Instructional Design

Learning & Development

Higher Ed

K-12

Sales

Customer Success

Product Development

Software Engineering

Academic Advising

Marketing

Fully Remote

Tutoring

Information Technology

All Jobs

Companies
About Post a job
Existing employer? Sign in
edtech.com
Elsevier logo

Elsevier

Cybersecurity Governance and Compliance Senior Analyst

🇺🇸 Remote - NH 🕑 Full-Time 💰 $79K - $131K 💻 Cybersecurity 🗓️ January 16th, 2026
CISM CISSP FedRAMP

Edtech.com's Summary

Elsevier is hiring a Cybersecurity Governance and Compliance Senior Analyst. This role leads the development and implementation of a policy-driven cybersecurity governance program and data governance across the data lifecycle, while supporting compliance certifications and collaborating with enterprise stakeholders to manage risks and enforce security controls.

Highlights
  • Lead design and implementation of cybersecurity governance programs using GRC tools.
  • Establish and mature data governance and protection programs across the full data lifecycle.
  • Define and enforce data classification, labeling, and handling requirements with controls to prevent inappropriate sharing.
  • Maintain enterprise security governance structures, roles, and accountability.
  • Advise business and technology teams on governance, risk, and compliance matters.
  • Identify, escalate, and resolve cybersecurity GRC risks and issues.
  • Support and maintain compliance certifications such as ISO, PCI, and HIPAA.
  • Produce metrics, KPIs, and executive reporting for risk-based decision making.
  • Required skills include experience with cybersecurity governance, risk, compliance programs, security policies, and knowledge of ISO 27001/27701, HIPAA, PCI DSS, NIST, FedRAMP, and GRC platforms.
  • Preferred certifications: CISSP, CISM, CISA, CHP, CHSS.
  • U.S. base pay range: $78,800 - $131,300 with location-based differentials and eligibility for annual incentive bonuses.

Cybersecurity Governance and Compliance Senior Analyst Full Description

Cybersecurity Governance and Compliance Senior Analyst
About the Team
Elsevier's Information Security and Data Protection (ISDP) team leads the Company's cybersecurity practice, safeguarding information assets, consumer data, and technology infrastructure. We partner with business and technology stakeholders to enable effective risk management and support business objectives.

About the Role
Reporting to the Director of Cybersecurity Governance & Compliance, this Senior Analyst role focuses on maturing Elsevier's governance function. The position leads the development of a policy- and standards-driven governance program, defines and operationalizes the data lifecycle, and supports cybersecurity compliance certifications and related initiatives. The role partners closely with technology teams, product owners, and business stakeholders across the enterprise.

Key Responsibilities
  • Leading the design and implementation of a policy- and standards-driven cybersecurity governance program supported by GRC tooling
  • Establishing and maturing a data governance and protection program across the full data lifecycle
  • Defining and enforcing data classification, labeling, and handling requirements, including controls to prevent inappropriate data sharing
  • Establishing and maintaining enterprise security governance structures, roles, and accountability
  • Serving as a trusted advisor to business and technology stakeholders on governance, risk, and compliance matters
  • Driving identification, escalation, and resolution of cybersecurity GRC risks and issues
  • Supporting and maintaining cybersecurity compliance certifications and initiatives (e.g., ISO, PCI, HIPAA)
  • Producing metrics, KPIs, and executive-level reporting to support risk-based decision making

Qualifications
  • Possess extensive  experience in cybersecurity governance, risk, and compliance programs
  • Proven experience developing and managing security policies, standards, and controls
  • Experience building or maturing enterprise data governance and data protection programs
  • Working knowledge of security and compliance frameworks such as ISO 27001/27701, ISO 27017/27018, ISO 42001, HIPAA, PCI DSS, NIST 800-53/800-171, FedRAMP, and/or TX-RAMP
  • Experience implementing and operating GRC platforms and security programs
  • Possess  project management, analytical, and problem-solving skills

Preferred Certifications: CISSP, CISM, CISA, CHP, CHSS

Elsevier is a renowned global information analytics company that primarily focuses on providing scientific, technical, and medical (STM) research content, tools, and services. It is one of the largest publishers of academic journals and scholarly literature in the world.
Elsevier operates in various domains, including science, technology, medicine, social sciences, and more. They publish a vast number of peer-reviewed journals covering a wide range of disciplines. These journals act as platforms for researchers and academics to share their findings and contribute to the advancement of knowledge in their respective fields.

In addition to publishing, Elsevier offers a suite of digital solutions and services to support researchers, scientists, and professionals in their work. They provide online platforms like ScienceDirect, Scopus, and Mendeley, which offer access to a vast repository of scholarly articles, research papers, and other scientific content. These platforms often serve as essential resources for software developers seeking to stay updated with the latest scientific advancements.

U.S. National Base Pay Range: $78,800 - $131,300. Geographic differentials may apply in some locations to better reflect local market rates.If performed in Maryland, the base pay range is $82,800 - $137,800.If performed in New Jersey, the base pay range is $89,012 - $142,188.This job is eligible for an annual incentive bonus.

We know your well-being and happiness are key to a long and successful career. We are delighted to offer country specific benefits. Click here to access benefits specific to your location.

We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1-855-833-5120.

Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here.

Please read our Candidate Privacy Policy.
We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.

USA Job Seekers:

Similar Jobs

Cybersecurity Analyst (Digital Forensics/Incident Response)

Columbia University

🇺🇸 Manhattanville, NY

Cyber Security Manager, Gen AI

Blackbaud

🇺🇸 Remote - US

Information Security Assistant

Chapman University

🇺🇸 Orange, CA

Information Security & Compliance Manager

Western Psychological Services

🇺🇸 Hybrid - Torrance, CA

Information Security Architect

Drexel University

🇺🇸 Philadelphia, PA