What makes Cognizant a unique place to work? The combination of rapid growth and an international and innovative environment! This is creating a lot of opportunities for people like YOU — people with an entrepreneurial spirit who want to make a difference in this world.
At Cognizant, together with your colleagues from all around the world, you will collaborate on creating solutions for the world's leading companies and help them become more flexible, more innovative and successful. And this is your chance to be part of the success story: we are looking for a new team member to join our Business Information Security (BIS) Team.  

The Business Information Security (BIS) is a global team that is responsible for ensuring all security risks pertaining to business delivery and Client engagements are managed end to end. The team engages on a frequent basis with business leaders to identify, analyze and mitigate security risks. The team is also the primary touch point between the Corporate Security Group and Business teams, while supporting the business on Client security requirements and compliance.
As a Manager in BIS, you will be part of highly skilled team and an environment encouraging professional and personal development. You will guide Business teams on information security, including compliance with contractual obligations and internal requirements. Through contract reviews, risk assessments, security governance, ISMS implementations, and control validations with Delivery and corporate functions (HR, IT, Legal, Privacy, etc.), you will assess and improve the information security of several accounts within Cognizant’s GGM (Global Growth Markets) Business. You will play a key role in the Nordics and have visibility in the organization and among our client’s CISOs.

• Manage security and compliance risks in service delivery for Nordics Customer
• Communicate with Business teams to understand all critical security requirements and risk scenarios
• Engage in BIS program for the key accounts in the region
• Define comprehensive control framework meeting Nordics Regulatory requirements & contractual obligations
• Educate Business teams on Security & Compliance requirements
• Drive the Security Program for various accounts and enable Business to achieve the compliance
• Establish ISMS in line with the standards such as ISO 27001
• Identify and evaluate risks
• Understand business context and prepare Risk reports and recommendations
• Interface with Customer (s) to respond any queries, demonstrate the compliance, understand the issues etc.
• Coordinate with Incident management team during incidents and support investigation of security breaches
• Perform annual Security Risk assessments and conduct related ongoing compliance monitoring activities
• Engage with different stakeholders: external auditors, customer visitor, business leaders and corporate teams, such as HR, legal, IT, etc.
• Conduct reviews to assess the service delivery control environment and evaluate adherence to client identified contractual requirements, Cognizant policies and standards
• Perform Security Awareness Sessions for various stakeholders within Business 

• At least 6-8 years of Experience in Security & Compliance domain
• Exposure, Knowledge & working experience on various Regulatory & Compliance standards/frameworks such as GDPR, PCI DSS etc.
• Experience on managing Security Compliance program
• Knowledge on GDPR and EU Data Protection directive
• Already have or in process to obtain Security Certifications e.g. CISA, CISSP, CISM, etc.
• Experience on ISO 27001 Information Security Management system, Risk Assessments, Evaluation of results / findings, IT GRC Governance Risk Compliance Tools
• Participation in information security and risk management field, especially with Technology Risk Management / IT Audit in Enterprise organizations
• Knowledge in understanding and deploying risk management and security frameworks such as NIST, ISF and ISO
• Knowledge of SSAE/ISAE3402, SOC 1 and SOC 2 and PCI-DSS, assessment and control implementation
• Basic Understanding of network and system security technology and practices across all major-computing areas with a special emphasis on Internet related technology
• Ability to think strategically; work with a sense of urgency and pay attention to detail
• Ability to present complex solutions and methods to a general community
• Independent thinking, willingness to "step outside the box" and take reasonable, calculated risks
• Excellent written and verbal communication and organizational skills in English
• Norwegian or Danish skills would be considered as an advantage
• Strong collaboration skills and willingness to be a team player to solve problems and incorporate input from various sources
• Willing to travel (10%)

• A career at a growing global organization
• Scandinavian ways of working (Nordic clients, supportive team lead and collaborative team)
• Opportunity to grow both professionally and personally (incl. Udemy) with support from an experienced manager and/or HR specialists
• Encouraging working atmosphere, engaging activities, and extra benefits (e.g. medical insurance, team events, flexible working hours)
• Socially responsible company with a strong focus on respect for its associates, clients as well as community through a variety of social initiatives

Currently all interviews and on boarding are done online as most of Cognizant employees are working from home.

We will be looking for Your CV.

Stay up to date with our website careers.cognizant.com/global/en!
Only suitable candidates will be contacted

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.