ZipRecruiter

Log In

1

Executive Cybersecurity Policy Jobs (NOW HIRING)

PSEG

Director of Cybersecurity - GRC

Newark, NJ · On-site

$116K - $156K/yr

NRC, SOX, DoE, NERC CIP, TSA, Internal Audits, etc.), Cybersecurity Risk, Cybersecurity Policy ... Preparing senior-level technical reports for executive management. * Providing support and risk ...

SAIC

Policy Analyst

Saint Louis, MO · Hybrid

Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps.

SAIC

Policy Analyst

Saint Louis, MO · On-site

Support the organization's Cybersecurity Strategy. * Analyze internal documents and external issuances (e.g., IC/DoW policy, Executive Orders) to identify policy impacts, conflicts, or gaps.

ManTech International

Policy Analyst

Springfield, VA · On-site

... Cybersecurity Strategy to fortify information assurance. * Analyze internal documentation and external issuances-including Executive Orders and IC/DoD policies-to proactively mitigate conflicts and ...

ManTech International

Policy Analyst

Springfield, VA · On-site

... Cybersecurity Strategy to fortify information assurance. * Analyze internal documentation and external issuances-including Executive Orders and IC/DoD policies-to proactively mitigate conflicts and ...

ManTech

Policy Analyst

Springfield, VA · On-site

... Cybersecurity Strategy to fortify information assurance. * Analyze internal documentation and external issuances-including Executive Orders and IC/DoD policies-to proactively mitigate conflicts and ...

ManTech

Policy Analyst

Springfield, VA

... Cybersecurity Strategy to fortify information assurance. * Analyze internal documentation and external issuances-including Executive Orders and IC/DoD policies-to proactively mitigate conflicts and ...

next page

Showing results 1-20

All JobsCybersecurity Policy JobsExecutive Cybersecurity Policy Jobs

Executive Cybersecurity Policy information

See salary details

$26.5K

$93.6K

$184K

How much do executive cybersecurity policy jobs pay per year?

As of Jun 9, 2026, the average yearly pay for executive cybersecurity policy in the United States is $93,552.00, according to ZipRecruiter salary data. Most workers in this role earn between $58,000.00 and $120,500.00 per year, depending on experience, location, and employer.

What is the difference between Executive Cybersecurity Policy vs Cybersecurity Analyst?

AspectExecutive Cybersecurity PolicyCybersecurity Analyst
CredentialsTypically requires executive-level certifications (CISM, CISSP), advanced degreesRequires certifications like CompTIA Security+, CISSP, or CEH
Work EnvironmentStrategic, policy development, executive meetingsTechnical, hands-on security monitoring, incident response
Employer & Industry UsageUsed by organizations to set security direction at the policy levelUsed by security teams to implement and monitor security measures

While both roles focus on cybersecurity, the Executive Cybersecurity Policy develops high-level security strategies and policies, whereas the Cybersecurity Analyst executes technical security tasks and monitors systems. The former is more strategic and policy-oriented, while the latter is hands-on and technical.

What are the key skills and qualifications needed to thrive as an Executive in Cybersecurity Policy, and why are they important?

To thrive as an Executive in Cybersecurity Policy, you need a deep understanding of cybersecurity frameworks, risk management, and regulatory compliance, often supported by a relevant degree and certifications such as CISSP or CISM. Familiarity with tools like NIST Cybersecurity Frameworks, ISO 27001, and governance, risk, and compliance (GRC) systems is typically required. Strong leadership, strategic communication, and the ability to influence cross-functional teams are essential soft skills for this role. These skills ensure effective policy development, organizational resilience, and proactive mitigation of evolving cyber threats.

How does the Executive Cybersecurity Policy role typically collaborate with technical and non-technical stakeholders within an organization?

Professionals in Executive Cybersecurity Policy roles frequently serve as a bridge between technical cybersecurity teams and executive leadership or regulatory bodies. They translate complex security concepts into actionable policy recommendations for non-technical stakeholders, while also ensuring that technical teams understand and implement these policies effectively. Collaboration often involves leading cross-departmental meetings, aligning cybersecurity initiatives with business objectives, and managing communications during incidents. This role requires strong interpersonal skills and the ability to balance diverse perspectives to achieve comprehensive cybersecurity governance.

What is Executive Cybersecurity Policy?

