1

Information Security Governance Manager Jobs (NOW HIRING)

Information Security Governance (40%) * Manage assigned IS policy areas through the review, revision, consultation, and publication cycle, communicating policy requirements to stakeholders across the ...

Information Security Governance (40%) * Manage assigned IS policy areas through the review, revision, consultation, and publication cycle, communicating policy requirements to stakeholders across the ...

Job Purpose: Support the implementation, monitoring, and continuous improvement of information security governance, risk management, and compliance program. This role contributes directly to ...

The Senior Information Security GRC Analyst contributes to the continuous improvement of governance processes, compliance monitoring, and enterprise risk management activities within a regulated ...

next page

Showing results 1-20

Information Security Governance Manager information

See salary details

$62.5K

$136.1K

$200K

How much do information security governance manager jobs pay per year?

As of Jul 14, 2026, the average yearly pay for information security governance manager in the United States is $136,104.00, according to ZipRecruiter salary data. Most workers in this role earn between $110,500.00 and $160,500.00 per year, depending on experience, location, and employer.

What does an Information Security Governance Manager do?

An Information Security Governance Manager is responsible for developing, implementing, and overseeing the policies, procedures, and frameworks that ensure an organization’s information assets are properly protected. They align information security strategies with business objectives, manage compliance with relevant laws and regulations, and coordinate risk management activities. This role often involves collaborating with various departments, leading audits, and reporting to senior management about the organization's security posture and areas for improvement.

What are the key skills and qualifications needed to thrive as an Information Security Governance Manager, and why are they important?

To thrive as an Information Security Governance Manager, you need a deep understanding of information security frameworks, risk management, compliance regulations, and typically a relevant degree or certifications such as CISSP, CISM, or CRISC. Familiarity with GRC (Governance, Risk, and Compliance) tools, audit management systems, and data protection technologies is essential. Outstanding analytical thinking, leadership, and effective communication are crucial soft skills for managing teams and influencing organizational policies. These skills and qualities ensure robust security postures, regulatory compliance, and effective risk mitigation strategies across the organization.

What are some common challenges faced by Information Security Governance Managers when implementing organization-wide security policies?

Information Security Governance Managers often encounter challenges such as gaining buy-in from various departments, balancing security requirements with business objectives, and ensuring consistent policy enforcement across all levels of the organization. They must communicate effectively with both technical and non-technical stakeholders to address concerns and promote security awareness. Additionally, keeping policies up-to-date with evolving regulations and emerging threats requires ongoing collaboration and adaptability.

What is the difference between Information Security Governance Manager vs Information Security Analyst?

AspectInformation Security Governance ManagerInformation Security Analyst
CertificationsCISSP, CISM, ISO 27001 Lead AuditorCISSP, CompTIA Security+, GIAC Security Essentials
Work EnvironmentStrategic, policy-focused, management teamsOperational, technical, security teams
Employer & Industry UsageOrganizations with formal security governance frameworksSecurity operations, incident response teams
Search & Comparison IntentUnderstanding governance roles and responsibilitiesTechnical security tasks and analysis

The main difference is that the Information Security Governance Manager focuses on establishing and maintaining security policies, compliance, and strategic oversight, while the Information Security Analyst handles technical security assessments, monitoring, and incident response. Both roles are essential but serve different functions within an organization's security framework.

What cities are hiring for Information Security Governance Manager jobs? Cities with the most Information Security Governance Manager job openings:
What are the most commonly searched types of Information Security Governance jobs? The most popular types of Information Security Governance jobs are:
What states have the most Information Security Governance Manager jobs? States with the most job openings for Information Security Governance Manager jobs include:
Infographic showing various Information Security Governance Manager job openings in the United States as of July 2026, with employment types broken down into 95% Full Time, 3% Part Time, and 2% Contract. Highlights an 82% Physical, 6% Hybrid, and 12% Remote job distribution, with an average salary of $136,104 per year, or $65.4 per hour.
Sr. Analyst, AI Governance

Other

Posted 3 days ago

New


Newell Brands rating

7.3

Company rating: 7.3 out of 10

Based on 80 frontline employees who took The Breakroom Quiz

314th of 527 rated manufacturers


Job description

Job ID: 15976 

Alternate Locations:  

Newell Brands is a leading consumer products company with a portfolio of iconic brands like Graco, Coleman, Oster, Rubbermaid, Sharpie and Yankee Candle - and 24,000 talented teammates around the world. Our culture is built on values in action: Integrity, Teamwork, Passion for Winning, Ownership, and Leadership. We work together to win, grow, and make a real impact-supported by a high-performing, inclusive, and collaborative environment where you can be your best, every day.

Job Overview

The Information Security Artificial Intelligence (AI) Governance Senior Associate is an intermediate-level professional within the Global Information Security (IS) Risk & Resilience team at Newell Brands. Reporting to the IS Governance Manager, this role is responsible for the day-to-day operational delivery of the IS function's AI governance activities and contributes substantively to the broader IS governance program. The IS Governance Manager retains program accountability; the Senior Associate operates with routine oversight, exercises independent judgment on moderately complex assignments, interprets regulatory requirements, and communicates governance policies and practices to stakeholders within the team and across the business.

