Information Security Program Manager

We are seeking an Information Security Program Manager (International) to own the execution and operational management of the Group Information Security program.

This role acts as the central execution and governance function for the security organization, translating CISO strategy and objectives into a structured, measurable, and well-governed global program of work.

The role is accountable for ensuring visibility, cadence, prioritization, and delivery discipline across all security initiatives, enabling predictable progress and measurable risk reduction across the enterprise.

Success in this role is measured by outcomes: delivery predictability, risk reduction, audit readiness, and transparency of the security portfolio—not task tracking.

Key Responsibilities

• Partner with the CISO to translate annual security strategy into executable programs and initiatives.
  
• Structure and maintain the global Information Security program roadmap, including milestones, owners, dependencies, and success metrics.
  
• Define and operate the program governance model, including cadences, reviews, and reporting mechanisms.
  
• Ensure alignment and clarity of scope across security domain owners and initiative leads.
  
• Track and manage the progress of security initiatives across all regions and domains.
  
• Identify risks, blockers, dependencies, and delivery gaps; escalate or resolve as appropriate.
  
• Maintain a single source of truth for all program activities, status, risks, and decisions using monday.com or equivalent tools.
  
• Produce executive-level reporting including dashboards, status updates, and narrative summaries focused on outcomes.
  
• Build and maintain automated dashboards and workflows to improve transparency and real-time visibility.
  
• Apply AI-powered tools and automation to improve program efficiency, reporting accuracy, and risk detection.
  
• Support quarterly and annual planning cycles, including reprioritization and portfolio reviews.
  
• Ensure consistency in governance, tracking, and reporting across all security domains and regions.
  
• Facilitate coordination between Information Security, Engineering, Risk, Compliance, Privacy, and other stakeholders.
  

Requirements

• Minimum 8 years of experience in program or project management.
  
• Proven experience leading global, cross-functional programs in security, technology risk, or enterprise IT environments.
  
• Experience managing complex initiatives with multiple dependencies and stakeholders.
  
• Strong governance, documentation, and reporting skills.
  
• Experience with program management tools such as monday.com, Jira, or similar platforms.
  
• Strong understanding of security domains and frameworks such as:
  • ISO 27001
    
  • SOC 2
    
  • PCI DSS
    
  • NIST CSF
    
  • DORA
    
  • GDPR
    
• Experience with executive reporting and stakeholder communication.
  
• Ability to manage competing priorities across global teams.
  
• Strong analytical, organizational, and execution skills.
  
• Excellent written and verbal communication in English.
  

Preferred Profile

• Strong ability to operate between strategy and execution.
  
• High emotional intelligence and stakeholder influence capability.
  
• Strong ownership mindset focused on delivery outcomes.
  
• Comfortable working across multiple regions and time zones.
  
• Proactive adopter of AI tools and automation for productivity gains.
  
• Detail-oriented with strong discipline in execution tracking.
  
• Able to bring structure to ambiguous or evolving environments.