Principal, Corporate Information Security

At Cotality, we are driven by a single mission—to make the property industry faster, smarter, and more people-centric. Cotality is the trusted source for property intelligence, with unmatched precision, depth, breadth, and insights across the entire ecosystem. Our talented team of 5,000 employees globally uses our network, scale, connectivity and technology to drive the largest asset class in the world. Join us as we work toward our vision of fueling a thriving global property ecosystem and a more resilient society. Cotality is committed to cultivating a diverse and inclusive work culture that inspires innovation and bold thinking; it's a place where you can collaborate, feel valued, develop skills and directly impact the real estate economy. We know our people are our greatest asset. At Cotality, you can be yourself, lift people up and make an impact. By putting clients first and continuously innovating, we're working together to set the pace for unlocking new possibilities that better serve the property industry.

Job Description:

The Information Security Manager (ISM) is a strategic, advisory-focused leader responsible for the security integrity of the organization's third-party ecosystem and internal business continuity. Operating with a "judgment-first" mindset, the ISM excels at influencing stakeholders and translating complex technical risks into clear business impact for executive leadership. This role is a critical partner in strategic sourcing, long-term risk mitigation, and providing specialized security guidance during occasional Mergers & Acquisitions (M&A) activities.

Core Responsibilities Strategic Influence & Third-Party Risk Stakeholder Persuasion:

Act as a primary advisor to business owners, using data-driven insights to influence vendor selection and security investment decisions.

Security Consultation:

Provide expert security judgment and technical evaluations for vendor partnerships. Lead security posture reviews and negotiate remediation action plans with external partners.

Strategic Sourcing Support:

Partner with Sourcing and Procurement teams to ensure vendor contracts include necessary security SLAs and align with corporate risk appetite.

Solutions-Driven Mitigation:

Design and evaluate compensating controls and alternative security strategies when standard requirements cannot be met, balancing risk with business velocity.

Business Continuity & Risk Management Resilience & Recovery:

Align business units with global continuity frameworks (e.g., ISO 22301, NIST). Author and maintain Business Impact Analyses (BIAs) and recovery plans.

Process Optimization:

Drive continuous improvement of security and continuity workflows using Lean Six Sigma or similar process-design techniques.

Incident Command:

Lead the development of Incident Management teams; coordinate IT disaster recovery testing and scenario validation.

Project & Program Management Performance Tracking:

Maintain high-visibility dashboards (Power BI, Tableau) to track security KPIs and project milestones.

Ticketing & Workflow:

Manage complex security task lifecycles within enterprise ticketing platforms (e.g., Jira, ServiceNow).

Cross-Functional Leadership:

Facilitate issue resolution using root-cause analysis (RCA) frameworks to resolve dependencies across IT and Business departments.

M&A Advisory Due Diligence Support:

Provide security SME support for M&A activities as needed, performing risk assessments for potential acquisitions.

Integration Planning:

Assist in designing security integration roadmaps to ensure newly acquired entities meet corporate security standards.

Key Soft Skills & Leadership Executive Influence:

Ability to perform "risk storytelling," translating technical vulnerabilities into business impact to secure buy-in from the C-suite and Board.

Strategic Thinking:

Connect InfoSec, Business Continuity, and Vendor Risk strategies to broader corporate objectives.

Diplomacy & Negotiation:

A proven track record of building consensus, securing resources, and navigating conflicting priorities between external vendors and internal executives.

Change Management:

Ability to influence organizational culture and drive the adoption of new security behaviors across diverse business units.

Job Qualifications:

Qualifications & Technical Requirements Experience:

7+ years in Information Security, Risk Management, or Business Continuity, preferably within a regulated financial environment.

Technical Proficiency:

Deep understanding of encryption standards, access controls, and data protection compliance.

Framework Knowledge:

Strong working knowledge of

SOC 2, ISO

27001, and

NIST CSF.

Methodology:

Familiarity with Lean Six Sigma, ITIL, or PMP frameworks.

