Role Summary:

This role oversees the development and management of organizational policies and standards, ensuring they are complete, aligned with relevant regulations and best practices, and effectively communicated and implemented across teams. The position manages the full lifecycle of these policies and standards from review and collaboration to approval, publication, and ongoing monitoring, while supporting audit and compliance activities and promoting readiness for implementation across business and technology groups.

Key Responsibilities:

Coordinate policy and standard reviews and approvals through governance forums; guide document owners through publishing and leadership communications.Maintain the policy and standard framework, ensuring alignment with authoritative sources and proper categorization of supporting materials.Manage scheduling and tracking of the full lifecycle—review, approval, publication, and monitoring—including translations where required.Lead pre-implementation planning for updated standards, present rollout plans, and coordinate implementation checklists to ensure compliance.Monitor implementation progress and conduct post-publication reviews to assess compliance and readiness across business units.Respond to audit and regulatory inquiries, prepare evidence packages, and maintain tracking tools for short- and long-term engagements.Collaborate with risk teams to define review timelines, shared repositories, and trackers; ensure reviews are completed before approvals.Draft and distribute change communications; refresh content for notifications and divisional repositories as needed.Prepare materials and agendas for working groups and governance councils, supporting updates and planning for key standards.Maintain trackers and dashboards, generate status reports using Power BI/Excel, and remediate mapping gaps with domain owners.Manage group mailbox processes and triage incoming requests related to policies and standards.

Preferred Skills:

Experience with policy and standard management workflows and tools such as Policy & Standard Center, Power BI, Excel, SharePoint, and Microsoft Teams for collaboration.Exposure to key technology domains like Network Security and Identity & Access Management (IAM), including coordination of implementation activities.

Qualifications and Skills:

Background in Information Security or Technology Governance with hands-on experience in managing policy and standard lifecycles, as well as first-line risk and control functions within a global organization.Familiarity with ISO/IEC 27001 practices and regulatory frameworks, including the ability to prepare and organize evidence for audits and regulatory reviews.Working knowledge of authoritative sources (e.g., NIST 800-53, CSA CCM, COBIT, FFEIC, NIST CSF 2.0) and experience mapping requirements across policies and standards.Strong stakeholder engagement and facilitation skills across multiple teams and governance forums; excellent written communication for policy updates and leadership briefings.

Success Metrics / KPIs:

Lifecycle Completion: Percentage of standards completing review and publishing processes by planned dates.Review SLA Adherence: Percentage of changes reviewed within agreed timelines; zero instances advancing without required reviews.Implementation Readiness: Completion rate of implementation checklists and remediation of gaps identified during pre-implementation planning.Audit and Regulatory Response Quality: Timeliness and completeness of evidence submissions.Digitization Coverage: Progress toward mapping authoritative sources and maintaining repositories.

Key Internal Interfaces:

Governance Forums: Facilitate reviews and approvals through working groups and policy forums.Risk Management: Coordinate with risk teams on review timelines, SLA adherence, and tracking.Leadership Communication: Provide updates and awareness on published changes to senior leadership.

Tools & Platforms:

SharePoint and Policy & Standard Center for document managementMicrosoft Teams for collaborationPower BI and Excel for dashboards and reportingArcher for risk and compliance trackingDivisional repositories and team mailboxes for process management.

About State Street

Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success.

We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most. Join us in shaping the future.

As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.

Discover more information on jobs at StateStreet.com/careers

Read our CEO Statement