What are the responsibilities and job description for the IT Governance Specialist position at Ontic?
We are a fast-paced business with ambitious growth plans; so if you are dedicated, enthusiastic and always seeking ways to improve, you'll enjoy a career with us!
Ontic is a leading global aerospace OEM trusted by the world’s aviation leaders. Ontic’s Creedmoor, NC, site is home to a number of specialist companies within the Ontic Group, including Firstmark, Twin Commander, and Metro Merlin. With over 1,300 employees across four time zones and seven sites, we have more than doubled in size since 2019 and are continuing to grow at pace.
Our team is looking for an IT Governance Specialist to join them. You will report to the Chief Information Security Officer (CISO), and we will support a remote work structure for the right candidate.
This person will be instrumental in ensuring our IT operations and security programs align with our regulatory business requirements. The ideal candidate will have the ability to manage complex, detailed regulatory requirements that determine business success or failure. Understanding governmental regulations is critical. If you thrive in an innovative environment where excellence and high standards are the norm, this is the place for you.
To be considered for the IT Governance Specialist opening, here’s what you’ll need to bring with you:
- US citizen or legal resident
- Bachelor’s degree from an accredited institution, preferably in a STEM area
- Minimum of three years in a governance role
- Strong understanding of governance frameworks and their implementation
- Excellent analytical and problem-solving skills
- Strong communication and interpersonal skills
- Ability to work in a fast-paced, dynamic environment
- Experience in risk management and compliance
- Ability to be able to prioritize work, while multitasking and working under pressure against tight deadlines and changing priorities
- Ability to be able to possess an investigative nature and results oriented with a proactive and methodical approach to problem-solving
- Ability to be a team player and to work closely with diverse groups and working styles
- Ability to demonstrate, as well as establish and maintain effective business relationships
- In-depth experience with Microsoft 365 suite of tools
- Strong understanding of cybersecurity principles, general knowledge of cybersecurity technologies, and industry-recognized certifications
- Strong understanding of ITAR rules and regulations
- Ability to make recommendations to remediate complex security threats
- General knowledge of cybersecurity vulnerability assessments, penetration tests, and the tools/techniques involved
- Ability to be comfortable working on multiple, complex issues and projects within defined timelines
- Demonstrated understanding of compliance regulations and Information Security control frameworks and standards (i.e., NIST, CIS Critical Security Controls, GDPR, FedRAMP, CMMC, ISO 27001, PCI, SOX, HIPPA)
- Knowledge of physical cabling for network communications and control system Input/Output
- Ability to introduce and explain highly technical topics to non-technical audiences
As an IT Governance Specialist, you will:
- Assist in the development and implementation of several IT and Cybersecurity frameworks across the enterprise
- Ensure compliance with all relevant security regulations and standards
- Monitor and report on adherence to governmental standards and security frameworks
- Identify risks from non-compliance and recommend mitigation strategies to manage those risks
- Implement mitigation strategies as directed
- Work closely with stakeholders to ensure a unified approach to standard adherence
- Assist and support in any audits of the company’s adherence to various security standards; Specifically, Cybersecurity Maturity Model Certification (CMMC), NIST SP 800-171, NIST SP 800-171A, NIST SP 800-172, Sarbanes Oxley (SOX), Gramm-Leach-Bliley Act, and others
- Influence the development of policies and procedures to ensure they contribute to the maintenance of various regulatory standards
- Liaise with the Compliance department to ensure success across company boundaries
- Stay current and up to date with several governmental frameworks to include CMMC, NIST, SOX, and others
- Assist in the maintenance of several European cybersecurity standards to include ISO 27001, GDPR and others
- Successfully communicate identified risks to various stakeholders in a manner that they can most easily understand
- Supporting the daily maintenance activities and response where necessary
- Travel 10% of the year
Our Benefits:
- Comprehensive medical insurance
- Competitive PTO, holiday pay, and sick leave
- Company 401K plan with up to 4% matched contribution
- Annual bonus program (varies by level and discretionary based on company and individual performance)
- Flexible working arrangements
- Paid volunteering opportunities
- Access to mental health champions across our sites
- Commitment to development
- Employee referral program
Salary Range:
- $90,000-100,000/yr based on experience
#LI-Remote, #LI-Hybrid, #LI-Onsite
This position requires access to U.S. export-controlled information.
EOE/AA Minority/Female/Sexual Orientation/Gender Identity/Disability/Veteran
Please click here to review Ontic's
California Consumer Privacy Act policy
.
Ontic Engineering and Manufacturing Inc. is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected Veteran
Status, or any other characteristic protected by applicable federal, state, or local law.
Status, or any other characteristic protected by applicable federal, state, or local law.
This position requires use of information which is subject to the International Traffic in Arms Regulations (ITAR). All applicants must be U.S. persons within the meaning of the ITAR. The ITAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee.
Salary : $90,000 - $100,000
