Job Description
About the position The Senior Information Security Governance Analyst plays a vital role in strengthening the organization's security posture by managing the cybersecurity policy governance framework, driving the effectiveness of governance initiatives and company-wide security awareness. The role is responsible for developing, maintaining, and aligning security policy documents with standards such as ISO/IEC 27001, demonstrating Syneos Health's cybersecurity resilience during audits, and partnering for a robust security awareness program. The ideal candidate will combine knowledge of cybersecurity governance with effective communication skills to clearly articulate security governance initiatives, engage stakeholders, and foster a culture of security throughout the organization. Responsibilities β’ Develop, implement, and maintain a comprehensive cybersecurity governance framework to ensure compliance with industry standards and align with the organization's security and risk management objectives. β’ Develop, publish, and maintain cybersecurity Policies, Standards, Guidelines, and SOPs that are practical, enforceable, and aligned with leading practices. β’ Lead multiple cybersecurity governance initiatives concurrently, ensuring alignment with objectives, and timelines and delivering expected outcomes. β’ Collaborate with cross-functional teams and internal stakeholders to ensure cybersecurity policies, standards, and procedures comply with relevant local and global laws, regulations, and industry standards. β’ Monitor policy adherence across the organization and address non-compliance issues promptly. β’ Manage and collaborate to execute cybersecurity awareness campaigns to educate employees about potential threats and promote a culture of cybersecurity in the organization. β’ Provide guidance and support to business units on cybersecurity governance matters, including security awareness training. β’ Measure the effectiveness of awareness campaigns and continuously improve engagement through innovative communication strategies. β’ Coordinate and support internal and external cybersecurity audits and assessments, ensuring compliance with established controls and best practices, and accurate and timely responses to audit findings and recommendations. β’ Maintain the strategy to support customer audits and update a centralized repository of security documentation, assessments, audit reports, and standard responses to streamline customer engagements. β’ Develop and deliver accurate, comprehensive responses to customer RFIs, RFQs, and RFPs related to cybersecurity and data protection. β’ Liaise with internal and external auditors and regulatory bodies to facilitate audits and ensure successful outcomes. β’ Coordinate audit responses and address findings or recommendations in a timely and effective manner to improve and meet customer satisfaction. Requirements β’ Bachelor's degree in computer science, Information Security, Marketing, Communication or a related field. β’ Minimum 5 years' experience in cybersecurity governance, with a proven track record of successfully managing complex projects and initiatives. β’ Knowledge in developing and governing cybersecurity policy frameworks. β’ Good understanding of cybersecurity principles, practices, and technologies, with previous experience in cybersecurity governance desirable. β’ Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and communicate complex cybersecurity concepts to non-technical stakeholders. β’ Strong analytical and problem-solving skills, with the ability to assess risks and develop effective mitigation strategies. β’ Knowledge of cybersecurity frameworks and standards such as HIPAA, GDPR, NIST, ISO 27001, HITRUST, and FDA regulations. β’ Ability to work independently as well as collaboratively in a team environment, prioritize tasks, and manage time effectively. Nice-to-haves β’ Relevant certifications such as PMP, CRISC, and CISA are desirable. Benefits β’ Health benefits to include Medical, Dental and Vision β’ Company match 401k β’ Eligibility to participate in Employee Stock Purchase Plan β’ Eligibility to earn commissions/bonus based on company and individual performance β’ Flexible paid time off (PTO) and sick time Apply tot his job