global sites. Ability to travel (10%).Preferred:Compliance & Regulatory ManagementOversee compliance alignment with frameworks like ISO 27001, SOC2, GDPR, and insurance industry regulatory obligationsMap physical security compliance across jurisdictions, identify gaps with regulations, and document system requirements (e.g., CCTV, access control, biometrics)Develop compliance monitoring, control testing protocols, and a system to track regulatory changesCoordinate internal and external audits, evidence collection, and remediation plansThird-Party & Vendor Risk ManagementDocument vendor relationships, develop risk assessment criteria, and monitor vendor performanceCreate standard physical security requirements for vendor contractsMetrics & ReportingDefine physical security metrics, implement incident tracking, and measure program maturityDevelop executive dashboards and reporting templatesCompensation And BenefitsWe offer a competitive and comprehensive compensation package. The base salary range represents the anticipated low end and high end of the range for this position. The actual compensation will be influenced by a wide range of factors including, but not limited to previous experience, education, pay market/geography, complexity or scope, specialized skill set, lines of business/practice area, supply/demand, and scheduled hours. On top of a competitive salary, great teams and exciting career opportunities, we also offer a wide range of benefits.Below are the minimum core benefits you’ll get, depending on your job level these benefits may improve:Medical/dental/vision plans, which start from day one!Life and accident insurance401(K) and Roth optionsTax-advantaged accounts (HSA, FSA)Educational expense reimbursementPaid parental leaveOther benefits include:Digital mental health services (Talkspace)Flexible work hours (availability varies by office and job function)Training programsGallagher Thrive program – elevating your health through challenges, workshops and digital fitness programs for your overall wellbeingCharitable matching gift programAnd more... The benefits summary above applies to fulltime positions. If you are not applying for a fulltime position, details about benefits will be provided during the selection process. We value inclusion and diversityClick Here to review our U.S. Eligibility RequirementsInclusion and diversity (I&D) is a core part of our business, and it’s embedded into the fabric of our organization. For more than 95 years, Gallagher has led with a commitment to sustainability and to support the communities where we live and work.Gallagher embraces our employees’ diverse identities, experiences and talents, allowing us to better serve our clients and communities. We see inclusion as a conscious commitment and diversity as a vital strength. By embracing diversity in all its forms, we live out The Gallagher Way to its fullest.Gallagher believes that all persons are entitled to equal employment opportunity and prohibits any form of discrimination by its managers, employees, vendors or customers based on race, color, religion, creed, gender (including pregnancy status), sexual orientation, gender identity (which includes transgender and other gender non-conforming individuals), gender expression, hair expression, marital status, parental status, age, national origin, ancestry, disability, medical condition, genetic information, veteran or military status, citizenship status, or any other characteristic protected (herein referred to as “protected characteristics”) by applicable federal, state, or local laws.Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination. In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified person with a disability, unless the accommodation would impose an undue hardship on the operation of our business.