CrawlJobs Logo

Information Security Policy Manager

solomonpage.com Logo

Solomon Page

Location Icon

Location:
United States , Greenwich

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

250000.00 - 260000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Our client is looking to fill the role of Information Security Policy Manager. The Information Security Policy Manager develops, maintains, and communicates information security policies aligned to regulatory requirements, industry best practices, and control environment and risk appetite. This role is responsible for formal information security policy library, ensuring security program is supported by well-considered policy mandates.

Job Responsibility:

  • Maintain and extend information security policy library to align with regulatory requirements, business risk appetite, industry-accepted risk frameworks, and control environment
  • Coordinate and drive the development, review, and update of information security policies and standards based on identified need and defined maintenance intervals
  • Map security policies to, and analyze gaps against, applicable risk and regulatory frameworks and laws, such as DORA, FFIEC, NIST CSF
  • Support security-related external assessments, audits, and regulatory examinations by providing evidence of compliance
  • Partner with the Information Security Controls Manager to ensure policies are supported by appropriate controls and testing procedures
  • Evaluate security controls, identify opportunities for improvement, and communicate constructive recommendations
  • Other duties, as assigned

Requirements:

  • 7+ years of experience in information / cyber security experience, including 3+ years developing and managing information security policies in a regulated industry (preferably financial services) and 3+ years hands-on, technical cybersecurity roles
  • Fluent understanding of regulatory requirements affecting cybersecurity, including DORA, SEC, FFIEC, and common regulations issued in Europe (EBA) and APAC (SFC, MAS)
  • Working familiarity with common security frameworks, including NIST CSF and ISO 27001/27002
  • Prior experience as owner of policies or technical standards documentation
  • Experience as lead responder to regulatory examinations, audit requests, and client due diligence questionnaires related to policy and compliance
  • Proven ability to write clear, actionable policies addressing complex regulatory and technical requirements, grounded in industry accepted practices and risk management concepts, and based on existing controls and technology environments
  • Experience working with GRC (Governance, Risk, and Compliance) tooling a plus
  • Experience building cross functional consensus as an individual contributor
  • Bachelor’s degree in Information Security, Computer Science, Information Technology or a related field, or equivalent experience
  • CISM certification a plus

Nice to have:

  • Experience working with GRC (Governance, Risk, and Compliance) tooling a plus
  • CISM certification a plus

Additional Information:

Job Posted:
May 16, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Solomon Page - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Security Policy Manager

Information Security Identity & Access Management Analyst

The Info Sec Prof Senior Analyst is an intermediate level position responsible f...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant Identity and Access Management experience
  • Applicable Certifications or willingness to earn within 12 months of joining
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Identify potential Identity and Access Management (IAM) risks and make recommendations for enhancement
  • Lead execution of IAM governance procedures, specifically focusing on non-worker identities and IAM resources
  • Collect and analyze security risk evidence and coordinate with internal and external compliance and auditing agencies / officials
  • Develop and operationalize key risk indicators for related IAM topics and governance procedures
  • Produce insights from data that are tailored to specific requirements and audiences
  • Execute meetings and communicate complex security topics and IAM standards and best practices with all levels of the organization
  • Ensure that controls are utilized daily and that non-compliance remediation is addressed
  • Drive technological projects with cross-functional teams that support the expansion of IAM governance
  • Provide IAM consulting services, including interpreting and/or clarifying information security policy, procedures, standards or concepts
  • Assist with defining, implementing, and governing IS standards to align procedures and practices in compliance with Citi standards
What we offer
What we offer
  • Best-in-class benefits
  • Global benefits
  • Equal opportunity employer
  • Fulltime
Read More
Arrow Right

