Title: Security Governance Manager
Location: Bangalore, Hyderabad, Chennai, Pune and Mumbai
Shift: UK Shift
Experience: 5+ years in cybersecurity governance, policy management
As a CGI Partner within the Global Security Corporate team, the Security Governance Manager will support the design, implementation, and continuous improvement of CGI’s Enterprise Security Management Framework and CGI’s Security Program. This role plays a critical part in protecting CGI by ensuring that our security policies, controls, and frameworks align with evolving business needs and strategic goals, industry standards, regulatory requirements, and client expectations.
The successful candidate will be responsible for managing the Enterprise Security Management Framework lifecycle, including security processes, policies and standards, guidelines, and tools ensuring that security is integrated in all aspects of CGI’s operations and that the organization is protected against security threats with appropriate controls while fostering a strong security culture.
This is a high-impact role with visibility across global corporate functions and regional business units.
Your future duties and responsibilities
• Own the lifecycle of CGI Enterprise Security Management Framework, Security Policies, Standards, and Controls: development, review, approval, publication, and maintenance.
• Govern and operationalize the Enterprise Security Management Framework (ESMF), ensuring alignment with CGI’s business objectives and external standards (e.g., ISO 27001, ISO 223011, NIST, ITIL, COBIT, SOC).
• Define and implement governance processes related to the evolution of the ESMF, policies, standards and controls, exception handling, and compliance tracking.
• Analyze security operational data and trends (e.g. incidents, exceptions, findings, vulnerabilities, reports) to identify opportunities for improvement.
• Partner with internal stakeholders (e.g., Internal Audit, Legal, Privacy, Risk, CIO, Architecture, HR, etc.) to interpret and implement governance requirements.
• Develop and maintain tactical and executive-level dashboards to report on governance KPIs and control effectiveness.
• Contribute to the evolution of CGI’s global security strategy by aligning with business objectives, supporting program maturity assessments, and recommending improvements to the Security Program Roadmap and the ESMF.
• Contribute to internal risk and compliance initiatives (e.g., assessments, audits, controls testing) by providing framework, policy and control guidance.
• Organize, lead and support ESMF and Security program related meetings and forums including presentations, meeting minutes and follow-up activities.
• Participate in security awareness and training initiatives by providing input to help to integrate security into CGI Partner’s culture.
• Maintain awareness of emerging threats, technologies, and regulatory developments to ensure the ESMF evolves accordingly.
• Support Global Security-led initiatives as a subject matter expert in security governance and ESMF requirements.
Required qualifications to be successful in this role
Education / Certifications
• Bachelor’s degree in Computer Science or related field and/or equivalent experience.
• One or more security certifications such as CISSP, CISA, CISM, CRISC (preferred).
Experience
• Minimum 5+ years in cybersecurity governance, policy management, or compliance-related roles within a large organization.
• Experience in managing or maintaining security frameworks, policies and security management system (e.g. ISMS).
• Demonstrated familiarity with key security standards and technical security controls (e.g., ISO 27001/2, NIST CSF, COBIT, SOC 2) and governance/maturity models (e.g., NIST CSF, CMMI)
• Familiarity with GRC or policy management platforms, risk register tools, and dashboarding/reporting tools (e.g. Archer, Power BI) is an asset
• Experience supporting security audits, assessments, or risk governance activities is an asset
• Exposure to global organizations and multicultural environments is an asset
Skills
• Strong understanding of information security principles, governance structures, and compliance methodologies.
• Ability to analyze security issues and translate them into governance requirements, policy updates, and measurable outcomes.
• Strong written and verbal communication skills; able to prepare governance documentation and present to stakeholders at various levels.
• Excellent interpersonal and stakeholder engagement skills with a collaborative mindset.
• Strong organizational skills and the ability to manage multiple projects in parallel.
• Proficiency in English is required; French is a strong asset.
Other requirements
• Able to work in alignment with Eastern Standard Time (EST) business hours.Able to work in alignment with Eastern Standard Time (EST) business hours.Able to work in alignment with Eastern Standard Time (EST) business hours.
This role can be located in a CGI office in one of the following locations: Canada, India, Philippines
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
Come join our team—one of the largest IT and business consulting services firms in the world.