Skip to main content

Business Information Security Senior Manager

00069721991

ABOUT THE ROLE

What makes Cognizant a unique place to work? The combination of global and innovative environment creates many opportunities for people like YOU — professionals with an entrepreneurial mindset who want to make a difference globally. The Corporate Security Business Information Security (BIS) team is a global team responsible for ensuring that all security risks on client delivery engagements are managed end-to-end and for establishing trust across a wide variety of engagements. The group frequently engages with business leaders and customers to identify, assess, and mitigate security risks. The team is also the primary interface between the wider Corporate Security community and the business to deliver our security obligations to customers.

Cognizant is seeking Information Security leaders to expand, lead, and manage security governance function across the Asia-Pacific and Japan (APJ) region, particularly within ASEAN region: Singapore, Malaysia, Philippines, Thailand, Vietnam, and Indonesia with potential extension to Greater China region: Mainland China, Hong Kong, and Taiwan. Candidates will have a proven ability in Security Governance, Risk, and Compliance (GRC), Security Engineering & Architecture, and Program Management.

JOB RESPONSIBILITIES:
Security Governance

  • Manage and implement Security Governance, Risk, and Compliance (GRC) practices across a wide variety of client delivery engagements within the region, including public sector, telecommunications, retail, and financial services.
  • Ensure compliance with regional and international cybersecurity and privacy laws, frameworks, and standards such as International (ISO 27001, NIST CSF, GDPR), Singapore (Cybersecurity Act, CCoP, MAS TRM, PDPA), and China (CSL, DSL, PIPL).
  • Work with the Business Information Security Officer (BISO) and affiliated Centre of Excellence (CoE) leaders to ensure organizational practices align with business objectives and the evolving threat landscape.
  • Drive alignment with Cognizant, client, and regulatory security policies, standards, and risk management frameworks across all engagements.

Security Risk and Control Management

  • Engage with a variety of stakeholders, including business leaders, auditors, customer security officers, legal, HR, and IT teams, to understand security requirements and risk scenarios.
  • Apply end-to-end risk management principles guided by business context and risk appetite; identify, assess, treat, and monitor risks.
  • Develop security management and data protection plans for key accounts by identifying assets, threat vectors, and defining mitigation strategies and control frameworks.
  • Conduct periodic risk and control assessments to evaluate adherence to contractual, regulatory,and internal obligations, and provide implementation plans to close gaps.
  • Support business and client facing risk discussions and contribute to security clauses, contractual obligations, and risk acceptance processes.

Security Operations and Program Management

  • Uplift the security maturity of various parts of the Cognizant business, including subsidiaries and acquisitions, to meet global security policies, standards, and guidelines.
  • Manage third-party and client audits/security assessments, including OSPAR, SOC 2 Type I/II, PCIDSS, DPTM PDPA, and ISO 27001; plan scope, schedules, and coordinate evidence collection across corporate functions.
  • Assist delivery teams in reviewing Technical Solution Designs and Secure SDLC processes to ensure IT products and services are secure-by-design and aligned with risk appetite.
  • Coordinate corporate incident management response and support investigations within definedntimeframes; liaise with customers, regulators, and external stakeholders as required.
  • Develop security training and awareness materials and deliver or facilitate awareness programmes.
  • Provide leadership reporting, including risk posture, remediation progress, and key security metrics to senior stakeholders.
  • Contribute to regional security strategy and continuous improvement initiatives.

JOB REQUIREMENTS

  • Must have a Bachelor’s degree or above in a related field or equivalent experience.
  • Must hold relevant security certifications such as CISSP, CRISC, or CISA.
  • Must have experience managing Information Security functions within a highly regulated environment.
  • 10+ years of cybersecurity experience.
  • 5+ years of people and/or program management experience.
  • Strong knowledge of security frameworks such as ISO 27001, NIST CSF, MAS TRM, and PDPA.
  • Experience in attaining certifications or attestations such as ISO 27001, OSPAR, SOC reports, etc.
  • Experience with Security/Infrastructure Design, Engineering, or Architecture.
  • Experience in Project/Program Management.
  • Experience working with government, critical infrastructure, or regulated industry is highly desirable.
  • Excellent stakeholder engagement skills.
  • Excellent presentation and communication skills, with the ability to convey complex security risks and mitigation strategies in a concise and business-relevant manner.
  • Ability to plan both tactically and strategically.
  • Deliver outcomes with a sense of urgency while maintaining strong attention to detail.
  • Demonstrate pragmatism by recommending risk mitigation strategies that balance cost, risk, and business value.
  • Strong collaboration skills and willingness to be a team player, leveraging cross-functional inputs to solve complex problems.
  • Willingness to travel (~10%).

