Manager, IT Governance, Risk and Compliance
Job ID
2024-3955
Category |
Information Technology
|
Job Locations
|
US-IL-Niles
|
Workplace Arrangement |
Hybrid
|
Overview
Join our Global IT Team at Shure! We are seeking a Manager, IT Governance, Risk & Compliance, and in this critical role you will be responsible for governance, risk management, compliance, and cybersecurity awareness initiatives across the organization. You'll manage the Risk Register, Vulnerability Management, and Audit and Reporting programs and collaborates closely with the Security Operations Center (SOC) team to incorporate threat intelligence and incident response insights into governance, risk, and compliance strategies. Additionally, you will work with cross-functional teams to align security governance with business objectives and foster a security-conscious culture through awareness and training. This role will be hybrid, based in our Niles IL HQ 3 days a week.
Responsibilities
Develop and maintain governance frameworks, policies, and standards aligned with NIST, ISO 27001, and other frameworks, ensuring alignment of security initiatives with business goals and enterprise architecture frameworks.
- Lead the Risk Register program, ensuring risks are identified, assessed, tracked, and mitigated effectively, and collaborate with the SOC team to incorporate incident response findings and threat intelligence into governance and risk management programs.
- Oversee the Vulnerability Management program, managing the identification, prioritization, and remediation of vulnerabilities and leveraging insights from the SOC team, and establish KPIs to measure the effectiveness of governance, risk, and compliance initiatives and continuously improve GRC processes.
- Coordinate security audits and compliance programs, performing internal and external audits and working to resolve findings promptly, and represent IT in FedRAMP certification efforts, collaborating with Product Development to ensure compliance.
- Develop and manage security awareness and training programs to promote a risk-aware culture across the organization, and provide executive-level reporting on risks, vulnerabilities, and compliance to senior leadership.
Qualifications
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Minimum of 7 years of experience in IT governance, risk management, or security program management.
- Proven experience managing risk registers, vulnerability management, and security audits.
- Strong knowledge of ISO 27001, NIST, and SOC 2 frameworks.
- Familiarity with FedRAMP or similar compliance frameworks preferred.
- Experience with hybrid IT environments (on-premises, AWS, Azure) and cloud security platforms.
- Expertise with vulnerability management tools (e.g., Tenable, Qualys, Wiz, Microsoft Defender).
- Proficiency in modern patch management tools (e.g., Intune, SCCM, Jamf).
- Strong interpersonal and collaboration skills, with the ability to influence senior stakeholders.
- Experience working with auditors and managing outsourced security services.
- Ability to work effectively under pressure and manage competing priorities.
- Collaborative mindset, with experience working with SOC teams or similar to enhance risk management.
- A results-oriented mindset, with a passion for efficiency, innovation, and continuous improvement.
- CRISC or CISM certification preferred.
Applicants for this position must be currently authorized to work in the United States on a full-time basis. Shure will not sponsor applicants for this position for work visas. WHO WE ARE Shure's mission is to be the most trusted audio brand worldwide - and for nearly a century, our Core Values have aligned us to be just that. Founded in 1925, we are a leading global manufacturer of audio equipment known for quality, reliability, and durability. We engineer microphones, headphones, wireless audio systems, conferencing systems, and more. And quality doesn't stop at our products. Our talented teams strive for perfection and innovate every chance they get. We offer an Associate-first culture, flexible work arrangements, and opportunity for all. Shure Incorporated is headquartered in Niles, Illinois, with remote and hybrid opportunities throughout the United States. We have more than 35 regional sales offices, engineering hubs, and manufacturing facilities throughout the Americas, EMEA, and Asia. THE MIX MATTERS Don't check off every box in the job requirements? No problem! We recognize that every professional journey is unique and are committed to providing an equitable candidate experience for all prospective Shure Associates. If you're excited about this role, believe you've got the skills to be successful, and share our passion for creating an inclusive, diverse, equitable, and accessible work environment, then apply! WE GOT YOU - Our Benefits At Shure, we prioritize the well-being of our associates. We offer competitive rewards packages that address physical, mental, financial, and overall well-being. Our benefits include retirement savings plans, generous paid time off programs, employee discounts, professional development opportunities, work-life balance initiatives, employee recognition programs, commuter benefits, employee assistance programs, and volunteering/community involvement opportunities. To learn more, visit our careers page at www.shure.com/careers. #LI-HYBRID IND123
|