Manager, Information Security - Governance, Risk, and Compliance

Clarivate is searching for a Manager, Information Security – Governance, Risk, and Compliance to join our team. In this role you will be a part of the Governance, Risk and Compliance (GRC) function of the Information Security team at Clarivate, a dynamic team that is works across the company at all levels. You will be responsible for maintaining and leading our certification activities and initiatives related to information security and privacy and leading audit processes and key security initiatives.

About You – experience, education, skills, and accomplishments 

• Bachelor’s degree in a relevant field or equivalent relevant work experience
• 3+ years demonstrated experience in security and privacy standards at a global company
• 2+ years demonstrated experience in leading a team

It would be great if you also have… 

• Security certifications – CISO, CISSP and/or CISM preferred
• Experience with information security compliance assessments
• Experience working on customer security RFPs
• Experience with ISO Certifications, SOC 2, PCI-DSS and NIST standards
• Understanding of business continuity planning, vulnerability assessments, and incident management
• Project management skills to drive projects and initiatives across multiple departments
• Experience in creating and implementing processes
• Knowledge of risk assessment and security baselines
• Knowledge of ISO Certifications and NIST standards
• Experience handling tasks in a matrixed organization

What will you be doing in this role?  

• Implement and maintain the key initiatives/projects focused on the reduction of security risks, governance, and compliance to policies.
• Lead and maintain information security compliance assessment on existing standards, systems, processes, and technologies.
• Lead internal and external audit processes of Information security certification and standards
• Inform about security concerns with recommended courses of action
• Participate in the security risk management program and methodologies 
• Participate in completing customer’s security audits, questionnaires, RFPs, and tenders
• Review proposed changes on an ongoing basis to determine the impact on security and privacy

About the Team  

We are a team of 33 security professionals from various walks of life with diverse experience. We are spread out across the world with team members located in North America, Europe, and Asia. We support our organization’s internal teams and customer relations activities. The manager for this role is in North America. As a security team, our focus lies in four main areas (pillars) – Security Engineering and Operations, Product security, Security Architecture, and Governance Risk and Compliance. Our Security Architecture pillar provides the shared services of trusted design partners and advisory services to corporate and business led initiatives, including security solutions to enable all manner of practices, integrations and innovations across our entire enterprise

Hours of Work

• Fulltime 
• Hybrid working model (office and home based) 

Clarivate is an Equal Opportunity Employer Vets/Minorities/Women/Disabled