IT Project Manager, Cyber Security

IMPACT and OPPORTUNITY

We are currently seeking an IT Project Manager related to Cyber Security for a role that offers high visibility and significant impact on our company's ongoing certification program. In this role, you will have the opportunity to lead, manage and execute a high visibility project on a global scale. The Project Manager will partner with stakeholders to assist in achieving and maintaining compliance with various partner requirements. Your primary responsibilities will include developing, maintaining, and enhancing the awareness of these throughout the various business units. This role will strategically collaborate with various business entities within Gentherm to coordinate, develop, and implement a repeatable systematic methodology to obtain and sustain compliance. 

ESSENTIAL FUNCTIONS AND RESPONSIBILITIES

• Lead and manage Gentherm’s information protection certification portfolio.
• Promote corporate security compliance as a shared responsibility across the Gentherm organization.
• Increase the skills and capabilities within the business units to unify their understanding of compliancy requirements to be maintained.
• The IT Security Project Manager role at Gentherm has responsibilities for the following with direction and oversight from the Cyber Security Office.
• Work toward process improvement and enhance capability maturity, performing redesign and developing plans, requirements, and compliance specifications for automation.
• Develop and maintain the calendar of compliance requirements for assigned identified control owners.
• Collaborate with a range of stakeholders from individual contributors to senior leadership to external parties including Third-Party Security Assessors.
• Participate in High Level Planning to ensure work is in alignment with monthly and quarterly goals and timelines.
• Ensure deficiencies and gap resolution occur in a timely manner.
• Provides transparent, verbal, and written project status and updates to project stakeholders.
• Continue to monitor, ensure, and maintain desired level certifications.
• Engage with the clients to understand the requirements, provide regular updates on project status, answer queries and present the reports and findings.

MINIMUM QUALIFICATIONS

• Understanding of the TISAX, ISO27001, NIST frameworks and of other enterprise security architecture standards/models.
• Demonstrated experience driving activities related to the remediation of TISAX requirement gaps, technical security, and compliance risks with cross-functional teams, including, but not limited to, engaging third party services, leading meetings, assigning, and tracking work items, producing reports, and escalating risks and issues.
• Proven track record of financial management performance of compliance programs/certifications to ensure maximization of investments and ensure maintenance of desired level certifications.
• Strong documentation skills with a demonstrated ability to drive and maintain standardization and consistency in operations.
• Expertise in the implementation of information security programs and execution of information security assessments.
• Technical aptitude and proficiency in personal productivity software, as well as visual information management tools. (e.g., MS Office, Azure Dev Ops)
• Experience leading traditional waterfall project methodologies.  Knowledge of Agile and/or Adaptive project methodologies is a plus.
• Knowledge of industry standards, and software development methodologies
• Organizational skills with the ability to execute project objectives through to completion and motivate others to complete deliverables and meet project expectations.
• Experience managing projects and project teams including managing a project schedule, risks, issues, changes, and external dependencies.
• Successfully influencing change on their project team, providing options, and making recommendations for project decisions.
• Requires a BA in a technical field, or a minimum of four years of experience in a technical role in lieu of technical education.

PREFERRED QUALIFICATIONS

• TISAX and/or ISO27001 Lead Auditor certifications. Added advantage if the candidate has TISAX and/or ISO27001 Implementation Lead too.
• PMP or CAPM certification
• Scrum/agile experience CSM or PSM a plus
• Preferred if the candidate has Information Security certifications.
• Advantageous to have hands-on knowledge of some of the tools that are used across various verticals of Information Security e.g., network security, application security, DevSecOps, Cloud security etc.
• Fundamental knowledge of cloud service models (SaaS, IaaS, PaaS) across major cloud providers (including, but not limited to Azure, AWS),

NICE TO KNOW

TRAVEL: Must be willing to travel up to 30%-50% of the time (domestic and international)

COMPETENCIES

• Deliver Results
  • Understand the mission and output of your team; set SMART objectives and deliver.
• Drive Change
  • Focus on agility and commitment to continuous improvement; Understand and act on internal and external drivers of change
• Build Capability
  • Foster a culture of learning and development; Support individual growth through continuous feedback to achieve personal and professional goals
• Cultivate Innovation
  • Openly embrace, create, implement and support new and innovative ideas, processes and technology that deliver business results.

#LI-ML1 

PHYSICAL DEMANDS/WORK ENVIRONMENT

All positions in our office require interaction with people and technology while either standing or sitting. In order to best serve our customers, internal and external, all associates must be able to communicate face-to-face and on the phone with or without reasonable accommodation. Gentherm is committed to compliance with its obligations under all applicable state and federal laws prohibiting employment discrimination. In keeping with this commitment, it attempts to reasonably accommodate applicants and employees in accordance with the requirements of the disability discrimination laws. It also invites individuals with disabilities to participate in a good faith, interactive process to identify reasonable accommodations that can be made without imposing an undue hardship.