Yext (NYSE: YEXT) is the enterprise agentic marketing platform. AI is changing how customers find brands, and Yext gives enterprises the infrastructure to compete: Scout analyzes 10 billion signals monthly across four AI models to surface where you're losing and why, the Knowledge Graph maintains the verified data AI cites, and content generation and distribution agents syndicate brand content across LLMs, listings, social platforms, and review sites in real time. Thousands of brands in financial services, healthcare, retail, hospitality, and food rely on Yext to win across AI and traditional search. Join us and experience firsthand why we are consistently recognized as a Best Place to Work globally by Built In, Fortune, and Great Place To Work®.
We are seeking a highly motivated Senior Security Governance Manager to strengthen our cybersecurity program and ensure effective governance across key initiatives. This role will serve as a trusted advisor to the CISO, overseeing cybersecurity risk management, developing control & prioritization frameworks, and creating metrics that measure program maturity, risk assessment/reduction, and business alignment. The ideal candidate is a strategic thinker who can balance governance discipline with business agility, ensuring that security investments deliver measurable outcomes.
What You'll Do
Program Oversight & Governance
● Oversee the execution of cybersecurity initiatives, ensuring alignment with business objectives, compliance obligations, and risk management priorities.
● Develop and maintain a comprehensive security governance framework aligned with industry standards (NIST CSF 2.0, ISO/IEC 27001, or SOC 2).
● Manage the Threat Management program, which assesses, identifies, quantifies, and prioritizes risk reduction.
● Maintain an up-to-date catalog of cybersecurity projects and initiatives, tracking progress, risks, and dependencies to ensure effective management and oversight. Build and facilitate governance channels, such as Risk advisories/meetings, to provide visibility, accountability, and decision-making support.
● Author and enforce technical security policies that are practical, enforceable, and aligned with legal requirements (GDPR, CCPA, etc.).
● Maintain the existing working group meetings to identify new risks, track remediation progress, and manage the threat register.
Prioritization & Strategic Alignment
● Develop and maintain a cybersecurity control & project prioritization framework based on business risk, regulatory requirements, and resource capacity.
● Conduct technical risk assessments of cloud environments, third-party vendors, and internal systems to identify vulnerabilities and mandate remediation.
● Partner with security leaders, IT, Internal Audit, Engineering, and business stakeholders to recommend the sequencing of initiatives that maximize impact.
● Provide the CISO with clear recommendations on project trade-offs and resource allocation before executing projects. These outcomes should be based on outstanding risk to the business.
Metrics & Reporting
● Define and track key performance indicators (KPIs) and key risk indicators (KRIs) to measure the effectiveness of security programs and identify areas for improvement.
● Build executive-level dashboards and reports that translate technical program data into business-relevant insights.
● Support board and executive reporting by providing crisp, data-driven updates on program status and risk posture.
Risk & Compliance Alignment
● Ensure that security initiatives support compliance requirements, as applicable, by partnering with the Security Assurance & Finance team.
● Collaborate with Enterprise Risk Management and Internal Audit teams to maintain alignment between cybersecurity program maturity and business outcomes.
● Act as a bridge between technical teams and senior management, ensuring clear communication of priorities, risks, and progress.
● Influence and educate stakeholders on cybersecurity governance principles and the business value of security investments.
● Mentor team members and foster a culture of accountability and continuous improvement.
What You'll Have
● Proven track record in program management or governance within a security or risk context.
● Strong understanding of cybersecurity frameworks (e.g., NIST CSF, ISO 27001, CIS Controls).
● Experience creating executive-level metrics and dashboards.
● Excellent communication and presentation skills, with the ability to convey technical concepts in business terms.
● Prior experience working in a CISO office or security governance function.
● Familiarity with regulatory and compliance standards across multiple industries.
● Project management certification (PMP, PRINCE2, or similar) or governance certifications (CGEIT, CRISC, CISM).
#LI-JB2
Pay ranges at Yext are established based on an analysis of salaries for positions with a similar level of accountability and impact in the relevant labor market. Salary levels are expected to change to reflect an employee’s job performance (results and impact) over time. Salaries at the time of hire are typically offered in the lower to middle of the above-referenced range in order to provide the opportunity to reflect performance-based increases over time. In addition to base salaries, employees at Yext are typically eligible for a comprehensive package of benefits including medical, dental and vision benefits; life insurance; short term and long-term disability; 401(k) retirement plan; and vacation and sick leave. Successful candidates may also be eligible for variable pay programs based on performance relative to goals and targets.
Yext is an equal opportunity employer committed to building a results-driven, engaging culture where every employee has the opportunity to contribute to the success of the Company, perform at the highest possible level, and grow their skills and capabilities. Yext welcomes employees and applicants of all backgrounds and demographics, and does not engage in discrimination on the basis of any protected characteristic recognized under applicable law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. The Company believes a broad variety of life experiences across the Yext team is critical to its mission to help every business in the world be visible everywhere customers search. By seeking out fresh perspectives and fostering a positive interview experience and employee experience, Yext can remain at the forefront of innovation, and better serve its customers.
It is Yext’s policy to provide reasonable accommodations to people with disabilities as required by applicable law. If you have a disability that requires an accommodation in completing this application, interviewing, or participating in the employee selection process, please complete this form.
Security Alert
All legitimate Yext communications come from @yext.com email addresses. Messages from other domains (for example, @yext.team) are not authorized and are likely fraudulent. If you receive a message that seems suspicious, do not share personal information, click on links, or provide payment. Instead, please report the communication to [email protected].
Yext New York, New York, USA Office
Yext New York City Office
The Yext Building is located in Chelsea — an iconic neighborhood on the West Side of Manhattan known for its art galleries and skyline views. The 9-story office has terraces on every floor and is steps away from famous shops & restaurants, including the Starbucks Reserve and Chelsea Market.
Similar Jobs at Yext
What you need to know about the NYC Tech Scene
Key Facts About NYC Tech
- Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
- Key Industries: Artificial intelligence, Fintech
- Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
- Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory
