What are the responsibilities and job description for the Information Security Policy Manager position at Solomon Page?
Ourn client is looking to fill the role of Information Security Policy Manager. The Information Security Policy Manager develops, maintains, and communicates information security policies aligned to regulatory requirements, industry best practices, and control environment and risk appetite. This role is responsible for formal information security policy library, ensuring security program is supported by well-considered policy mandates.
The Solomon Page Distinction
Our teams, comprised of subject matter experts, develop an interest in your preferences and goals and we act as an advisor for your career advancement. Solomon Page has an extensive network of established clients which allows us to present opportunities that are well-suited to your respective goals and needs – this specialized approach sets us apart in the industries we serve.
About Solomon Page
\
Founded in 1990, Solomon Page is a specialty niche provider of staffing and executive search solutions across a wide array of functions and industries. The success of Solomon Page reflects an organic growth strategy supported by a highly entrepreneurial culture. Acting as a strategic partner to our clients and candidates, we focus on providing customized solutions and building long-term relationships based on trust, respect, and the consistent delivery of excellent results. For more information and additional opportunities, visit: solomonpage.com and connect with us on Facebook, and LinkedIn.
Opportunity Awaits.
- The Base Salary range is $250k to $260k
- Maintain and extend information security policy library to align with regulatory requirements, business risk appetite, industry-accepted risk frameworks, and control environment.
- Coordinate and drive the development, review, and update of information security policies and standards based on identified need and defined maintenance intervals.
- Map security policies to, and analyze gaps against, applicable risk and regulatory frameworks and laws, such as DORA, FFIEC, NIST CSF.
- Support security-related external assessments, audits, and regulatory examinations by providing evidence of compliance.
- Partner with the Information Security Controls Manager to ensure policies are supported by appropriate controls and testing procedures.
- Evaluate security controls, identify opportunities for improvement, and communicate constructive recommendations.
- Other duties, as assigned
- 7 years of experience in information / cyber security experience, including 3 years developing and managing information security policies in a regulated industry (preferably financial services) and 3 years hands-on, technical cybersecurity roles.
- Fluent understanding of regulatory requirements affecting cybersecurity, including DORA, SEC, FFIEC, and common regulations issued in Europe (EBA) and APAC (SFC, MAS).
- Working familiarity with common security frameworks, including NIST CSF and ISO 27001/27002.
- Prior experience as owner of policies or technical standards documentation.
- Experience as lead responder to regulatory examinations, audit requests, and client due diligence questionnaires related to policy and compliance.
- Proven ability to write clear, actionable policies addressing complex regulatory and technical requirements, grounded in industry accepted practices and risk management concepts, and based on existing controls and technology environments
- Experience working with GRC (Governance, Risk, and Compliance) tooling a plus.
- Experience building cross functional consensus as an individual contributor
- Bachelor’s degree in Information Security, Computer Science, Information Technology or a related field, or equivalent experience
- CISM certification a plus.
- Strong critical thinking, analytical, organizational, time management, and writing and editing skills – all with attention to detail.
- Track record of building bridges with technology practitioners and translating complex technical concepts into simple, accessible language for business audiences.
- A self-motivated, open, collaborative, client-centric, consensus-building problem-solving mentality
- Ability to exercise good judgment when solving problems with incomplete information
The Solomon Page Distinction
Our teams, comprised of subject matter experts, develop an interest in your preferences and goals and we act as an advisor for your career advancement. Solomon Page has an extensive network of established clients which allows us to present opportunities that are well-suited to your respective goals and needs – this specialized approach sets us apart in the industries we serve.
About Solomon Page
\
Founded in 1990, Solomon Page is a specialty niche provider of staffing and executive search solutions across a wide array of functions and industries. The success of Solomon Page reflects an organic growth strategy supported by a highly entrepreneurial culture. Acting as a strategic partner to our clients and candidates, we focus on providing customized solutions and building long-term relationships based on trust, respect, and the consistent delivery of excellent results. For more information and additional opportunities, visit: solomonpage.com and connect with us on Facebook, and LinkedIn.
Opportunity Awaits.
Salary : $250,000 - $260,000