Summary

Perdue is seeking a motivated cybersecurity professional to support and enhance our Governance, Risk, and Compliance (GRC) operations. This role will focus on vulnerability management, risk review, and maintaining the enterprise risk register, while contributing to policy development, regulatory compliance initiatives, and operational technology (OT) risk management.

The ideal candidate will help define and execute key workflows, support compliance automation, and build executive dashboards that drive visibility and informed decision making.

The salary range for this position is $97,000 - $145,000 per year, based on experience and qualifications with annual bonus available (variable depending on performance).

In addition to the base salary, Perdue offers a competitive benefits package, including medical/Rx, 401(k) with employer match after 1-year, critical illness, accident insurance, dental, vision, life insurance, optional group life insurance, short-term and long-term disability protection, flexible spending accounts and paid time off. 

This position is based at corporate headquarters in Salisbury, MD. Relocation assistance is available.

Principal and Essential Duties & Responsibilities

• Vulnerability Management:
  • Define and maintain vulnerability management process and procedure
  • Align identified vulnerabilities with enterprise risk management practices
  • Contextualize vulnerabilities based on environmental and business impact
  • Support remediation planning and prioritization efforts
• GRC Operational Support:
  • Define Risk Management operational processes to support risk review and maintain the enterprise risk register
  • Assist in building and optimizing GRC workflows and compliance automation
  • Support the definition of risk-related metrics including the development of executive dashboards to visualize risk posture and compliance status
• Policy and Standards:
  • Author, update, and maintain cybersecurity policies and standards
  • Ensure alignment with regulatory requirements and industry best practices
• Regulatory Compliance Initiatives:
  • Support efforts related to cybersecurity regulatory compliance and audit readiness
  • Assist with documentation and evidence collection for assessments
• Operational Technology Risk Management:
  • Contribute to the execution of risk management processes
  • Collaborate with cross-functional teams to assess and mitigate OT-related risks

Minimum Education

• Bachelor’s degree from an accredited four-year college or university.

Experience Requirements

• 2-5 years of professional experience in cybersecurity, risk management, security advisory, or GRC operations
• Practical understanding of vulnerability management processes, including remediation planning and prioritization
• Experience operating or contributing to enterprise risk registers and risk review procedures
• Familiarity with GRC or Vulnerability Management platforms
• Exposure to policy development, compliance initiatives, and regulatory frameworks such as NIST or CIS controls
• Ability to support cross-functional teams and communicate effectively with technical and non-technical stakeholders

Experience Preferred

• Experience developing Vulnerability Management or Governance, Risk, and Compliance programs
• Experience developing or maintaining cybersecurity policies, standards, or executive dashboards
• Understanding of regulatory frameworks such as NIST or CIS controls
• Strong security advisory background

Environmental Factors and Physical Requirements

• Position is mostly sedentary but may require occasional moving to other offices or buildings.
• May need to move light equipment or supplies from one place to another.
• May need to access files, supplies, and equipment.
• Work activity is in an office, open-partitioned, cubicle environment.