Security Governance Specialist

Summary

Develop, implement, and maintain security governance frameworks, policies, and procedures. Conduct regular security audits and assessments. Collaborate with IT and legal teams to ensure security strategies meet compliance requirements. Support risk management and mitigation strategies. Provide training and guidance on governance standards.

Key Responsibilities/Duties

• Developing, implementing, and maintaining security governance frameworks, policies, and procedures
• Conducting regular security audits and assessments to ensure compliance with regulatory standards (e.g., GDPR, ISO 27001)
• Collaborating with IT and legal teams to ensure that security strategies meet compliance requirements and industry best practices
• Supporting risk management and mitigation strategies to minimize security-related risks
• Providing training and guidance to teams on governance standards, security policies, and best practices

Core Requirements/Qualifications/Skills

• Proven experience as a Security Governance Specialist or in a similar role
• Strong knowledge of security frameworks (e.g., ISO 27001, NIST, COBIT) and relevant industry regulations (e.g., GDPR, PCI-DSS, HIPAA)
• Experience conducting security audits, risk assessments, and compliance reporting
• Expertise in implementing and managing governance structures, security policies, and controls
• Certifications such as CISM, CISSP, or ISO 27001 Lead Implementer are highly desirable