Information Security Manager

Cogoport is on a mission to bridge the $3.4 trillion Trade Knowledge and Executi...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://cogoport.com/ Logo
Cogoport
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in cybersecurity, risk management, and information security leadership
  • Bachelor's/master’s degree in computer science, Information Security, or a related field
  • Certifications: CISSP, CISM, CEH, or equivalent cybersecurity certifications (preferred)
  • Expertise in risk assessment, penetration testing, and vulnerability management
  • Hands-on experience with security tools such as SIEM (Splunk, IBM QRadar), endpoint protection, and cloud security solutions
  • Strong knowledge of zero-trust security models, identity and access management (IAM), and security operations (SOC)
  • Ability to effectively communicate security risks and strategies to both technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Develop and implement a comprehensive cybersecurity strategy aligned with Cogoport’s business objectives
  • Collaborating with senior leadership as the primary authority for all security-related matters
  • Oversee security governance and continuous security improvements across all business units
  • Identify, assess, and mitigate cybersecurity risks across applications, cloud infrastructure, and corporate systems
  • Conduct periodic security audits, risk assessments, and penetration testing to proactively address vulnerabilities
  • Ensure compliance with ISO 27001, GDPR, SOC 2, NIST, and other industry security frameworks
  • Develop, document, and maintain an incident response plan to manage and mitigate security breaches
  • Oversee the implementation and management of security technologies, including firewalls, IDS/IPS, SIEM, and endpoint protection
  • Monitor network traffic for anomalies and cyber threats, taking immediate action against security incidents
  • Lead incident detection, investigation, and response processes while minimizing business impact
  • Fulltime
Read More
Arrow Right

Information Security Manager

The Information Security Manager for the KSA Business Unit will be responsible f...
Location
Location
Saudi Arabia , Khobar
Salary
Salary:
Not provided
https://www.allianz.com Logo
Allianz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Security, Computer Science, or a related field
  • Professional certifications such as CISSP, CISM, CISA, or equivalent are highly preferred
  • Minimum of 7 years of experience in information security, with at least 3 years in a managerial role
  • Strong knowledge of KSA cybersecurity regulations, including NCA and SAMA frameworks
  • Experience in implementing and managing security controls, risk assessments, and incident response
  • Familiarity with international security standards (ISO 27001, NIST, etc.)
  • Excellent leadership, communication, and stakeholder management skills
  • Ability to work effectively in a regional and multicultural environment
Job Responsibility
Job Responsibility
  • Work closely with the Compliance function to ensure compliance with KSA cybersecurity regulations
  • Ensure adherence to and enforcement of Nextcare’s security policies and guidelines across the KSA business unit
  • Identify, assess, and mitigate security risks, ensuring appropriate controls are in place to protect sensitive information and IT infrastructure
  • Lead security incident response efforts, including investigation, containment, and reporting to relevant authorities
  • Promote cybersecurity awareness across the business unit and conduct training programs for employees
  • Assess and monitor security risks associated with vendors, partners, and third-party service providers
  • Act as the key liaison between the KSA business unit and the regional security team, providing reports on security posture, incidents, and compliance status
  • Oversee security operations, ensuring continuous monitoring, threat detection, and vulnerability management
  • Implement and manage security controls, including Antivirus & Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Proxy Solutions, Email Security, and other controls
  • Stay updated on the latest cybersecurity threats, trends, and industry best practices to strengthen the organization's security posture
  • Fulltime
Read More
Arrow Right

Officer - Information Security Identity and Access Management (GIAM) – Analyst

An Identity and Access Management analyst is responsible for administering acces...
Location
Location
Philippines , City of Taguig
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree/University degree of any course or equivalent experience
  • Consistently demonstrates clear and concise written and verbal communication in the English language
  • Aptitude to learn a number of applications and/or systems at a level which one can understand how to administer access
  • Utilize Microsoft applications to create and maintain files (MS Excel, MS Word)
  • Proven excellent customer relationship management skills
  • Basic understanding of data quality, information security and cyber security risk
  • Basic understanding of Windows desktop operating systems, Mainframe and Unix server, and/or databases
  • Basic understanding of password management tool (i.e. CyberArk)
Job Responsibility
Job Responsibility
  • Demonstrate an understanding of the security layer managed through access administration in the different systems
  • Support Global Identity and Access Management (GIAM) operation including weekends and public holidays on a rotational basis, as well as assigned on-call emergency support
  • Learn the process modules on administering access in multiple supported systems
  • Complete access-related customer requests within operational thresholds on timeliness and accuracy
  • Provide troubleshooting support on system access related issues
  • Handle customer interactions in a manner adhering to the customer service guidelines
  • Provide on-call support as needed and scheduled support during weekends and public holidays on some occasion
  • Have good team working skills and ability to work in a fast-paced and high-volume operations
  • Manage multiple tasks with strong analytical, documentation, and communication skills, both oral and written
  • Identify potential opportunities and concern to raise to the manager's attention
What we offer
What we offer
  • Global Benefits
  • Career development opportunities at all stages of your career
  • Commitment to diversity and inclusion
  • Respect for others and promotion based on merit
  • Opportunities for personal development
  • Fulltime
Read More
Arrow Right