Executive Cybersecurity Policy refers to the high-level strategies, guidelines, and decisions made by organizational leaders to protect digital assets and information systems. This role involves developing, implementing, and overseeing policies that address cybersecurity risks, compliance, and incident response. Executives in this field work closely with IT, legal, and business teams to ensure that cybersecurity measures align with organizational goals and regulatory requirements. Their leadership is critical in fostering a security-conscious culture and responding effectively to emerging cyber threats.
What cities are hiring for Executive Cybersecurity Policy jobs? Cities with the most Executive Cybersecurity Policy job openings:
What are the most commonly searched types of Cybersecurity Policy jobs? The most popular types of Cybersecurity Policy jobs are:
What states have the most Executive Cybersecurity Policy jobs? States with the most job openings for Executive Cybersecurity Policy jobs include:
Executive Cybersecurity Policy jobs near you
Director of Cybersecurity - GRC

Director of Cybersecurity - GRC

PSEG

Newark, NJ • On-site

$116K - $156K/yr

Full-time

Posted 28 days ago

PSEG rating

8.9

Company rating: 8.9 out of 10

Based on 76 frontline employees who took The Breakroom Quiz

5th of 50 rated energy and utility

Job description

Job Number: 7454
External Description:
Job Summary
The Director, Cybersecurity Governance, Risk, and Compliance leads the development, implementation, and ongoing coordination of enterprise-wide Cybersecurity Governance, Risk, and Compliance, including Regulatory Assurance (e.g. NRC, SOX, DoE, NERC CIP, TSA, Internal Audits, etc.), Cybersecurity Risk, Cybersecurity Policy, Cybersecurity Awareness, and Nth Party Risk Management and Assurance. (S)he coordinates across all business lines, service departments, external risk organizations (e.g. cross-sector cyber industry trade organizations), and peer energy companies. As PSEG's senior leader responsible for Cybersecurity Governance, Risk, and Compliance, (s)he will also be responsible for defining and aligning cybersecurity policies, strategy, and standards. (S)he will be responsible for multiple discrete projects/enhancements to build, maintain, and mature capabilities, including people, processes, and technologies. (S)he will engage across the entire IT, OT, and managed services landscapes, including leading a team across these environments.
(S)he will spend his/her time
* Serving as the Subject Matter Expert for Cybersecurity governance, risk, and compliance issues/concerns/audits.
* Conducting cybersecurity assessments, identifying risks, and tracking/reporting on remediations.
* Providing cybersecurity insight and expertise in assessing new business opportunities.
* Identifying opportunities for process improvements to deliver increasing efficiency within the Risk and Control framework.
* Interacting with auditors on cybersecurity management oversight.
* Coordinating with outside vendors/third-parties to protect client information, to secure data transmission protocols, and to complete/remediate Information/cybersecurity assessments.
* Collaborating closely with developers and infrastructure teams to implement the Cybersecurity policies required to protect the integrity, confidentiality, and availability of the information on an end-to-end basis.
* Implementing the risk assessment framework, which identifies critical cybersecurity and privacy impacting business process and/or systems.
* Maintaining the global Cybersecurity and IT risk registers, tracking remediations, and creating status reports/metrics.
* Completing risk assessments of new/existing infrastructure, systems, Industrial Control Systems, and other components.
* Conducting risk assessments of third-party vendors to evaluate cybersecurity controls for protecting company-specific data.
* Leading and/or contributing to the creation and maintenance of the enterprise's cybersecurity documents (policies, standards, guidelines and procedures). Ensuring enforcement of these enterprise cybersecurity documents.
* Preparing for, supporting, and potentially presenting at, Cybersecurity Council, Senior Executive Team, and Board of Directors meetings.
* Preparing senior-level technical reports for executive management.
* Providing support and risk guidance for enterprise infrastructure, the wireless environment, Cloud software/infrastructure security, secure software development, and data protection.
* Collaborating closely with Digital Workplace, Infrastructure, Enterprise Resource Planning, and Application Development Teams to identify and remediate cybersecurity issues.
* Identifying/overseeing remediation of open cybersecurity issues and validating closure.
* Maintaining up-to-date cybersecurity knowledge, including awareness of innovative solutions/processes, emerging standards, and new threat vectors by reading professional publications, maintaining personal networks, and participating in professional organizations.
Job Responsibilities
  • Directs, coaches, and counsels internal/external cyber resources on Cybersecurity technologies, including Regulatory Assurance (e.g. NRC, SOX, DoE, NERC CIP, TSA, Internal Audits, etc.), Cybersecurity Risk, Cybersecurity Policy, Cybersecurity Awareness, and Nth Party Risk Management and Assurance for all lines of business and service departments for both IT and OT landscapes. Ensure that Cybersecurity Governance, Risk, and Compliance service delivery aligns with the corporate IT strategy, including development of Cybersecurity operations standards, capacity planning, lifecycle management plans, solution selection, and partner management. Ensure scalability of Cybersecurity Governance, Risk, and Compliance capabilities, including hardware and software, to meet business needs and risk tolerances.
  • Develops and implements best practices for PSEG Cybersecurity Governance, Risk, and Compliance capabilities. Participate in external risk organizations (including with peer groups) to learn from other organizations and to benchmark our program. Partner with professional Cybersecurity Governance, Risk, and Compliance associations, service providers, and to identify and implement best practices.
  • Partners with and advises various IT teams. Operationalizes Policies, Practices, and Instructions to protect against existing and emerging threats.
  • Builds relationships across PSEG business and technology teams. Interacts routinely with vendors, service providers, consultants/advisors, law enforcement agencies, and cross-sector cyber industry trade organizations. Ensures that cyber governance, risk, and compliance requirements are identified, well defined, properly documented, and approved by appropriate stakeholders.
  • Develops, manages, and pre-prioritizes Cybersecurity CAPEX and OPEX budgets based on business needs and cyber threats. Lead the identification of optimal OPEX and CAPEX allocations, including opportunities to reduce expenditures while transforming PSEG Cybersecurity Governance, Risk, and Compliance. Lead and advise on business case development.
  • Leads team, including performance evaluations, career development guidance, and other aspects to grow the talent pipeline and to mature our program.

