This is a unique opportunity to join an international company as a Manager Information Security Governance (located in Bucharest, Romania), reporting to the VP and Information Security Officer.
As a Governance Manager, you will be responsible for the overall enterprise-wide governance programs. In this role, you will be responsible for the hands-on design, implementation, and effective management of the programs and the shaping of the security policies, standards, and procedures aligned with the overall cybersecurity strategy and training and awareness programs.
You will provide subject matter expertise and leadership on mature security governance structures and processes. This role requires a combination of a strong GRC background and business acumen to manage relationships between the various business units and IT groups.
You will be responsible for designing and leading a comprehensive governance program, including the establishment of security policies, standards, and procedures by taking a risk-based approach with the program design.
You will be using the NIST 800-53, 800-171, and ISO 27001 requirements as a guide in the program design. You will be work cooperatively with others and solicit input from the various areas of the organization.
You will be implementing and managing the governance processes and educating and training the organization on the new governance programs and measuring and reporting on all aspects of the programs.
You will be serving as the primary subject matter expert and leader on all aspects of governance. Providing regular reports to the Director Governance, Risk & Compliance and the Chief Information Security Officer (CISO) and, when needed to other internal or external entities on all aspects of this role responsibilities, including adequate metrics on each of the programs.
You will be making independent decisions or representing leadership at times. Mentor and manage others to increase team competency and continually build a culture of constant improvement and a desire to excel.