Information Security Manager - Governance, Risk and Compliance

We are seeking a dynamic leader to join our team as an Information Security Manager. In this role, you will be responsible for aligning security measures with industry standards, organizing critical information, and measuring outcomes to protect our assets effectively. Your ability to build strong partnerships across the company will be key in maturing our program and minimizing regulatory and compliance concerns. As the Information Security Manager, you will manage a dedicated team, overseeing their development and performance to ensure compliance with ITGCs, PCI, GDPR, CCPA, and other relevant regulations. You will also collaborate with Internal Audit and external consultants to maintain audit compliance and attestation. Your role will involve continuous review and updating of our information security policies to ensure their effectiveness and compliance with all applicable laws. You will be instrumental in managing our Information Security Risk Assessment Program, including project risk assessments, vendor security assessments, and new technology assessments. Additionally, you will oversee third-party System and Organization Controls (SOC) reports and manage our Information Security Awareness Program. Creating data flows, data maps, and business process mapping will be part of your responsibilities. We are looking for someone with strong leadership skills to implement successful strategies and drive projects to completion within budget and on schedule. You will need to balance planning efforts with day-to-day demands and ensure your team adheres to established best practices. Compliance with quality, environmental, and safety regulations is a must. The ideal candidate will exhibit intrapreneurship and ownership behaviors, taking bold initiatives, learning from mistakes, driving candid discussions, and holding themselves and others accountable. You will develop, coach, and mentor your team, conducting performance evaluations, managing salary adjustments, rewarding employees, or taking disciplinary actions as necessary. If you are ready to take on a challenging yet rewarding role that impacts the entire organization, we would love to hear from you. Join us in our mission to enhance our cybersecurity posture and protect our information assets effectively.