The Information Security Governance Lead will:
- Assist the Global CISO in the development and delivery of the global Information Security program
- Work with the Global CISO, IT and business stakeholders to define and capture reporting metrics on the security program and its initiatives
- Support the maturing of the security program to ensure it is scalable and alignment with business needs and risk appetite
- Contribute to the development and implementation of Information Security policies, standards and guidelines
- Make recommendations regarding security exceptions and associated mitigating controls
- Contribute and manage the development of security knowledge and awareness within the network
- Design and implement Security Governance processes
- Support the delivery of security change initiatives within the network
- Knowledge and experience of cyber security and resilience
- Experience with security frameworks such as ISO27001 and NIST Cyber Security Framework
- Excellent knowledge and understanding of IT risks and threats and able to communicate and discuss with different stakeholders to understand potential areas of improvement for the area being evaluated
- Excellent communication skills and enjoys working in fast-paced environment
- Experience of writing technology and/or security policies, standards and procedures
- Deep knowledge and experience of IT/Security governance and compliance frameworks
- Must be skilled in stakeholder engagement at all levels, with people from business and technical backgrounds, internal and external facing.
- The ability to concisely communicate security concepts to a broad audience, relating them to business value
- High degree of initiative and ability to identify areas of improvement and work with stakeholders to enhance and improve security
- Proven track record of end to end delivery of security project, processes and solutions