Information Security Officer

Information Security Officer (ISO) is a subject matter expert for business, func...
Location
Location
Mexico , Ciudad De Mexico
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience
  • Sound understanding of Information security domains such as Identity Access Management, Cryptography, Data Protection, Vulnerability Assessment, Single Sign-On, Multi-Factor Authentication etc
  • Knowledge of Cloud and Containers security will be of added advantage
  • Additional technical certifications are preferred
  • Demonstrated ability to research and apply current information regarding the IS field
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
Job Responsibility
Job Responsibility
  • Work directly with business, functions and technology units and relevant stakeholders to facilitate/ perform Information Security risk assessment and risk management processes to protect information assets
  • Work with business and technology management to drive the information security program and information risk management activities
  • Work with the internal Application Development teams to develop strategies and plans for improving architecture and application security
  • Provide strategic risk guidance for business and technology projects, including the evaluation and recommendation of IS controls
  • Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data, and the company's reputation
  • Participate in the evaluation and selection of applications and systems with focus on Information Security areas
  • Facilitate compliance with all Information Security policies, standards and regulations / directives as mandated by Global CISO Organization
  • Participate/provide, as required, IS awareness training programs for employees, contractors and approved system users
  • Fulltime
Read More
Arrow Right

Information Security Officer

The Information Security Officer is a senior leadership role responsible for ove...
Location
Location
Portugal , Lisbon; Oporto; Madrid; Barcelona
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experienced authentic leader with a good understanding of technology and managing Information Security risks in the enterprise
  • Passionate about Information Security, delivering business value and driving continuous improvement
  • Strong people leadership skills and experience in building a positive enabling security culture based on trust, quality and pragmatic risk management
  • Great communicator and influencer comfortable working across hierarchical, organisational, cultural and market boundaries
  • Experience of managing teams, mentoring and developing security talent from different cultural backgrounds
  • Professionally qualified holding a recognised security accreditation (CISSP/CISM/CISA etc.,) or equivalent experience with demonstrable Continuous Professional Development
  • Maintain a good understanding of latest security threats and the mitigating strategies
  • Ability to provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
  • Experience of the implementation, operation and maintenance of an Information Security Management framework such as ISO27001 or NIST CSF
  • Good understanding of integrating security into software or product development lifecycle and cloud security
Job Responsibility
Job Responsibility
  • Promote and inspire a security first culture at TUI
  • Direct the development, implementation, delivery and support of an enterprise Information Security strategy aligned to the strategic requirements of the business
  • Lead the provision of Information Security resources expertise, guidance and systems necessary to execute strategic and operational plans across all of the organisation’s information systems
  • Ensure that each Domain is motivated and empowered to deliver the prioritised roadmap
  • Protect the TUI brand and its customers, detect and respond to incidents, strengthen defences, reduce the attack surface and secure behaviours
  • Drive adoption of and adherence to security policies, standards and controls through the provision of expert advice and guidance
  • Protect our most critical assets and ensure appropriate assurance and rigorous testing is in place
  • Ensure security incidents are managed effectively through engagement with the security operations team, and that lessons learned and audit findings are remediated
  • Ensure effective security operations (e.g. vulnerability scanning, patching)
  • Protect the integrity, availability, authenticity, non-repudiation and confidentiality of information and data in storage and in transit
What we offer
What we offer
  • Attractive remuneration, bonus opportunity, exclusive travel perks & discounts, extensive health & wellbeing support
  • Flexible working: hybrid or remote working models
  • Opportunities to upskill, reskill and grow your career
  • Access the TUI Tech Learning Hub to level-up and reach your ambitions
  • Participate in our tech communities and collaborate on global projects and teams
  • Get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community
  • Fulltime
Read More
Arrow Right

