Manager, Information Security – Governance, Risk, and Compliance
Clarivate Analytics (US) LLC
Reference #: JREQ129610
Clarivate is searching for a Manager, Information Security – Governance, Risk, and Compliance to join our team. In this role you will be a part of the Governance, Risk and Compliance (GRC) function of the Information Security team at Clarivate, a dynamic team that is works across the company at all levels. You will be responsible for maintaining and leading our certification activities and initiatives related to information security and privacy and leading audit processes and key security initiatives.
About You – experience, education, skills, and accomplishments
Bachelors degree in a relevant field or equivalent relevant work experience
3 years demonstrated experience in security and privacy standards at a global company
2 years demonstrated experience in leading a team
It would be great if you also have…
Security certifications – CISO, CISSP and/or CISM preferred
Experience with information security compliance assessments
Experience working on customer security RFPs
Experience with ISO Certifications, SOC 2, PCI-DSS and NIST standards
Understanding of business continuity planning, vulnerability assessments, and incident management
Project management skills to drive projects and initiatives across multiple departments
Experience in creating and implementing processes
Knowledge of risk assessment and security baselines
Knowledge of ISO Certifications and NIST standards
Experience handling tasks in a matrixed organization
What will you be doing in this role?
Implement and maintain the key initiatives/projects focused on the reduction of security risks, governance, and compliance to policies.
Lead and maintain information security compliance assessment on existing standards, systems, processes, and technologies.
Lead internal and external audit processes of Information security certification and standards
Inform about security concerns with recommended courses of action
Participate in the security risk management program and methodologies
Participate in completing customers security audits, questionnaires, RFPs, and tenders
Review proposed changes on an ongoing basis to determine the impact on security and privacy
About the Team
We are a team of 33 security professionals from various walks of life with diverse experience. We are spread out across the world with team members located in North America, Europe, and Asia. We support our organizations internal teams and customer relations activities. The manager for this role is in North America. As a security team, our focus lies in four main areas (pillars) – Security Engineering and Operations, Product security, Security Architecture, and Governance Risk and Compliance. Our Security Architecture pillar provides the shared services of trusted design partners and advisory services to corporate and business led initiatives, including security solutions to enable all manner of practices, integrations and innovations across our entire enterprise
Hours of Work
Fulltime
Hybrid working model (office and home based)
Clarivate is an Equal Opportunity Employer Vets/Minorities/Women/Disabled
It is the policy of Clarivate to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Clarivate will provide reasonable accommodations for qualified individuals with disabilities.