More jobs:
Cybersecurity Service and Change Management Lead
Job in
Saint Paul, Ramsey County, Minnesota, 55109, USA
Listed on 2026-05-20
Listing for:
3M Companies
Full Time
position Listed on 2026-05-20
Job specializations:
-
IT/Tech
Cybersecurity, IT Project Manager
Job Description & How to Apply Below
Cybersecurity Service and Change Management Lead
Collaborate with Innovative 3
Mers Around the World
Choosing where to start and grow your career has a major impact on your professional and personal life, so it's equally important you know that the company that you choose to work at, and its leaders, will support and guide you. With a wide variety of people, global locations, technologies and products, 3M is a place where you can collaborate with other curious, creative 3
Mers.
This position provides an opportunity to transition from other private, public, government or military experience to a 3M career.
The Impact You'll Make in this Role
At 3M, you will drive service and change management excellence within the Cybersecurity organization. As the Cybersecurity Service and Change Management Lead, you will design, implement, and continuously improve the Cybersecurity service catalog, service management processes, and change management framework to ensure efficient, compliant, and controlled delivery of cybersecurity initiatives. You will serve as the primary liaison between Cybersecurity and Enterprise IT Change Management, enabling transparency, quality, and minimal business disruption.
Here, you will make an impact by:
Cybersecurity service catalog development and maintenance
* Develop and maintain the Cybersecurity service catalog.
* Establish and maintain process for catalog changes, including review, and approval, versioning and changelog.
* Coordinate service owners to update and maintain service management tools in alignment with service catalogue to enable accurate request routing, reporting, and portfolio visibility.
* Publish and socialize the catalog to improve discoverability and adoption; capture feedback for continuous improvement.
Service management artifacts and process flows
* Coordinate Cybersecurity teams to develop, maintain, and update key service management artifacts and process flows.
* Advise and support on service management artifacts as needed, aligning with ITIL practices and audit/compliance requirements.
* Facilitate process-mapping and optimization workshops across Cybersecurity functions.
* Ensure document quality, version control, and centralized accessibility; drive standardization across teams.
Cybersecurity Change Management Process Design and Improvement
* Design, document, and continuously improve the Cybersecurity change management process aligned to ITIL/ISO 27001/NIST CSF and the IT change management process.
* Define approval workflows, SLAs, quality gates, and evidence requirements.
* Align Cybersecurity change requests to defined IT change categories and risk tiers.
* Ensure alignment to enterprise IT change calendar, blackout/maintenance windows, and change freeze protocols.
* Enforce pre-implementation requirements (testing, rollback/back-out plans, segregation of duties, peer reviews, impact analysis).
Change Advisory Board (CAB) Facilitation
* Plan, facilitate, and chair Cybersecurity CAB meetings (Tiers 1-3) to ensure quorum, risk review, approval, and timely decision-making.
* Maintain agendas, minutes, action items, and audit-ready records for all change approval activities.
* Coordinate emergency change processes and ensure controlled handling, with proper post-implementation review and documentation.
Tier 4 (High-Risk/Strategic) Changes
* Understand and enforce criteria for Tier 4 Cybersecurity changes.
* Drive risk assessment, impact analysis and executive-level approvals for Tier 4 changes; ensure cross-functional sign-offs.
* Orchestrate readiness reviews, test plans, back-out strategies, and stakeholder communications for Tier 4 changes.
* Present and champion Cybersecurity changes at the Tier 4 IT CAB.
Change Request Review and Enforcement
* Review change requests for completeness, risk rating, operational impact, and required artifacts (test evidence, rollback plan, approver list).
* Enforce process requirements, SLAs, and quality standards; reject or remediate inadequate change requests.
* Monitor adherence to segregation of duties, least privilege, and production access controls during change execution.
* Lead post-implementation reviews (PIRs) and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×