Ph3The Mission /h3 pAre you a GRC expert who sees compliance not as a checkbox, but as a competitive advantage? /p pAre you driven to build, not just maintain? /p pWe are seeking an bIT Governance, Risk and Compliance Manager /b to be the strategic owner of our global security trust and assurance program. This is not a typical GRC role. You will be the architect of the framework that secures our “license to operate” in the world’s most demanding markets, from Aerospace Defense to Medical Technology. Reporting directly to the CISO, you will have the visibility and autonomy to build a world-class GRC function from a strong foundation, with direct visibility to our Board. /p pYour mandate is to translate complex regulatory, client, and business requirements into a measurable and auditable control environment. While the title says IT, your scope is the entire digital landscape—from the corporate network to the factory floor’s Operational Technology (OT). /p h3What You’ll Do: /h3 ul libArchitect Our Compliance Advantage: /b You will own the strategy and lead the execution of our key compliance programs, including bCMMC, NIS2, and ISO 27001 /b. You will be our single point of contact for clients and auditors, turning our security posture into a key sales enabler. /li libBuild an Investor-Grade Risk Program: /b Develop and manage the unified cyber risk register for both IT and OT environments. You will conduct rigorous risk assessments, define and track Key Risk Indicators (KRIs), and provide quantifiable risk insights directly to executive leadership and our board. /li libSecure the Digital and Physical Worlds: /b You will extend our GRC framework into our manufacturing facilities, applying standards like bISA/IEC 62443 /b to manage the unique risks of Industrial Control Systems (ICS). /li libFortify Our Supply Chain: /b Design and implement our Third-Party Risk Management (TPRM) program. You will be responsible for assessing the security of our critical suppliers and mitigating one of our most significant attack vectors. /li libLead the Human Element of Security: /b Drive the strategy for our security awareness program, using data from phishing simulations and training campaigns to strengthen our human firewall and foster a culture of security. /li /ul h3What You’ll Bring (Required Qualifications): /h3 ul liA minimum of 5 years of experience in cybersecurity, with at least 3 years in a senior Governance, Risk, and Compliance (GRC) role. /li liDemonstrable, hands‑on experience building and managing an Information Security Management System (ISMS) based on bISO/IEC 27001:2022 /b. /li liDeep expertise in technology risk assessment methodologies and maintaining a corporate risk register. /li liProven experience developing, writing, and managing the lifecycle of corporate information security policies and standards. /li liExcellent communication skills, with the ability to translate complex technical risks into clear business language for executive and board-level audiences. /li /ul h3What Will Make You Stand Out (Preferred Qualifications): /h3 ul liDirect experience implementing and managing compliance programs for bCMMC /b or the bNIS2 Directive /b. /li liExperience with risk quantification frameworks for reporting to corporate management. /li liFamiliarity with modern GRC platforms (e.g., ServiceNow GRC, OneTrust, LogicGate). /li liRelevant professional certifications (e.g., CISSP, CISM, CRISC). /li liExperience with Operational Technology (OT) / Industrial Control Systems (ICS) security frameworks, particularly ISA/IEC 62443. /li /ul h3Why This is a Unique Opportunity: /h3 ul libImpact: /b This is a “builder” role. You will shape the future of our security program with a high degree of autonomy. /li libVisibility: /b You will have a direct line to the highest levels of the organization, including our BoD. Your work will be critical to the company’s strategic goals. /li libChallenge: /b The convergence of IT and OT security is one of the most complex and exciting challenges in cybersecurity. You will be at the forefront of securing a multinational manufacturing enterprise. /li /ul pIf you are a strategic, results-driven GRC leader ready to make a tangible business impact, we encourage you to apply. /p /p #J-18808-Ljbffr