JanusHire

Senior IT Risk & Compliance Manager

Senior IT Risk & Compliance Manager
Novanta

United States, Massachusetts, Bedford

Apply Now

Oops! You need to have an account to use this feature

Sign up to access features including all filters, job matching, dashboard, apply service, etc.

Start free trial
Compatibility Score

Compatibility Score / Job Matching

This unique feature shows a score indicating how closely this job matches the preferences you set in your profile.

Access to this feature requires signing up.

N/A
Salary

Rank

Senior Manager

Responsibility

Systems/Data

Scope

Global

Workplace

Fully remote

Functions

IT

Legal

Reports to

Senior Director of Governance Risk & Compliance

Level

N-3

Travel Max:

15%

Posting Date

04-06-2025

Description

We are seeking an experienced Senior IT Risk & Compliance Manager to join our team. The ideal candidate will have experience managing various IT Compliance programs, including those associated with integrated SOX audit activities and ISO-based information security programs. In addition to the day-to-day management of programmatic activities, this role will focus on process improvement, leveraging data and technology to mature capabilities, and the pro-active identification of risks and associated control solutions to improve Novanta’s security posture and promote compliance.

Senior IT Risk & Compliance Manager

Key Responsibilities

  • Manage the compliance activities of the ISO 27001 information security program as well as the IT audit activities associated with the SOX program.
  • Continuously identify opportunities to improve the operation of various compliance initiatives and establish procedures to promote efficient, repeatable, and sustainable program results.
  • Develop, build & implement tools to improve compliance testing efficiency and effectiveness, moving the organization towards a continuous monitoring paradigm.
  • Pro-actively assess compliance readiness and provide leading practice recommendations for digital transformation initiatives such as IT and business system implementations, cloud migration activities, and the adoption of emerging technology capabilities.
  • Leverage deep technical IT audit knowledge to guide implementation of controls, remediate deficiencies / non-conformities, and navigate the impact of changes in the technology environment on different compliance obligations. Also, serve as a subject matter expert with respect to regulatory expectations pertinent to the various compliance obligations managed.
  • Facilitate the integration of acquired entities’ control environments into existing compliance frameworks as needed.
  • Perform various other reviews of IT management policies and procedures such as information security, change management, data management, SDLC, to ensure that controls surrounding these processes are adequate. Recommend and draft new policies and procedures in areas of perceived gaps.
  • Stay current with industry regulations and best practices to ensure ongoing compliance.
  • Demonstrate strong project management skills, balancing competing priorities under pressure while managing sensitive and confidential information.
  • Participate in design discussions to define and integrate compliance requirements throughout the development lifecycle of new and ongoing projects.
  • Exhibit exceptional verbal and written communication skills, with the ability to collaborate across teams and deliver clear, professional and concise information to internal and external stakeholders.
  • Foster positive and collaborative relationships with process/control owners, leadership, internal and external auditors.
  • Participate in the development of training plans to educate staff on security principles, fostering a culture of compliance across the organization. Promote a proactive culture of IT compliance, inspiring teams to prioritize privacy and security at every level.
  • Manage third-party contract labor involved in various compliance initiatives, at times overseeing teams of 3-5 staff.

Qualification & Requirements

  • Bachelor’s degree in computer science, information management, security and engineering, or other related degree.
  • Professional certification (e.g., CISA, CRISC, CISSP) is preferred.
  • Minimum of 7 years of experience in IT audit and compliance roles, preferably within a regulated industry.
  • In-depth knowledge of regulatory requirements and industry standards (e.g., GDPR, ISO 27001, SOX, NIS2). ISO 27001 Lead Auditor certification is a plus.
  • Strong ethical standards and a commitment to maintaining confidentiality and integrity in all activities.
  • Strong analytical and problem-solving skills, with the ability to assess complex issues, develop, and implement effective solutions.
  • Experience with global manufacturing organizations.
  • Exposure to Oracle EBS and SAP ECC/Cloud in a manufacturing setting is preferred.
  • Big Four auditing experience is a plus.
  • Working knowledge of AuditBoard is a plus.
  • Excellent communication and interpersonal skills, with the ability to influence and collaborate with stakeholders at all levels.
  • Proven ability to manage multiple tasks and projects simultaneously, with keen attention to detail.

Benefits

  • Health Insurance
  • Dental Insurance
  • Flexible Spending Account (FSA)
  • Vision Insurance
  • Health Savings Account (HSA)
  • Other Perks and Benefits…

Company Profile

Novanta
Industry

Appliances Electrical and Electronics Manufacturing

Revenue

$881.7M

Employees

2,900

Fortune 500 Rank

NA

Global 500 Rank

NA

View Company Profile

Clicking the link below will open a new window in your browser where you can apply directly to this role. Please check out our Pricing Plans if you’d like us to apply to jobs on your behalf.