• Lead the development, review, update, and publication of cybersecurity policies and procedures. • Maintain a structured and scalable policy lifecycle process including intake, review cycles, approvals, and publication workflows. • Ensure policies and procedures align to recognized frameworks (e.g. NIST CSF and 800-53, ISO 27001, PCI-DSS, SOX, SOC 2 and other applicable standards). • Maintain mapping between policies, procedures, and control requirements. • Identify content gaps and drive continuous improvement in documentation quality and clarity. • Communicate policy updates effectively to relevant stakeholders to support adoption and awareness. • Lead execution of the global cybersecurity training and awareness program. • Manage phishing simulations, reporting, and target education initiatives. • Develop and coordinate annual and secondary cybersecurity content and delivery. • Track awareness metrics and drive continuous improvement of engagement and reporting rates. • Partner with stakeholders to promote a strong culture of security awareness across the enterprise. • Work closely with IT, Legal, Privacy, HR, and business teams to integrate policies and procedures into operational practices. • Support compliance efforts by ensuring documentation reflects implemented controls and operational processes. • Provide structured updates and reporting to leadership on program status, maturity, and key initiatives.

• Assist in automating GRC and Customer Trust workflows (customer RFPs, questionnaires, evidence collection, issue tracking, audit readiness, and customer assurance). • Help design and maintain metrics, dashboards, and KPIs (audits, vendor risk, customer requests, remediation tracking, SLA performance). • Support data reconciliation and reporting across systems (e.g., GRC tools, Salesforce, spreadsheets, and internal trackers) to improve accuracy and consistency. • Build lightweight automation using scripts, workflows, or low-code tools to reduce manual effort and improve scalability. • Document processes and create repeatable, well-defined workflows that can be scaled across the team-defined workflows. • Assist with Customer Trust reporting, including preparation of metrics and artefacts used in customer audits, questionnaires, and executive updates. • Collaborate with cross-functional teams to translate requirements into practical automation or reporting solutions.

• manage relationships with the project team • document technical and operational requirements which forms the basis of the security design solution • develop integrated security solutions for a wide cross section of clients • utilize security solutions such as surveillance systems, access control, intrusion detection, visitor management, voice communication systems • develop security solutions based on client requirements

• Analyze application security vulnerability and execute processes • Supervise, develop, and coach teams to deliver top-quality work • Manage client service accounts and drive client engagement workstreams • Solve and analyze complex problems independently • Identify opportunities and provide recommendations on application security • Collaborate with teams to integrate security into project development • Interact with project management team members and vendors on application projects