Manager, Information Security - Governance, Risk, and Compliance Full-time Job
hace 1 mes - Security & Safety - BarcelonaTrabajo detalles
Clarivate is searching for a Manager, Information Security – Governance, Risk, and Compliance to join our team. In this role you will be a part of the Governance, Risk and Compliance (GRC) function of the Information Security team at Clarivate, a dynamic team that is works across the company at all levels. You will be responsible for maintaining and leading our certification activities and initiatives related to information security and privacy and leading audit processes and key security initiatives.
About You – experience, education, skills, and accomplishments
- Bachelor’s degree in a relevant field or equivalent relevant work experience
- 3+ years demonstrated experience in security and privacy standards at a global company
- 2+ years demonstrated experience in leading a team
It would be great if you also have…
- Security certifications – CISO, CISSP and/or CISM preferred
- Experience with information security compliance assessments
- Experience working on customer security RFPs
- Experience with ISO Certifications, SOC 2, PCI-DSS and NIST standards
- Understanding of business continuity planning, vulnerability assessments, and incident management
- Project management skills to drive projects and initiatives across multiple departments
- Experience in creating and implementing processes
- Knowledge of risk assessment and security baselines
- Knowledge of ISO Certifications and NIST standards
- Experience handling tasks in a matrixed organization
What will you be doing in this role?
- Implement and maintain the key initiatives/projects focused on the reduction of security risks, governance, and compliance to policies.
- Lead and maintain information security compliance assessment on existing standards, systems, processes, and technologies.
- Lead internal and external audit processes of Information security certification and standards
- Inform about security concerns with recommended courses of action
- Participate in the security risk management program and methodologies
- Participate in completing customer’s security audits, questionnaires, RFPs, and tenders
- Review proposed changes on an ongoing basis to determine the impact on security and privacy
About the Team
We are a team of 33 security professionals from various walks of life with diverse experience. We are spread out across the world with team members located in North America, Europe, and Asia. We support our organization’s internal teams and customer relations activities. The manager for this role is in North America. As a security team, our focus lies in four main areas (pillars) – Security Engineering and Operations, Product security, Security Architecture, and Governance Risk and Compliance. Our Security Architecture pillar provides the shared services of trusted design partners and advisory services to corporate and business led initiatives, including security solutions to enable all manner of practices, integrations and innovations across our entire enterprise
Hours of Work
- Fulltime
- Hybrid working model (office and home based)
At Clarivate, we are committed to providing equal employment opportunities for all persons with respect to hiring, compensation, promotion, training, and other terms, conditions, and privileges of employment. We comply with applicable laws and regulations governing non-discrimination in all locations.