IT Governance, Risk & Compliance (GRC) Manager
![]() | |
![]() United States, Massachusetts, Natick | |
![]() 1 Vision Drive (Show on map) | |
![]() | |
Job Description
The Company: Cognex Corporation Cognex is the world's leading provider of vision systems, software, sensors, and industrial barcode readers used in manufacturing automation. Cognex vision helps companies improve product quality, eliminate production errors, lower manufacturing costs, and exceed consumer expectations for high quality products at an affordable price. Typical applications for machine vision include detecting defects, monitoring production lines, guiding assembly robots, and tracking, sorting and identifying parts. Cognex serves an international customer base from offices located throughout the Americas, Europe, and Asia, and through a global network of integration and distribution partners. The company is headquartered close to Boston in Natick, Massachusetts The Team: Cyber Security team, part of our Global IT organization As a member of the Security Team, you will be part of a team of highly skilled security professionals tuned-in to protection and technical innovation. You will work closely with IT, engineering teams and functions throughout the company to develop, coordinate, and ultimately execute Cognex's IT Governance Risk and Compliance program advancing important policies, procedures and controls; coordinating risk and audit assessments; and overseeing our progress of compliance with important industry standards and certifications such as ISO/IEC 27001, NIST, CIS Critical Security Controls and OWASP. . As the program champion, you will lead a cross functional team charged with confirming and prioritizing customer requirements; determining appropriate security frameworks; and developing, negotiating and implementing technical, operational and administrative controls throughout Cognex's software development life cycle and other key processes to secure relevant security certifications. As a leading global hardware/software engineering company, Cognex has always taken IT security seriously and this position offers an exceptional personal and professional challenge for the right person. The Role: As the IT Governance, Risk & Compliance Manager, your primary responsibilities are to champion and coordinate Cognex's program to advance/mature our IT governance, risk management and compliance with customer and audit requirements, industry standards and certifications. In so doing, you will collaborate with Product and Software Engineering Groups, with Information Security, Applications and IT Infrastructure Engineering, IT Operations, Legal, Sales, Product Marketing and with many other functions throughout Cognex to plan, negotiate, develop and implement security controls and procedures necessary to establish IT and information governance; mitigate risk; satisfy customer and audit compliance requirements and establish certifications relevant to Cognex's customers. This position will immediately take stock of the current state of IT governance, risk and compliance across Cognex and with leadership establish a program, roadmap and timeline to establish ISO/IEC 27001 certification and other certifications relevant to our customers. This role will establish automated means to assign, maintain, and substantiate control status among control owners and to facilitate automated reporting of Cognex's status relative to certification and control requirements. Essential Functions:
Knowledge, Skills, and Abilities:
Education and work experience required:
Equal Employment Opportunity Cognex is an equal opportunity employer. Cognex evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic. |