Security Governance Manager

Shift: UK Shift
Experience: 5+ years in cybersecurity governance, policy managementAs a CGI Partner within the Global Security Corporate team, the Security Governance Manager will support the design, implementation, and continuous improvement of CGIs Enterprise Security Management Framework and CGIs Security Program. This role plays a critical part in protecting CGI by ensuring that our security policies, controls, and frameworks align with evolving business needs and strategic goals, industry standards, regulatory requirements, and client expectations.The successful candidate will be responsible for managing the Enterprise Security Management Framework lifecycle, including security processes, policies and standards, guidelines, and tools ensuring that security is integrated in all aspects of CGIs operations and that the organization is protected against security threats with appropriate controls while fostering a strong security culture.This is a high-impact role with visibility across global corporate functions and regional business units.Your future duties and responsibilitiesOwn the lifecycle of CGI Enterprise Security Management Framework, Security Policies, Standards, and Controls: development, review, approval, publication, and maintenance.Govern and operationalize the Enterprise Security Management Framework (ESMF), ensuring alignment with CGIs business objectives and external standards (e.g., ISO 27001, ISO 223011, NIST, ITIL, COBIT, SOC).Define and implement governance processes related to the evolution of the ESMF, policies, standards and controls, exception handling, and compliance tracking.Analyze security operational data and trends (e.g. incidents, exceptions, findings, vulnerabilities, reports) to identify opportunities for improvement.Partner with internal stakeholders (e.g., Internal Audit, Legal, Privacy, Risk, CIO, Architecture, HR, etc.) to interpret and implement governance requirements.Develop and maintain tactical and executive-level dashboards to report on governance KPIs and control effectiveness.Contribute to the evolution of CGIs global security strategy by aligning with business objectives, supporting program maturity assessments, and recommending improvements to the Security Program Roadmap and the ESMF.Contribute to internal risk and compliance initiatives (e.g., assessments, audits, controls testing) by providing framework, policy and control guidance.Organize, lead and support ESMF and Security program related meetings and forums including presentations, meeting minutes and follow-up activities.Participate in security awareness and training initiatives by providing input to help to integrate security into CGI Partners culture.Maintain awareness of emerging threats, technologies, and regulatory developments to ensure the ESMF evolves accordingly.Support Global Security-led initiatives as a subject matter expert in security governance and ESMF requirements.Required qualifications to be successful in this roleEducation CertificationsBachelors degree in Computer Science or related field and/or equivalent experience.One or more security certifications such as CISSP, CISA, CISM, CRISC (preferred).ExperienceMinimum 5+ years in cybersecurity governance, policy management, or compliance-related roles within a large organization.Experience in managing or maintaining security frameworks, policies and security management system (e.g. ISMS).Demonstrated familiarity with key security standards and technical security controls (e.g., ISO 27001/2, NIST CSF, COBIT, SOC 2) and governance/maturity models (e.g., NIST CSF, CMMI)Familiarity with GRC or policy management platforms, risk register tools, and dashboarding/reporting tools (e.g. Archer, Power BI) is an assetExperience supporting security audits, assessments, or risk governance activities is an assetExposure to global organizations and multicultural environments is an assetSkillsStrong understanding of information security principles, governance structures, and compliance methodologies.Ability to analyze security issues and translate them into governance requirements, policy updates, and measurable outcomes.Strong written and verbal communication skills; able to prepare governance documentation and present to stakeholders at various levels.Excellent interpersonal and stakeholder engagement skills with a collaborative mindset.Strong organizational skills and the ability to manage multiple projects in parallel.Proficiency in English is required; French is a strong asset.Other requirementsAble to work in alignment with Eastern Standard Time (EST) business hours.Able to work in alignment with Eastern Standard Time (EST) business hours.Able to work in alignment with Eastern Standard Time (EST) business hours.This role can be located in a CGI office in one of the following locations: Canada, India, Philippines