Governance Sr. Manager

Posted:
8/20/2024, 5:00:00 PM

Location(s):
Jalisco, Mexico ⋅ Tlaquepaque, Jalisco, Mexico

Experience Level(s):
Expert or higher ⋅ Senior

Field(s):
Legal & Compliance

Governance Sr. Manager

Description -

Job Title:  Governance Sr. Manager

Department: Governance, Risk, and Compliance (GRC)

Role Overview

The Governance Sr. Manager plays a critical role in HP’s security posture. This position is responsible for the GRC Governance Pillar and will have a focal area of overseeing the security framework, its enrichment, and ensuring all governance documents are well documented and aligned with regulatory expectations, industry standards, and supports the risk tolerance of the organization. The Governance Sr. Manager leads and support the Governance Team and seeks to identify opportunities for improved alignment of the security framework across our matrixed organization, collaborating closely with areas such as Legal, Compliance, Privacy, the Business Unites, and across all Cybersecurity pillars. The Governance Sr. Manager helps drive a risk-aware culture within the organization and collaborating with other departments to ensure alignment with company goals; and provides guidance and support to management and staff on governance matters.

Key Responsibilities

  • Manage, oversee, and support the governance program for GRC, and lead Governance pillar team members.
  • Manage and support the governance framework and oversee governance documentation management, via a continuous lifecycle.
  • Ensure HP’s governance documents are well documented, and are in alignment to regulatory requirements, industry standards, and supports the enablement of the business.
  • Assists with reviewing of legal documents and providing recommendations for additional content and redlining areas for omission.
  • Assist in driving a risk-aware culture across the organization.
  • Build, sustain, and report on Key Risk Indicator (KRI), Key Performance Indicator (KPI), and other metrics representing the Governance program progress and performance on Key Performance Objectives; and Key Control Indicators (KCI) to identify how well controls are supporting the organization.
  • Collaborate with other departments to ensure alignment with company goals.
  • Provide guidance and support to management and staff on governance matters.

Qualifications

  • 10+ years of relevant experience in cybersecurity and/or technology.
  • Understands security framework concepts and experienced in policy and standards development.
  • Experienced with industry standards such as NIST (CSF) 2.0, NIST800-53, and ISO 27001/02,
  • Experienced people leader that cultivates a team, drive program maturity, and can effectively lead their Team through transformation and change.
  • Experienced in reporting on program status and achievements, and goals and objectives.
  • Relative experience in governance, risk management, and compliance.
  • Understands technology, infrastructure and cybersecurity and can correlate them as it pertains to security policies and standards.
  • Strategic thinking, problem solving, and ability to render solutions.
  • Effective communication skills:  Ability to communicate, inspire, delegate effectively in a fast-paced environment.
  • Highly Collaborative:  Successfully collaborates vertically and horizontally, to provide guidance and support to management and staff on governance matters.
  • Knowledge of applicable laws and regulations.


Education & Experience Recommended
• Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.
• Typically has 10+ years of job-related experience or 8-10 years of management experience, preferably in cyber & IT security, or a related field.

Preferred Certifications
• At least one industry certification, such as:  CISSP, CRISC, CISM, CISA, GSEC, etc.


Knowledge & Skills
• Cybersecurity operations
• Cybersecurity governance
• Cybersecurity framework, policies and standards
• Auditing
• Risk management
• Automation
• Risk analysis
• Issue tracking
• Security controls
• Operating systems

Cross-Org Skills
• Customer Centricity
• Prioritization
• Resilience
• Team Management
• Strategic Thinking

Impact & Scope
• Impacts large functions and leads projects requiring knowledge of multiple disciplines or areas of HP.

Complexity
• Uses managerial concepts and company objectives to resolve highly complex issues in creative and effective ways. May achieve goals through subordinate supervisors.

Disclaimer
• This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.

Job -

Information Technology

Schedule -

Full time

Shift -

First Shift (Mexico)

Travel -

Relocation -

Equal Opportunity Employer (EEO)

HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.

If you’d like more information about HP’s EEO Policy or your EEO rights as an applicant under the law, please click here: Equal Employment Opportunity is the Law Equal Employment Opportunity is the Law – Supplement

Hewlett Packard (HP)

Website: http://www.hp.com/

Headquarter Location: Palo Alto, California, United States

Employee Count: 10001+

Year Founded: 1939

IPO Status: Public

Last Funding Type: Post-IPO Equity

Industries: Computer ⋅ Consumer Electronics ⋅ Hardware ⋅ IT Infrastructure ⋅ Software