Certifications:

CISSP, CISM, or CBCP (Business Continuity) are highly preferred. M&A Experience preferred

Annual Pay Range:

134,400 - 170,000

USD Application Window:

This opportunity is expected to remain posted through the date identified below, subject to business needs. 2026-05-22 Thrive with Cotality At Cotality, we offer more than just a job, we provide a benefits experience designed to support your whole self. From a flexible working model to competitive time off and standout health coverage with meaningful perks and growth opportunities, our package is built to help you thrive at work and in life. Highlights, depending on role classification, include: Time off: Generous PTO and 11 paid holidays, plus well-being and volunteer time off.

Family Support:

Up to 16 weeks of fully paid parental leave and a baby stipend.

Health:

Multiple medical plan options with mental health and wellness support offerings.

Retirement:

401(k) with company match and vesting after one year.

Financial Perks:

$400 annual well-being stipend and tuition assistance up to $5,250.

Extras:

Recognition Rewards, Referral bonuses, exclusive discounts and more! Cotality is an Equal Opportunity employer committed to attracting and retaining the best-qualified people available, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability or status as a veteran of the Armed Forces, or any other basis protected by federal, state or local law. Cotality maintains a Drug-Free Workplace. Cotality is fully committed to a work environment that embraces everyone's unique contributions, experiences and values. We offer an empowered work environment that encourages creativity, initiative and professional growth and provides a competitive salary and benefits package. We are better together when we support and recognize our differences. Privacy Policy Global Applicant Privacy Policy By providing your telephone number, you agree to receive automated (SMS) text messages at that number from Cotality regarding all matters related to your application and, if you are hired, your employment and company business. Message & data rates may apply. You can opt out at any time by responding STOP or UNSUBSCRIBING and will automatically be opted out company-wide. Connect with us on social media! Click on the quicklinks below to find out more about our company and associates Looking for a Remote role? Please navigate to "location" and filter on desired country under the "locations".

ex:

United States, Canada, United Kingdom, India Are you ready for a career with Cotality? We have some exciting news to share with you, CoreLogic will now be called Cotality! Our new brand reflects our commitment to delivering innovative solutions and building deep relationships. Speaking of fresh starts—if you're thinking about making a change, and you're someone who wants to work for a growing company with a people-first culture which has earned us Great Place to Work recognitions in six countries, apply today! Cotality is an Equal Opportunity employer committed to attracting and retaining the best-qualified people available, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability or status as a veteran of the Armed Forces, or any other basis protected by federal, state or local law. Cotality will not discriminate or retaliate against applicants who inquire about, disclose, or discuss their compensation or that of other applicants. If you need reasonable accommodation to complete the on-line application, please contact Talent Acquisition at careers@cotality.com or 1-866-224-2086. Please include the following information in your email: The specific accommodation you're requesting to complete an employment application the position you are applying for (job title and/or job number) Do you represent a third-party organization supporting individuals with disabilities? You can contact us at careers@cotality.com. Please allow up to three business days to receive a response. Please include the following information in your email: Your organization's name Organization's location(s) Brief description of your need Cotality is aware of schemes involving fraudulent job postings on third-party employment search sites and/or individual(s) or entities claiming to be employees of Cotality. Those involved are offering fraudulent employment opportunities to applicants, often asking for sensitive personal and financial information. If you believe you have been contacted by anyone misrepresenting themselves as an employee of Cotality or a Cotality recruiter, please contact Cotality at careers@cotality.com. Please be advised that all legitimate correspondence from a Cotality employee will come from "@Cotality.com" or "@CoreLogic.com" email accounts. Cotality will not interview candidates via text or email. Our interviews will be conducted by recruiters and leaders via the phone, zoom/teams or in an in-person format. Cotality will never ask candidates to make any type of personal financial investment related to gaining employment with the Company. Please click here to view the Cotality Applicant Privacy Statement. By providing your telephone number, you agree to receive automated (SMS) text messages at that number from Cotality regarding all matters related to your application and, if you are hired, your employment and company business. Message & data rates may apply. You can opt out at any time by responding STOP or UNSUBSCRIBING and will automatically be opted out company-wide.