Information Security Governance Manager (Grc)

A FTSE 100 Media Group requires anInformation Security Governance Manager (GRC) to work in a remote / hybrid-based position.

The Information Security Governance Manager role will be a key contributor to establishing and maintaining a robust governance framework that ensures the strategic alignment of Information Security initiatives with organisational objectives. The role involves developing, implementing and maintaining policies and procedures, advising senior management on governance strategies, and overseeing the overall adherence to Security Governance principles.

Effective liaison and relationship building with key business stakeholders is the crucial element of this position to ensure Information Security management solutions are delivered effectively.

Responsibilities - Information Security Governance Manager

Governance and Control Framework:

• Work closely with senior management to define and communicate the strategic vision and framework for Information Security governance.
• Lead on the design, implementation and review of the Control Framework.

Policy Framework Development:

• Develop, implement, review, and update Information Security policies and standards in accordance with regulatory requirements and industry standards.
• Ensure that policies and policy requirements are effectively communicated and clearly articulated across the organisation.

Strategic Alignment:

• Collaborate with business units and stakeholders to align Information Security initiatives with organisational goals and objectives.
• Provide expert guidance to senior management on integrating Security Governance into overall business strategy.

Compliance Governance Oversight:

• Partner with the IT Compliance function to advise on, and support with, the monitoring and assessment of the organization's compliance with relevant laws, regulations, and industry standards.
• Support customer due diligence requests to validate adherence to Information Security governance requirements.

Risk Governance Oversight:

• Partner with the Information Security Risk Management function to advise on, and contribute, to the development and execution of risk management strategies within the governance framework.
• Support with the monitoring and reporting on the status of risk and of risk mitigation efforts.

Continuous Improvement:

• Drive continuous improvement initiatives for Information Security governance processes.
• Identify and implement opportunities to enhance the efficiency and effectiveness of governance-related activities.

Skills & Experience - Information Security Governance Manager

• Considerable experience in Information Security (InfoSec) GRC fundamentals, with strong experience of Information Security Governance.
• Proven stakeholder management and engagement skills.
• Ability to provide strategic guidance on governance matters.
• Strong understanding of security frameworks, standards, and best practices (ISO 27001, NIST, GDPR, etc.)
• In-depth understanding of Security Governance frameworks and principles.
• Ability to form complex communications/messages in a simple, clear and concise manner to the various parts of the group.
• Excellent written and verbal communication, negotiation, persuasive and presentation skills.
• Effective and creative problem-solving skills.
• Proven track record of operating in time-critical, diverse, creative and corporate environments.
• Experience working with multiple stakeholders.
• Ability and confidence to prioritise and balance conflicting and diverse demands from technical and business perspectives.

ThisInformation Security Governance Manager is an exceptional opportunity to join a renowned Information Security team of a FTSE 100 Blue Chip organisation with a high-quality reputation and a flexible, collaborative culture. The department is currently experiencing high growth which will offer the right candidates fast-track career promotion opportunities.

For further information and to register your interest please apply with your CV details