**About ETS:** For more than 75 years, we have amplified products and services based rigorous research and our belief in the power of learning. Driven by our mission to advance quality and equity in education, ETS provides learning solutions, pioneering research and trusted assessments that help guide learners around the world on their path to new possibilities. Our portfolio of trusted measures include **TOEFL®, TOEIC®, GRE® and Praxis®** . Along with research, development and innovation that explores new frontiers in learning and measurement our educational measurement solutions and research contribute to the development of new methods and tools, inform important dialogue with education policymakers, and shed light on critical issues and potential solutions - all with the aim of creating a world where all learners can improve their lives through education. With new senior leadership at the helm, ETS aims to continue changing the lives of all learners as we expand our organization's global footprint. Our goal is to remain at the forefront of assessment and measurement efficacy within the education and ed tech space as it continues to grow and evolve. Position Summary: The Manager, IT position is responsible for overseeing and directing the daily operations of an IT Business unit (e.g. Data Management, IT Delivery, Business Relations, Demand Management, Enterprise Architecture, IPO and Applications Development & Maintenance). This role is responsible for the management, evaluation, prioritization, and response to business requests for new applications and modifications to existing systems and requires subject matter expertise in IT. The successful candidate must also have experience with regulatory frameworks such as ISO 27001, NIST 800-53, and PCI-DSS. The Manager assists the Director of IT in training and developing a team of technical staff members, monitoring the quality of deliverables and staff productivity. This is a hands-on role deeply involved in the daily operations, goals and troubleshooting activities of the department that calls for an individual committed to successful and timely delivery across the organization. The incumbent must be able to balance individual work output responsibilities. Responsibilities: • Implement IT strategy consistent with individual business unit goals and departmental direction. • Program management: Lead the GRC program roadmap, status reporting on initiatives, metrics, and delivery of the program services. • Policy management: Lead in the creation and maintenance of security policies, standards, processes, and guidelines. Evaluate exception requests and make approval recommendations to management. • Program assessments: Manage and support the 3rd Party Security Vendor Risk Management program, and regulatory compliance reporting for ISO27001, PCI-DSS, and other frameworks. • Risk management: Manage control testing, issues management (findings, remediation plans, and exception requests), risk register and reporting. • Regularly update senior leadership on progress and status of assigned projects and ensure that production goals are met. • Oversee and manage the completion of staff projects, tasks, and duties. • Manage the development and enforcement of standards and procedures for departmental administration. • Develop and improve metrics for process orientation. • Monitor staff performance in relation to productivity, the completion of daily departmental operations and meeting of annual objectives. Knowledge and Skills: • Ability to perform as primary Security Subject Matter Expert (SSME) in a senior or lead capacity. • Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. • Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm's security program and controls. • Ability to communicate an effective security awareness message throughout the organization. • Demonstrate ability to create and maintain security policy, standard, guideline, and procedure documents. • Demonstrate ability to effectively communicate deeply technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management, and non-technical users. • Strong ability to communicate with technical and non-technical practitioners, as well as executives. • Strong presentation skills. Education and Experience: • Bachelor's degree is preferred. • Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. • Seven (7) + years of direct experience (Information Security/Governance) is required. • Four (4) + years of management experience required. • Strong knowledge on Security frameworks such as ISO 27001, NIST 800-53, NIST Risk Management Framework, etc are required. • Strong knowledge of risk management principles and practices is required. Familiarity with the FAIR risk framework is preferred. • Experience handling multiple concurrent projects effectively. \#LI-NA1 \#LI-HYBRID **ETS believes in a Total Rewards philosophy for our employees, and they include:** + Health, Vision, Dental insurance plans to choose from + Generous continuous learning support, from individual learning grants to up to 6 classes a year for tuition reimbursement as well as on-line learning access! + Generous PTO and vacation time to balance your work and life + Additional 8 hours of PTO for volunteer work + Retirement plan (401(a)) and traditional Roth (403b) with company contribution + Commuter Benefits, Pet Insurance, 1 year subscription to Calm App **ETS is mission driven and action oriented** + Diversity, equity, inclusion, and belonging is at the forefront of the ETS employee's daily work. To further foster an inclusive environment ETS is home to a wide variety of Affinity groups that celebrate the diversity of our talented employees. + How about cultivating growth, innovation, and continuous transformation for the next generation of rising professionals as leaders? ETS offers multiple Business Resource Groups (BRG) for you! + Are you passionate about volunteering and being active in your career and community? ETS offers our Center for Advocacy & Philanthropy (CAAP) where we encourage ETS employees to become active volunteers in their communities and schools through the ETS Cares Giving Campaign. Our employees can support any 501c3 or eligible charity of their choice. **ETS is an Equal Opportunity Employer comprised of people with different experiences, strengths, and backgrounds who share a passion for advancing quality and equity in education. We are dedicated to building teams that reflect the various backgrounds, experiences, and identities of those we serve. The Talent Acquisition team strives to ensure candidates enjoy a fair and equitable hiring process. We believe our differences empower us to be a better team, making better decisions and delivering better results.**