What we offer

  • The chance to work with impact. Here, you’re empowered to bring your biggest thinking to help our company and clients improve everyday life.
  • Ownership over your career. Stay at the top of your game through our award-winning learning and development ecosystem. And when your ambitions change or we offer new opportunities, we help you pivot by providing reskilling, on-the-job learning and guidance to find new roles that might be a better fit.
  • The opportunity to thrive on a high caliber team with heart. We celebrate each other’s experiences and perspectives and promote a sense of belonging through our affinity groups and diversity and inclusion initiatives.
  • A comprehensive total rewards package, including a competitive salary and a pension plan with matching contributions.
  • Flexible health and financial benefits to support you and your eligible dependents—from day one.
  • True work-life balance. Be at your best through paid time off, flexible work arrangements, volunteering opportunities, social events, and so much more.  

About us
Cognizant (Nasdaq: CTSH) is an AI Builder and technology services provider, building the bridge between AI investment and enterprise value by building full-stack AI solutions for our clients. Our deep industry, process and engineering expertise enables us to build an organization’s unique context into technology systems that amplify human potential, realize tangible returns and keep global enterprises ahead in a fast-changing world. See how at www.cognizant.com or @cognizant.

Other employment-related information
Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, provincial or local laws.

If you have a disability that requires reasonable accommodation to search for a job opening or submit an application, please email [email protected] with your request and contact information.

Language requirements vary depending on roles, but we ask that all candidates have basic English proficiency for company-wide communications purposes. For roles based in Quebec, professional English proficiency is required, as you’ll deliver services to and collaborate with stakeholders outside the province who may not speak French.

Your path to Cognizant

Wondering what to expect after you apply? Here’s a peek at our recruitment process—and keep in mind that not all candidates advance through every step and the process may vary depending on your role and location.

Your Application Midnight Blue RGB

Step 1: Application

Find an open role that aligns with your skills and career goals and show us why you’re the person for the job. Consider joining our Talent Community if you don’t find the right opportunity.

Phone Call Midnight Blue RGB

Step 2: Recruiter call

If one of our recruiters sees a fit, they’ll set up a short introductory call to learn more about you and how your experiences and skills align with the role.

Step 3: Interview(s)

If you and our team would like to continue the process, you’ll meet with one of our hiring managers. Some roles may also require technical assessments and/or client interviews.

Step 4: Final decision

Our hiring team will then review each candidates’ potential to succeed in the role. This process may take some time because we want to get it right—but you can count on us to keep you updated.

Benefits that help you thrive and grow

Our teams achieve incredible things when they feel fully supported. That’s why our benefits program is built around the diverse needs of our people—so they can enjoy a fulfilling, balanced and healthy life.

Untitled Design 49
Financial wellbeing

Financial wellbeing

We regularly review market data to ensure compensation is competitive and reflects the value you bring. Your benefits extend beyond pay and may include retirement plans, financial education, discount programs, etc.

1 (1)
Physical and mental wellbeing

Physical and mental wellbeing

We empower you to prioritize your wellbeing through paid time off, flexible working where possible, healthcare plans, counselling, our Mental Health Allyship program and more. 

Your Career, Your Way
Your career, your way

Your career, your way

With 90% of our associates building skills through GenAI training, job shadowing, industry certifications and more, you have everything you need to build a full career.

Professionals
Real-world impact

Real-world impact

Think about the biggest brands you rely on. Chances are, they rely on us to help strengthen their business. Here, you’ll turn bold ideas into solutions that improve lives everywhere.

Haven't yet found the right opportunity?

Receive the latest updates on job opportunities, recruitment events and company news—tailored just for you!

Get the latest updates