Senior Manager, Information Security

Saviynt's AI-powered identity platform manages and governs human and non-human access to all of an organization's applications, data, and business processes. Customers trust Saviynt to safeguard their digital assets, drive operational efficiency, and reduce compliance costs. Built for the AI age, Saviynt is today helping organizations safely accelerate their deployment and usage of AI. Saviynt is recognized as the leader in identity security, with solutions that protect and empower the world's leading brands, Fortune 500 companies and government institutions. For more information, please visit www.saviynt.com.

About the Role

Saviynt is seeking a security professional to join its Information Security team as a Senior Manager. In this role, you will own and drive the strategy, implementation, and governance of the organization's cloud security, data security and AI security initiatives. You will collaborate closely with engineering, product, HR, support and other cross-functional teams to embed
security across the enterprise and protect Saviynt's data assets in an AI-driven and cloud-first environment

Key Responsibilities

● Design, deploy, and continuously improve enterprise DLP solutions across endpoints, email, cloud environments, and enterprise SaaS applications. Own tooling, policy tuning, incident response workflows, and effectiveness reporting to senior leadership
● Develop and enforce data classification policies, data handling standards, and acceptable use guidelines for generative AI and third-party services, aligned with regulatory requirements (GDPR, SOC 2, ISO 27001, ISO 42001)
● Conduct data flow mapping, risk assessments, and third-party data handling reviews to identify how Saviynt's internal and customer data is collected, processed, stored, and transmitted and ensure remediation of exposure gaps across the data lifecycle
● Own the DSPM program to continuously discover, classify, and monitor sensitive data across cloud environments and AI and SaaS applications. Drive remediation of misconfigurations, shadow data, unprotected storage, and over-privileged access
● Integrate DSPM insights with broader security operations to maintain a unified data risk posture, and define data access policies in partnership with IAM/IGA teams to enforce least-privilege principles
● Provide cloud security architecture guidance across multi-cloud environments (AWS,Azure, GCP) covering IaaS, PaaS, and SaaS; conduct security assessments of externally consumed SaaS applications, AI applications and internally deployed workloads to evaluate architectural risks and data security control gaps
● Define and drive the enterprise AI Security and Governance strategy, establishing policies, risk frameworks, and controls for the secure and responsible adoption of AIte chnologies and platforms including generative AI, LLM-based applications, and third-party AI based SaaS services.
● Conduct AI security assessments evaluating risks while ensuring alignment with emerging frameworks and regulations (OWASP LLM Top 10, NIST AI RMF, EU AI Act, ISO 42001).
● Define and track KPIs for Data Security, Cloud Security and AI Security initiatives and report on overall data security posture, risk trends, and program progress to senior leadership and key stakeholders

Qualifications & Experience

● Bachelor's or Master's degree in Computer Science, Information Security, or a related field or equivalent work experience with demonstrated results.
● 10+ years of experience in working in the information security space.
● Strong understanding of cloud security, data security and AI security.
● In-depth knowledge of AWS, Azure or GCP Cloud Platform with strong understanding of security principles, standards, and frameworks (e.g., NIST, CIS, ISO 27001, SOC 2, GDPR,ISO 42001) as applied to cloud environments.
● Proficiency in scripting and automation (Python, PowerShell, Bash, or similar), including hands-on experience building AI Agents and Agentic Workflows to automate data security operations.
● Excellent communication skills with the ability to collaborate effectively with
cross-functional teams and stakeholders.

If required for this role, you will:

- Complete security & privacy literacy and awareness training during onboarding and annually thereafter

- Review (initially and annually thereafter), understand, and adhere to Information Security/Privacy Policies and Procedures such as (but not limited to):

> Data Classification, Retention & Handling Policy

> Incident Response Policy/Procedures

> Business Continuity/Disaster Recovery Policy/Procedures

> Mobile Device Policy

> Account Management Policy

> Access Control Policy

> Personnel Security Policy

> Privacy Policy

Saviynt is an amazing place to work. We are a high-growth, Platform as a Service company focused on Identity Authority to power and protect the world at work. You will experience tremendous growth and learning opportunities through challenging yet rewarding work which directly impacts our customers, all within a welcoming and positive work environment. If you're resilient and enjoy working in a dynamic environment you belong with us!

Saviynt is an equal opportunity employer and we welcome everyone to our team.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.