Job Description
We are seeking a highly skilled professional to join our team as a Cyber Security Governance Manager. This role will involve implementing and improving product cyber security governance, risk management, and compliance across the product lifecycle.
You will serve as a liaison between product cyber security and central GRC functions to align policies, risk methodology, and reporting structures. You will maintain and develop group-wide product security policies, controls, and governance processes in collaboration with the central GRC unit.
Your responsibilities will include driving risk transparency for product-related cyber risks through structured identification, assessment, documentation, and tracking according to enterprise GRC frameworks.
You will coordinate security-related risk assessments with GRC- and Consulting units, and control maturity evaluations in product development and lifecycle activities.
In addition, you will ensure conformity with cybersecurity-relevant regulatory requirements, such as the EU Cyber Resilience Act, RED, NIS2, or UNECE R155/R156, in alignment with compliance and legal experts.
You will also support product security audits and internal/external assessments to ensure readiness and harmonization with corporate GRC goals.
Furthermore, you will contribute to executive reporting, KPIs/KRIs, and management steering materials prepared by the CPSO.
You will represent product cybersecurity topics in internal working groups, projects, and compliance forums requiring cross-functional GRC alignment.