Senior Manager, Security and Compliance

About our Team:

• Information Security Governance is a growing, flexible global technology team with the goal of protecting Sage’s profitability, reputation and assets from threats, and ensure integrity, confidentiality, and availability of data.
• The team is part of the Strategy, Governance, & Innovation department with the overall objective of protecting Sage, providing transparency and direction, and enabling growth and operational excellence.

Could you be our new Senior Manager, Security and Compliance? Are you 

• Experienced in managing and leading a high performing team in security, privacy and data protection.
• Knowledgeable regarding IT infrastructure with proficiency in security tools and technologies.
• Experienced with or formal qualifications in CISSP, CISM or similar and continuous professional learning.
• Knowledgeable with a  passion for the latest security trends and technologies
• Experienced in working flexibly and closely with your team in a fast-paced environment with multiple in-flight products and projects.
• Skilled in customer management, influencing and communication skills, with the ability to communicate sophisticated security and privacy concepts to a non-technical audience.
• In possession of extensive experience in data protection legislation including GDPR and CCPA/CPRA and security standards including SOC2, PCI and NIST.
• Experienced in successfully leading enterprise-wide change initiatives
  

Your new role:

• You will deliver leadership, mentorship, and strategically aligned tactical direction for a team of security, governance and compliance analysts and engineers helping to grow the team and fostering a culture of security by design, innovation, and collaboration.
• You will influence and negotiate with key stakeholders to prioritize remediation of security issues, ensure alignment and adherence to the control environment and mitigate threats to Sage.
• You will lead the Infrastructure & Operations response to security incidents, including investigation, containment and remediation.
• You will ensure effective monitoring of security systems and alerts. Use security and compliance reporting to enable effective decision making and prompt and effective responses.
• You will develop and enhance Sage’s control environment that defines the roles, responsibilities, processes, policies, and standards for the effective and secure use of technology solutions at Sage.
• You will enforce compliance to regulations, standards and internal policies, using key performance indicators, audits and ongoing monitoring and reporting.
• You will provide thought leadership, research, and evaluate emerging security trends and technologies, regulations, and standard methodologies to find opportunities and challenges for improving our security position.
• You will support the team through key events and improve our approach to Data Subject Access Requests, data concerns, business continuity events and security incidents.
• You will take the lead on key audits including Finance, PCI, SOC2, and StateRAMP.

Additional information

This job description is not a contract. You must fulfill each key accountability. SAGE may modify or add responsibilities based on business requirements. You may be assigned additional tasks beyond your primary role. SAGE UK is an equal opportunities employer and embraces diversity.

Whilst this role is advertised as full- time, we are also open to discussing part-time and flexible options if suitable within the role.

Overview of benefits:

• 25 days holiday excluding bank holidays full-time/pro-rated for part-time roles
• 2 additional ’floating days’ of personal leave, in recognition that each of us has cultural, religious, or family commitments that fall at times when the company is not closed.
• Life assurance
• Income protection
• Access to Sage books and journals
• Tuition scheme and support for pursuing professional qualifications
• Hybrid working arrangements - In office 20% of contracted hours. We work flexibly and most staff can choose to work from home for up to 80% of their contracted hours.

Other benefits, which may change include:

• Variety of snacks and beverages available in the office
• Home working allowance
• Travel insurance
• Healthy lifestyle reimbursement
• Access to the Company doctor
• Access to Company loans (season ticket loan, rental deposit loan, cycle loan)
• Anniversary trip

If you have a disability and need any support during the application process, please contact humanresources@sagepub.co.uk. We will respond to any requests for support in a timely manner. All qualified applicants are encouraged to apply.

A cover letter is important to us, this offers the hiring manager valuable insights into how your skill set aligns with the role, what unique contributions you can bring to the team and why you are interested in this position. Therefore, when applying for this role online, please upload your cover letter and CV as one document.

Applications without a cover letter may regrettably not be reviewed.

Diversity, Equity, and Inclusion

At Sage we are committed to building a diverse and inclusive team that is representative of all sections of society and to sustaining a culture that celebrates difference, encourages authenticity, and creates a deep sense of belonging. We welcome applications from all members of society irrespective of age, disability, sex or gender identity, sexual orientation, colour, race, nationality, ethnic or national origin, religion or belief as creating value through diversity is what makes us strong.  As a business and as an organisation with an increasingly agile workforce, we're open to flexible working arrangements where appropriate.