IT Security Manager Senior
US NY NYC Virtual, Estados Unidos
Full Time Senior-level / Expert USD 167K - 281K
FIS
FIS is fintech for bold ideas. FIS is behind the financial technology that transforms how we live, work and play.Job Description
About FIS
Are you curious, motivated, and forward-thinking? At FIS, you will have the opportunity to work on some of the most challenging and relevant issues in financial services and technology. Our talented people empower us, and we believe in being part of a team that is open, collaborative, entrepreneurial, passionate and above all fun.
About the Team
This team is led by an IT Security Executive supporting the Chief Information Security Officer (CISO). The focus within this team is cybersecurity governance, policy and risk management.
About the role
Support the Head of Cyber Governance in developing, implementing and managing a formal cyber governance program. Lead initiatives to enhance governance oversight and better manage information security risks across the enterprise.
Improve governance and risk management processes including but not limited to conducting risk assessments, enhancing and operating security risk acceptances and policy exceptions, and developing metrics and reporting. Proactively plan for awareness and change management activities to improve adoption of security policies and requirements.
Provide oversight and subject matter expertise for developing and enhancing policies and the global security awareness program. Must be comfortable working with cross-functional stakeholders and senior leaders and being an effective team leader with a focus on coaching and skills development.
What you will be doing
· Mature and operate a leading practice cyber governance and risk management program with supporting processes and tools.
· Implement and support processes to provide governance oversight, and manage security risks through its lifecycle, including identification, assessment, treatment, monitoring and reporting.
· Translate threat and risk concepts into business impact, and communicate risks to the business with clarity, accuracy and transparency, driving accountability of risk ownership at the right levels.
· Provide guidance on cybersecurity matters, security policies and standards, and security controls and requirements. Work closely with the Risk and Compliance teams on driving adherence to security controls and requirements and aligning risk management.
· Work with line of business and technology to review and provide feedback into risk management and remediation plans.
· Be a key point of contact for the Business Information Security (BISO) functions on governance and risk exception activities impacting regions and regional lines of businesses.
· Lead transformation projects and initiatives to enhance cyber governance and risk management.
· Lead a small team, providing oversight and direction for enterprise security policies and the global security awareness program.
· Work closely with peers and security teams in managing risk to FIS.
· Develop metrics and reporting to bring visibility into the risk posture of FIS and assist with executive reporting.
· Collaborate with Corporate Communications, Legal, Compliance and other stakeholder groups, as needed, to ensure security measures align with organizational goals and objectives, and to communicate key messages and changes related to policy updates and the cyber governance and risk management program.
What you bring
· Minimum of 9 years of relevant experience based on industry and prior job responsibilities.
· Advanced experience in cybersecurity, governance and risk management concepts, keeping up with emerging threats and technologies, relevant industry regulations and best practices.
· Excellent verbal and written communication skills with ability to translate complex cyber topics to technical and non-technical stakeholders
· Strong collaboration and coordination skills, connecting dots across teams in the organization.
· Self-learner and self-starter with ability to work independently and juggle multiple, shifting priorities.
· Strong strategic thinking, critical analysis, and problem-solving skills.
· Knowledge of cybersecurity frameworks and standards such as ISO 27001, NIST CSF, CIS controls, PCI etc.
· Experience with managing, coaching, and developing a small team delivering governance, policies and security awareness activities.
· Experience in working with the complexities of large global organizations.
· ServiceNow and Archer platform experience is a plus.
· Ability to travel 15% to 25% within United States.
Bonus if you have
· ServiceNow and Archer platform experience.
What we offer you
· Flexible and creative work environment.
· Diverse and collaborative atmosphere.
· Professional and personal development resources.
· Opportunities to volunteer and support charities.
· Competitive salary and benefits.
Privacy Statement
FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.
EEOC Statement
FIS is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, genetic information, national origin, disability, veteran status, and other protected characteristics. The EEO is the Law poster is available here supplement document available here
For positions located in the US, the following conditions apply. If you are made a conditional offer of employment, you will be required to undergo a drug test. ADA Disclaimer: In developing this job description care was taken to include all competencies needed to successfully perform in this position. However, for Americans with Disabilities Act (ADA) purposes, the essential functions of the job may or may not have been described for purposes of ADA reasonable accommodation. All reasonable accommodation requests will be reviewed and evaluated on a case-by-case basis.
Sourcing Model
Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.
#pridepass
Tags: BISO CISO Compliance Governance ISO 27001 Monitoring NIST Privacy Risk assessment Risk management Travel
Perks/benefits: Career development Competitive pay Flex hours Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.