Information Security Manager - GRC

Here at Appian, our core values of Respect, Work to Impact, Ambition, and Constructive Dissent & Resolution define who we are. In short, this means we constantly seek to understand the best for our customers, we go beyond completion in our work, we strive for excellence with intensity, and we embrace candid communication. These values guide our actions and shape our culture every day. When you join Appian, you'll be part of a passionate team that's dedicated to accomplishing hard things.
Appian provides a low-code development platform that accelerates the creation of high-impact business applications. Many of the world's largest organizations use Appian applications to improve customer experience, achieve operational excellence, and simplify global risk management and compliance.
Please apply with your CV in English to be considered for this role.
What you'll be doing:
As a Information Security Manager, you will support the implementation of a continuously evolving governance, risk, and compliance program (GRC) in one of Appian's primary focus areas - Enterprise, Appian Cloud, or Partner Cloud. In this role, you will help establish a strong program for security by setting security policy and standards in alignment with applicable industry frameworks, ensure that groups across the company are aware of and adhere to security requirements, assess risk posture of systems and environments, work with teams throughout the organization to ensure control requirements are implemented in accordance with security policies and standards, oversee control assessments from external assessors, and continuous monitor programs to ensure controls are healthy and any gaps are addressed.
To be successful in this role, you need:
Common Requirements:
* To be ambitious, detail oriented, and to work to impact, not completion
* Excellent problem-solving skills and the ability to dissent constructively and find resolution while showing respect towards others
* Ability to make sound, situationally aware decisions
* Ability to communicate effectively verbal and written communication skills, and ability to effectively provide security subject matter expertise across all levels of Appian information security concepts and requirements to personnel of varying technical backgrounds and positions
* Ability to track work accurately and handle multiple work streams simultaneously, while meeting aggressive deadlines and delivering impactful products
* Ability to execute on established roadmaps
* Ability to work as a team to accomplish shared goals
* A passion for security and technology
Role Specific Requirements:
* You must be a fluent English speaker as you'll be working with international teams.
* B.S./B.A. or greater in related field of study and / or relevant certifications (e.g. CISSP, CISA, CISM)
* Approx. 8+ years of experience in security compliance / governance, risk management, information assurance, or other related field
* In depth understanding and application of risk frameworks (e.g. NIST CSF, FAIR, etc.) and ability to implement Risk Measurement Methodologies (e.g. CMMI, NIST CSF, etc.)
* Ability to implement continuous monitoring and improvement programs by identifying and connecting systems and data to provide direct visibility and assurance
* Ability to evaluate environments, architectures, plans against potential threats to identify gaps, and to work collaboratively with teams responsible for implementing controls to provide guidance and oversight on how best to meet compliance requirements
* Ability to manage others and provide strong leadership and mentorship
* Ability to lead internal and external security reviews, audits, and control evaluations
* Ability to identify the path necessary to take a project from idea to impact
ofertas de empleo publicadas directamente por las empresas en Experteer o encontradas por Experteer.
Regístrate e inscríbete a la oferta

Las Estimaciones Salariales son un servicio proporcionado por Experteer para indicar el valor de la oferta en el mercado laboral. No se trata de información indicada por parte de los recruiters, pero sí de estimaciones realizadas por Experteer basándose en los datos del mercado.

Para calcular las referencias salariales se tienen en cuenta tanto datos internos como datos externos. No obstante, la Estimación Salarial puede llegar a variar hasta un 15% (e incluso más en algunos casos), en comparación con los salarios ofrecidos realmente por las empresas.

La referencia salarial de recruiter es una orientación. En este sentido, el salario final ofrecido por parte de la empresa depende de diferentes factores tales como la experiencia y las habilidades profesionales de los candidatos.