Manager, Information Security and Data Governance

Summary

Manager, Information Security and Data Governance is responsible for developing and implementing a strategic vision for the organization's data management, governance, protection, privacy and security, in compliance with company internal policies and procedures, contractual requirements and external regulations.

This role requires a leader who can maximize the effective use of data to drive business value while safeguarding the organization against data breaches and cyber threats. Leads cross-functional teams to establish robust data governance frameworks, secure the organization's digital assets, and promote a data-driven culture.

Leads a high-performing security and data governance team, provides strategic and tactical guidance, and complete execution of the cybersecurity program supporting global enterprise security initiatives, systems, applications and operations.

Essential Duties and Responsibilities

Information Security

• Develops and maintains a comprehensive cybersecurity strategy and security policies.
• Serve as an information security expert and trusted advisor for Information Infrastructure and Systems projects.
• Advises the executive team on security risks, compliance requirements, and best practices.
• Identifies current and emerging information security and compliance requirements of the organization and coordinates the implementation of solutions that address these requirements.
• Leads efforts to achieve and maintain compliance with relevant cybersecurity frameworks and standards (e.g., NIST, CMMC).
• Oversees cyber incident response plan and ensures alignment with the parent company's broader IT response strategy.
• Ensures consistency with IT processes, strengthens Greenpoint Technologies cyber threat resilience and optimizes reporting of identified threats and vulnerabilities.
• Leads a team of subject matter experts to ensure effective Information Security management throughout the IT service delivery lifecycle, including Security Operations, Security Architecture and Security Assurance.
• Provides oversight and assists as needed in investigating security breaches.
• Other duties as assigned.

Data Governance

• Establishes and implements a data governance framework that aligns with organizational objectives and regulatory requirements, including policies, standards, and procedures for data management.
• Creates and maintains a data register to document all data assets, their classifications, including ownership and stewardship roles to ensure accountability for data quality and compliance.
• Develops and maintains a data classification policy to guarantee proper handling, access, and segregation of sensitive information, including intellectual property.
• Partners with the business stakeholders to promote data governance initiatives supporting consistent and continuous adherence to data governance policies and procedures.
• Fosters a data-driven culture by providing training and resources to data stewards and users.
• Develops, monitors and enforces compliance with relevant regulations and standards related to data management and privacy.
• Ensures compliance with data privacy regulations (e.g., GDPR, CCPA) and industry standards.
• Develops and enforces data security policies to protect sensitive information, including Intellectual Property, from internal or external unauthorized access, usage and breaches.
• Implements processes and controls to safeguard intellectual property and proprietary information.
• Defines and enforces policies for IP handling, storage, and sharing to meet contractual requirements.
• Partners and collaborates with legal and contracts teams to ensure applicable contracts include provisions for data protection and IP security.
• Conducts regular audits and assessments to identify and address data governance gaps.
• Evaluates and implements data governance tools and technologies to support data management and compliance efforts.
• Monitors the effectiveness of data governance tools and make recommendations for improvements.
• Maintains regular attendance including being at work, being on time to work and working full shifts.
• Other duties as assigned.

Competencies

To perform the job successfully, an individual should demonstrate the following competencies:

Greenpoint Core Competencies

• Adaptability - Adapts to changes in the work environment, manages competing demands, and accepts constructive criticism/feedback and changes approach or method to best fit the situation.
• Communications - Expresses ideas and thoughts effectively in verbal and written form, exhibits good listening and comprehension, keeps others informed and uses appropriate communication methods.
• Dependability - Responds to requests for service and assistance, follows instruction and responds to management direction, takes responsibility for own actions and doing the best job possible, keeps commitments, and maintains reliable attendance.
• Initiative - Sets and achieves challenging goals, demonstrates persistence and overcomes obstacles, measures self against standard of excellence, recognizes and acts on opportunities, and takes calculated risks to accomplish goals.
• Teamwork - Balances team and individual responsibilities, exhibits objectivity and openness to others' views, gives and welcomes feedback, contributes to building a positive team spirit, and puts success of team above own interests.
• Work Quality - Demonstrates accuracy and thoroughness, displays commitment to excellence, looks for ways to improve and promote quality, applies feedback to improve performance, and monitors own work to ensure quality.

