Sr Tower Lead (Support & Operations)

Job Summary

Serve as a primary cybersecurity and risk interface between business leadership, delivery teams, and the CISO office.Lead enterprise and account-level cyber risk assessments, maintaining risk registers, treatment plans, and risk acceptance processes.Own ISMS governance and compliance activities, including ISO 27001, ISAE 3402, SOC, SOX, privacy, and regulatory requirements.Drive audit readiness and assurance, including coordination of internal/external audits and timely closure of observations.Oversee vulnerability management governance, ensuring risk-based prioritization, remediation tracking, exception handling, and reporting.Govern security incident management from a GRC perspective, including impact assessment, reporting, and post-incident reviews.Define, review, and maintain security policies, standards, procedures, and SOPs, aligned with enterprise and regulatory expectations.Produce executive-level risk, compliance, and security posture reports to support informed decision-making.Advise business and delivery teams on security-by-design, contractual security obligations, and regulatory impacts.Support client assurance activities, including security questionnaires, due diligence, and regulatory responses.

Key Responsibilities

Strong understanding of cybersecurity governance, risk frameworks, and control assurance Ability to translate technical security risks into business-impact language Experience with global compliance and regulatory landscapes Excellent stakeholder management and executive communication Strong analytical, documentation,

Skill Requirements

null

Other Requirements

null