The Information Security Governance, Risk and Compliance Manager serves a critical and influential leadership position responsible for the planning, oversight and management of the Global Information Security Program to protect the confidentiality, integrity and availability of corporate and client information. This role serves as the expert advisor to Senior Management and Peers for the overall program to assess and manage information security governance, risk, compliance and education within the global enterprise. This program certifies that all information assets and technologies, as well as employee, client and corporate data are adequately protected.
RESPONSIBILITIES Manage technical, administrative and supervisory staff, set goals and conduct performance reviews for direct reports Motivate and direct staff of all levels to meet business objectives Influence and communicate effectively with both technical and non-technical audiences including senior business executives Work closely with Business leaders to assess the feasibility, cost and resource requirements for proposed business initiatives and projects Lead, collaborate and influence business leaders to devise or modify processes and procedures to achieve desired results Lead teams delivering quality, on-time, on-budget projects Develop, implement and coordinate the Information Security Risk Management Program Develop, implement and coordinate the program to manage risk and compliance of third party vendors and suppliers Develop, implement, maintain and enforce Global security policies, standards and guidelines Assess, report and mature the compliance posture for regulatory and contractual requirements as well as internal policies and guidelines Manage, promote and monitor the Global Information Security training and awareness program Develop, monitor and enforce compliance of the Disaster Recovery and Business Continuity implementation Perform Information Security Program maturity self-assessments and recommend changes and new initiatives Develop, implement, maintain and enforce data classification and protection standards Establish and maintain metrics and program control mechanisms to track program progress as well as the current state of defenses and protections Maintain expertise on security trends through training, research and development to mitigate potential security exposures Train other staff as necessary
MINIMUM QUALIFICATIONS Bachelor's degree 10 years of Information Security experience showing increased levels of responsibility 3 years of experience leading or participating in cross functional projects and teams 3 years of demonstrated experience leading and managing Information Security Risk and Compliance Strong knowledge of third party risk management Proven record of setting cross-functional team objectives and delivering results Advanced knowledge of information security risk assessment design and delivery Ability to work independently with or without direction and/or supervision Strong written and verbal communication skills
PREFERRED QUALIFICATIONS Industry certifications related to information security, risk and compliance Strong knowledge of governance, risk and compliance solutions and GRC framework design Strong knowledge of industry frameworks, such as ISO and NIST Knowledge of Information Security Training and Awareness programs Experience leading regulatory compliance, such as SOX Global enterprise experience preferred
CULTURE AND VALUES
Culture and values are incredibly important to ANSYS. They inform us of who we are, of how we act. Values aren't posters hanging on a wall or about trite or glib slogans. They aren't about rules and regulations. They can't just be handed down the organization. They are shared beliefs - guideposts that we all follow when we're facing a challenge or a decision. Our values tell us how we live our lives; how we approach our jobs. Our values are crucial for fostering a culture of winning for our company: Customer focus Results and Accountability Innovation Transparency and Integrity Mastery Inclusiveness Sense of urgency Collaboration and Teamwork
ANSYS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other protected characteristics.
ANSYS does not accept unsolicited referrals for vacancies, and any unsolicited referral will become the property of ANSYS. Upon hire, no fee will be owed to the agency, person, or entity.