Technology Governance Lead

We are looking for an experienced and strategic Technology Governance Lead to play a pivotal role in overseeing the implementation and operation of security controls across diverse technology domains. With over 12 years of experience in cybersecurity, technology risk, and third-party security management, the ideal candidate will bring strong leadership, analytical thinking, and stakeholder engagement skills to drive governance excellence across the organization.

Key Responsibilities

• Govern andmonitorthe implementation of security controls across infrastructure, applications, cloud, and physicalsecurity of secure areas.

• Managesecurity audits and assessmentsand coordinate with relevant IT teams,ensuringtimelyandaccurateresponses toclient and auditors.

• Develop and deliver security reporting for senior management, highlighting key risks, metrics, and remediation progress.

• Lead third-party security management, including risk assessments, onboarding reviews, and ongoing compliance monitoring.

• Design and implement security awareness and training programs to promote a strong security culture across the organization.

• Collaborate with business and technology stakeholders to ensure alignment with governance frameworks and regulatory requirements.

• Manage and track responses to client and regulator security requirements, ensuring compliance andtimelyfollow-through.

• Provide strategic input into security policies, standards, and procedures.

• Oversee physical security controls and ensure integration with broader cybersecurity governance.

Required Qualifications:

• Minimum 12 years of experience in cybersecurity, technology risk, and governance.

• Strong understanding of technical and physical security controls across multipletechnologicaldomains.

• Proven experience in third-partysecuritymanagement, security reporting, and audit support.

• Excellent stakeholder and project management skills.

• Strong critical and logical thinking abilities with a detail-oriented mindset.

• Exceptional written and verbal communication skills in English.

• Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST).

• Relevant certifications (e.g., CISM, CISSP, CRISC, ISO 27001) are highly desirable.

• Strategic thinker with a hands-on approach to governance and risk management.

• Ability to influence and engage stakeholders across all levels of the organization.

• Experience working in regulated industries such as finance, healthcare, orinsurance is an advantage.