The role focuses primarily on Information Security AI Governance (50%), Information Security Governance (40%), and Metrics, Analysis and Reporting (10%).

Information Security AI Governance (50%)

  • Execute the day-to-day operational delivery of the IS function's AI governance activities, including maintaining the IS AI Agent Asset Record, managing the AI tool intake review process from an IS perspective, and maintaining the IS inventory of assessed AI tools.
  • Conduct IS AI risk assessments, evaluating risk exposure associated with AI tool adoption, identifying control gaps, and recommending treatment actions aligned with the National Institute of Standards and Technology (NIST) AI Risk Management Framework (AI RMF), European Union (EU) AI Act, and Open Worldwide Application Security Project (OWASP) Top 10 for Large Language Models (LLMs).
  • Develop and maintain IS AI governance policies, standards, and procedures, interpreting regulatory requirements and translating them into practical controls applicable to Newell's AI environment.
  • Provide operational support to the IS Governance Manager and Director, IS Risk Management, in their capacity as Newell Brands' IS representatives on the AI Governance Committee (AIGC), preparing briefing materials and ensuring both leaders have current risk positions ahead of committee engagements.
  • Develop and deliver AI security governance awareness content for the business and represent the IS function in cross-functional AI working groups.

Information Security Governance (40%)

  • Manage assigned IS policy areas through the review, revision, consultation, and publication cycle, communicating policy requirements to stakeholders across the business.
  • Administer the security exceptions process, evaluating exception requests against established criteria, advising on mitigating controls, and ensuring timely escalation of aged or high-risk items.
  • Perform control testing and governance assurance activities, assessing control design and operational effectiveness, and documenting findings with actionable recommendations.
  • Monitor the regulatory environment for IS legislation and standards, including NIS2 and equivalent requirements, summarizing findings and proposing governance responses.
  • Provide governance input into technology projects and change initiatives and work cross-functionally to embed IS governance practices across the organization.

Metrics, Analysis and Reporting (10%)

  • Develop and maintain governance and IS AI governance Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) aligned to risk appetite and contribute to analytical reports and executive-ready outputs for senior leadership.
  • Leverage data and visualization tools to present governance insights clearly and identify opportunities for continuous improvement in reporting and governance tooling.

Qualifications:

  • Bachelor's degree in Information Security, Cybersecurity, Computer Science, or a related field.
  • 2-4 years of relevant experience in IS governance, risk management, or compliance.
  • Working knowledge of AI security governance frameworks and regulatory requirements, including the NIST AI RMF, EU AI Act, and OWASP Top 10 for LLMs is preferred.
  • Solid understanding of primary IS control frameworks, including Center for Internet Security (CIS) Critical Security Controls (CSC) Top 18 and NIST Cybersecurity Framework (CSF) 2.0, with awareness of Payment Card Industry Data Security Standard (PCI-DSS) requirements given the organization's retail operations is preferred.
  • Familiarity with Cyber Risk Quantification (CRQ) principles and the Factor Analysis of Information Risk (FAIR) methodology is preferred.
  • Hands-on, day-to-day working experience with major LLMs including ChatGPT, Microsoft Copilot, and Claude; demonstrated capability with agentic AI tooling is a strong plus.
  • CompTIA Security+, ISC2 Certified in Governance, Risk, and Compliance (CGRC), Certified Information Security Manager (CISM), Advanced in AI Risk (AAIR) is a plus.
  • Experience with Governance, Risk, and Compliance (GRC) tooling; working knowledge of Optro (formerly AuditBoard) is preferred, and experience with comparable platforms such as ServiceNow GRC, OneTrust, or Archer is equally valued.
  • Effective written and verbal communication skills, with the ability to produce clear governance documentation and reporting for senior audiences.
  • Self-motivated and proactive, with a genuine commitment to building a long-term career in information security governance.
  • Familiarity with data visualization and reporting tools (e.g., Power BI, Tableau) to support governance reporting is preferred.

*Please note this position will not be able to sponsor H1B visa or support OPT status.

Newell Brands (NASDAQ: NWL) is a leading global consumer goods company with a strong portfolio of well-known brands, including Rubbermaid, Sharpie, Graco, Coleman, Rubbermaid Commercial Products, Yankee Candle, Paper Mate, FoodSaver, Dymo, EXPO, Elmer's, Oster, NUK, Spontex and Campingaz. We are focused on delighting consumers by lighting up everyday moments. Newell Brands and its subsidiaries are Equal Opportunity Employers and comply with applicable employment laws. EOE/M/F/Vet/Disabled are encouraged to apply. 


What Newell Brands employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


Newell Brands logo

About Newell Brands

Sourced by ZipRecruiter

Newell Brands (NASDAQ: NWL) is a leading global consumer goods company with a strong portfolio of well-known brands, including Rubbermaid, Sharpie, Graco, Coleman, Rubbermaid Commercial Products, Yankee Candle, Paper Mate, FoodSaver, Dymo, EXPO, Elmer's, Oster, NUK, Spontex and Campingaz.

Industry

Manufacturing

Company size

10,000+ Employees

Headquarters location

Atlanta, GA, US

Year founded

1903

Social media