Senior Manager IAM Enterprise Security

The IT Sr. Manager, Identity & Access Management is responsible for providing le...
Location
Location
Poland , Krakow
Salary
Salary:
Not provided
genpt.com Logo
Genuine Parts Company
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS/BA degree and specialized information security technical training required
  • A reputable security certification (CISSP, CISSP w/specialization HCISPP, GIAC, CISA, etc.) is required
  • A minimum of 6 years of progressive Information Security experience
  • A minimum of 3+ years of management experience leading information security
  • Identity & Access Management to include governance experience is required
  • In-depth knowledge of the information security industry and regulatory obligations (Sarbanes-Oxley (SOX), HIPAA, GLBA, PCI DSS, HITRUST, NIST Framework, etc.)
  • Working knowledge of Microsoft Active Directory
  • Ability to analyze all layers of the OSI model from the security stance
  • In-depth knowledge of networking technologies and architecture
  • ITIL familiarization - managing incidents, requests, and changes
Job Responsibility
Job Responsibility
  • Serves as an internal information security consultant to the enterprise
  • Include focus and expertise in Privileged Access Management (PAM), Customer Identity Access Management (CIAM), Identity Governance and Administration (IGA) and Employee Identity Access Management (EIAM) to include Single Sign on and Multi-factor authentication
  • Research and recommend solutions that meet security standards while ensuring functionality for business continuity
  • Develop security test scenarios for unit, process, function, integration, and acceptance testing
  • Design integration schema and linkage for multi-platform business and technological solutions
  • Evaluates the security of new technologies and assists with the plan to integrate them into the company environment
  • Help develop the policies and procedures in conjunction with the established IT governance channels to manage the use and operation of these systems
  • Recommend best practices for security controls without hindering functionality
  • Define the minimum access and identity configuration standards for all IT systems
  • Evaluates new and proposed security systems and technologies
What we offer
What we offer
  • We offer comprehensive benefit plans and programs designed to support your health and wellness, provide income protection and build financial security for your retirement
Read More
Arrow Right

Information Security Officer

TUI Group is the world’s number one integrated tourism business. The Security Do...
Location
Location
Portugal , Lisbon; Oporto
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • An experienced authentic leader with a good understanding of technology and managing Information Security risks in the enterprise
  • Passionate about Information Security, delivering business value and driving continuous improvement
  • Strong people leadership skills and experience in building a positive enabling security culture based on trust, quality and pragmatic risk management
  • Great communicator and influencer comfortable working across hierarchical, organisational, cultural and market boundaries
  • Experience of managing teams, mentoring and developing security talent from different cultural backgrounds
  • Professionally qualified holding a recognised security accreditation (CISSP/CISM/CISA etc.,) or equivalent experience with demonstrable Continuous Professional Development
  • Maintain a good understanding of latest security threats and the mitigating strategies
  • Ability to provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
  • Experience of the implementation, operation and maintenance of an Information Security Management framework such as ISO27001 or NIST CSF
  • Good understanding of integrating security into software or product development lifecycle and cloud security
Job Responsibility
Job Responsibility
  • Promote and inspire a security first culture at TUI
  • Direct the development, implementation, delivery and support of an enterprise Information Security strategy aligned to the strategic requirements of the business
  • Lead the provision of Information Security resources expertise, guidance and systems necessary to execute strategic and operational plans across all of the organisation’s information systems
  • Ensure that each Domain is motivated and empowered to deliver the prioritised roadmap
  • Protect the TUI brand and its customers
  • Detect and respond to incidents, strengthen our defences, reduce the attack surface and secure our behaviours
  • Drive adoption of and adherence to security policies, standards and controls through the provision of expert advice and guidance
  • Protect our most critical assets and ensure appropriate assurance and rigorous testing is in place
  • Ensure security incidents are managed effectively through engagement with the security operations team, and that lessons learned and audit findings are remediated
  • Ensure effective security operations (e.g. vulnerability scanning, patching)
What we offer
What we offer
  • Attractive remuneration
  • Bonus opportunity
  • Exclusive travel perks & discounts
  • Extensive health & wellbeing support
  • Flexible working
  • Opportunities to upskill, reskill and grow your career
  • Access the TUI Tech Learning Hub
  • Participate in tech communities and collaborate on global projects and teams
  • Get involved with local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community
  • Fulltime
Read More
Arrow Right