XE
Xcel EnergyRegulatory Policy Specialist
Regulatory Policy Specialist developing regulatory case filings and strategies at Xcel Energy. Collaborating with senior management to ensure compliance and effective communication with stakeholders.
About the role
- Lead the independent oversight of cybersecurity risks, ensuring alignment with Manulife’s standards and strategic objectives
- Conduct independent assessments against industry frameworks such as NIST and SWIFT
- Oversee and challenge adherence to cybersecurity regulatory requirements
- Ensure accurate interpretation and compliance by first-line teams with global regulators including OSFI, SEC, HKMA, MAS, and others
- Stay current on emerging technologies and regulatory changes to maintain a robust cybersecurity posture
- Collaborate across first and second lines of defense to develop and report on Key Risk Indicators (KRIs)
- Support leadership in preparing board-level cybersecurity materials, offering actionable insights on cyber and emerging risks, data security and operational resilience
- Partner with the Information Risk team to drive oversight roadmaps and strategies
- Ensure efficient and effective processes are in place to provide comprehensive coverage across the enterprise
- Identify opportunities to enhance governance practices, improve oversight maturity, and strengthen risk management capabilities.
Requirements
- 7–10 years in cybersecurity risk management
- Strong technical acumen across domains such as identity and access management (IAM), cloud security, network security, and data protection
- Experience with performing cyber due diligence over mergers and acquisitions
- Experience with designing, implementing and running data protection capabilities including DLP and insider threat prevention
- Experience in different aspects of cyber operations including incident response, threat intelligence/detection, red/blue/purple teaming and threat hunting
- Demonstrated ability to provide strategic oversight, challenge and governance in cybersecurity risk management
- Experience interpreting and governing cybersecurity regulations from bodies such as OSFI, SEC, HKMA, MAS, and SWIFT
- Strong understanding of industry recognized frameworks including NIST CSF, ISO27001/27002 and PCI DSS
- Demonstrated ability to conduct technical cybersecurity assessments against regulatory and industry standards
- Ability to analyze cybersecurity trends and emerging risks to identify opportunities for improving the organization’s security posture
- Experience building out strategies and roadmaps related to cybersecurity governance
- Strong relationship-building skills with the ability to influence and build credibility across diverse stakeholder groups
- Excellent verbal and written communication skills, with the ability to produce high-quality deliverables for executive and board-level audiences.
Benefits
- Health insurance
- Dental insurance
- Mental health support
- Vision insurance
- Short- and long-term disability
- Life and AD&D insurance coverage
- Adoption/surrogacy benefits
- Wellness benefits
- Employee/family assistance plans
- Retirement savings plans (including pension)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
MA
MassMutualLead, Insurance Product Compliance
Lead, Insurance Product Compliance offering guidance on compliance risks and solutions for insurance underwriting. Collaborate with stakeholders and perform data analysis to recommend compliance actions.
RB
Regions BankFair Lending Compliance Manager
Compliance Manager overseeing Fair Lending Program at Regions Bank. Directing compliance reviews, advising leadership, and managing training and oversight initiatives.
SH
Syneos HealthCommercial Compliance & Ethics Analyst
Commercial Compliance Analyst supporting launch and compliance of commercial field teams at Syneos Health. Collaborating across teams to ensure adherence to regulatory requirements and develop training.
Compliance Analyst responsible for operational execution of licensing program for Nuvei. Handling regulatory reporting, license maintenance, and governance metrics.
Partner Commercial Manager focusing on license compliance strategies for AVEVA’s software revenues in India. Collaborate with sales and legal teams to ensure compliance and drive growth.
LG
LSEG (London Stock Exchange Group)Compliance Assistant Manager, Benchmarks & Indices
Compliance Assistant Manager supporting FTSE Russell operations and compliance frameworks at LSEG. Driving regulatory excellence with key responsibilities in risk management and governance.
JG
juris GmbHLegal Counsel, Compliance
Legal Compliance Officer at juris GmbH focusing on central compliance requirements and legal standards. Engaging with management to strengthen legal security and implement compliance in processes.
SG
Scania GroupCompliance Officer
Compliance Officer supporting implementation of compliance frameworks in TRATON Financial Services. Collaborating across departments and focusing on AML and GDPR compliance in Romanian and Bulgarian markets.
CB
Constellation BrandsData Privacy and Compliance Manager
Manager of Privacy & Data Compliance at Constellation Brands overseeing privacy operations and ensuring data protection across teams. Collaborating with business units to maintain regulatory compliance and manage risks.