Soni's client is seeking a Senior Manager of Cybersecurity & IT Governance, Risk, and Compliance (GRC)! In this role, you will lead strategic and operational initiatives that protect global business operations while advancing the organization’s security and risk posture. This position offers an opportunity to work in a fast-paced, high-volume environment, partnering with cross-functional teams to ensure compliance with complex legal and regulatory frameworks. You’ll shape and implement cybersecurity policies and GRC frameworks while advising leadership and fostering a culture of risk-aware decision-making. This role is both strategic and hands-on, driving continuous improvement across security, compliance, and risk programs.
Key Responsibilities:
- Develop, lead, and enhance global cybersecurity and IT GRC programs across the enterprise
- Advise senior leaders on cybersecurity and compliance strategy; integrate risk-based decision-making into operations
- Lead the global IT compliance and risk management functions, ensuring adherence to internal controls and external regulations
- Manage and mentor global GRC team members, fostering capability growth and performance
- Oversee third-party risk programs, IT control testing, audit readiness, and regulatory alignment
- Drive initiatives like security awareness training, control validation, and performance metrics reporting
Qualifications:
- Bachelor’s degree in IT, Engineering, or a related field; Master’s degree or certifications (CISA, CISSP, CRISC, etc.) preferred
- 7+ years in IT GRC roles, including 4+ years in leadership, ideally in global manufacturing environments
- Expertise in regulatory frameworks (SOX, HIPAA, PCI, NIST, ISO 27001, ITAR, etc.) and risk management methodologies
- Strong knowledge of information security domains such as identity management, data protection, and vulnerability management
- Demonstrated ability to lead diverse, cross-functional teams and drive change across global organizations
- Experience with GRC tools (e.g., Archer), audit management, or OT/ICS environments is a plus
Read Full Description