Job Core Competencies

• Planning & Organization – Prioritizes and plans work activities, uses time efficiently, plans for additional resources, integrates changes smoothly, sets goals and objectives, works in an organized manner.
• Use of Technology – Demonstrates required skills, adapts to new technologies, troubleshoots technological problems, uses technology to increase productivity, and keeps technical skills up to date.
• Analytical Skills – Synthesizes complex or diverse information, collects and researches data and uses intuition and experience to complement data.

Summary of Education, Experience & Certification

• Bachelor’s degree in Computer Science, Software Engineering, MIS or related field, with minimum of 7 years of security field experience, or equivalent combination of education and experience.
• Experience leading and collaborating with projects stakeholders and cross-functional team.
• People management experience, including mentoring, coaching, and developing talent.
• Employees working on programs subject to International Traffic in Arms Regulations must qualify as a US Person which is defined as a US Citizen, a Permanent Resident who does not work for a foreign company/foreign government/foreign governmental agency or organization, or a political asylee for legal compliance purposes.

Required Knowledge, Skills & Abilities

• Expertise in all areas of the Information Technology and Systems, preferably within Aerospace and Defense industries.
• Excellent understanding of best practice within Information Security and risk management including standards such as ISO/IEC 27001, NIST, CMMC, Cyber Essentials and CObIT.
• Strong knowledge of legislation and regulations that impact information Security. (E.g. Data Protection Act and GDPR, Freedom of Information Act, PCIDSS).
• Familiarity with current and emerging threats and countermeasures, including Application Security, and the related organizational challenges in addressing these threats.
• Practical knowledge of security technologies and wider business solutions including Firewalls, IDS/IPS, Identity and access management, SIEM, remote working and cloud technologies.
• Ability to analyze and understand internal business and broader customer requirements.
• Strong problem-solving skills with a critical thinking approach to address challenges during system implementation and integration.
• Proficient project management skills, including the management of timelines, resources, and stakeholders to ensure successful, on-time and quality project delivery.
• Familiarity with various operating systems, accounting software, databases, design tools, HR software, internet/intranet solutions, application development tools, CRM software, project management software, and office productivity software.
• Demonstrated adaptability to evolving technology landscapes and changing business requirements, coupled with a commitment to continuous learning and growth.
• Proven ability to manage teams, influence cross-functional stakeholders, and drive organizational change in security and data governance.
• Exceptional verbal and written communication skills, enabling effective interaction with both technical and non-technical stakeholders.
• Ability to address practical problems and navigate situations with limited standardization, interpreting instructions in written, oral, diagram, or schedule form.
• Ability to read, analyze, and interpret technical documents.
• Ability to effectively present information and respond to questions within all levels of an organization.
• Ability to sit and maintain focus for extended periods of time, use hands to lift and/or move up to 10 pounds, occasionally lift and/or move up to 25 pounds and have close/color vision ability to adjust focus.
• Ability to travel as required.
• Availability to be on call as required for system issue resolution.

Flexibility to work outside of regular business hours, when necessary.

The expected WA salary range for this position is between $121,000.00 - $166,000.00 USD. Actual compensation will be determined based on experience, education, location, and other factors permitted by law. Our suite of comprehensive benefits include healthcare (medical, dental & vision), life insurance, paid time off, and a 401(k) savings plan with company match.

About Greenpoint Technologies 
Greenpoint delivers nose-to-tail VIP Jet aircraft interiors for private clients and Heads-of-State.  We are proud to be known in the aerospace industry for our design and engineering innovation, award-winning company culture, and on-time delivery of our beautiful products. We use leading-edge tools and employee-built processes to deliver extraordinary, one-of-a-kind custom aircraft interiors.  It’s complex work, but we work smart.  In return for hard work, collaboration, and creativity, our people experience a culture custom built for high achievers:

• Big jobs and stretch assignments.
• High accountability environment, with transparent decisions aligned to values, open communication, and engaged leadership.
• Ability to make a big, visible impact on the end product. 

We welcome diverse contributions and provide equal employment opportunities to all individuals without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.