Job Specific Qualifications
  • Bachelors degree and 10 years of relevant cybersecurity experience, including leadership experience
  • Demonstrated strong leadership and influence skills
  • Demonstrated strong presentation skills with the ability to present to all levels of management and executive leadership
  • Experience leading a Cybersecurity Governance, Risk, and Compliance organization
  • Executive teamwork, facilitation, relationship building, and negotiation skills
  • Ability to maintain positive working relationships both as a leader and as a team member
  • Effective time management and multitasking skills
  • Ability to communicate effectively with both technical and non-technical individuals
  • Strong interpersonal communication skills, analytical abilities, detail focused, quality focused, and problem-solving skills, as well as broad knowledge of business functions, information technologies, and cybersecurity and compliance practice on a global level
  • A demonstrated ability to develop and maintain policy that integrates various cybersecurity, network and data protection technologies and controls into a cohesive solution that sufficiently mitigates risk
  • Extensive relevant experience in Cybersecurity, Information Risk Management, Nth-Party Risk Management, Cybersecurity Policies/Procedures, and Cybersecurity Compliance/Audit
  • Strong analytical skills, problem solving skills, writing skills, attention to detail, and conceptual thinking, including the ability to work with technical and non-technical business owners
  • Broad knowledge of cybersecurity principles (e.g. access control, data protection, security architecture, infrastructure/application security design principles, policies) and privacy (i.e. GDPR)
  • Working knowledge of cybersecurity and control frameworks (ISO27001, NIST, CobIT)
  • Effective communication skills, including the ability to build relationships with technical and non-technical individuals
  • Be able to identify, analyze, and address problems in order to resolve issues in ways that minimize negative impact and risk to the company
  • Experience evaluating security controls, conducting risks assessments, and providing guidance to platform architects/developers
  • Demonstrated experience in delivering comprehensive solutions to complex security issues on a global scale
  • Confidence in leading diverse matrix teams independently, making decisions daily as it relates to the successful delivery of the program
  • Ability and insight to know when critical decisions must be raised to senior level and/or business unit management quickly to ensure that the program remains on track
  • Department of Energy's regulation 10 CFR 810 is required

Desired
  • Industry Cybersecurity certifications (e.g. CISSP, CEH, etc....)
  • Masters in Information Security, Computer Science, Business, Engineering, or related fields
  • Experience in Electric or Gas Utility or Power Generation industry, and/or experience in manufacturing
  • Broad knowledge of IT and related control environments

Job Number: RQ#82809_Dir Cyber Sec - GRC
Community / Marketing Title: Director of Cybersecurity - GRC
Location_formattedLocationLong: Newark, New Jersey US

What PSEG employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

PSEG logo

About PSEG

Sourced by ZipRecruiter

This is an exciting time to be joining PSEG. Our commitments, which include safety, integrity, customer focus, and diversity & inclusion, are the fabric of our culture and help drive the success of our business. We are fortunate to have an outstanding workforce of diverse and highly skilled talent who move us forward in our operational excellence journey. PSEG has more than 12,000 employees who are dedicated to the communities we serve and embody our vision: People providing Safe, Reliable, Economic and Greener Energy.

Industry

Clean energy services

Company size

10,000+ Employees

Headquarters location

Newark, NJ, US

Year founded

1903

View All PSEG Jobs

Apply