Technology Governance Lead

We are looking for an experienced and strategic Technology Governance Lead to play a pivotal role in overseeing the implementation and operation of security controls across diverse technology domains. With over 12 years of experience in cybersecurity, technology risk, and third-party security management, the ideal candidate will bring strong leadership, analytical thinking, and stakeholder engagement skills to drive governance excellence across the organization. 

Key Responsibilities 

• Govern and monitor the implementation of security controls across infrastructure, applications, cloud, and physical security of secure areas. 

• Manage security audits and assessments and coordinate with relevant IT teams, ensuring timely and accurate responses to client and auditors. 

• Develop and deliver security reporting for senior management, highlighting key risks, metrics, and remediation progress. 

• Lead third-party security management, including risk assessments, onboarding reviews, and ongoing compliance monitoring. 

• Design and implement security awareness and training programs to promote a strong security culture across the organization. 

• Collaborate with business and technology stakeholders to ensure alignment with governance frameworks and regulatory requirements. 

• Manage and track responses to client and regulator security requirements, ensuring compliance and timely follow-through. 

• Provide strategic input into security policies, standards, and procedures. 

• Oversee physical security controls and ensure integration with broader cybersecurity governance. 

Required Qualifications: 

• Minimum 12 years of experience in cybersecurity, technology risk, and governance. 

• Strong understanding of technical and physical security controls across multiple technological domains. 

• Proven experience in third-party security management, security reporting, and audit support. 

• Excellent stakeholder and project management skills. 

• Strong critical and logical thinking abilities with a detail-oriented mindset. 

• Exceptional written and verbal communication skills in English. 

• Familiarity with regulatory frameworks and standards (e.g., ISO 27001, NIST). 

• Relevant certifications (e.g., CISM, CISSP, CRISC, ISO 27001) are highly desirable.

• Strategic thinker with a hands-on approach to governance and risk management. 

• Ability to influence and engage stakeholders across all levels of the organization. 

• Experience working in regulated industries such as finance, healthcare, or insurance is an advantage.